Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/wine-5.0/dlls/acledit/main.c Examining data/wine-5.0/dlls/aclui/aclui_main.c Examining data/wine-5.0/dlls/activeds/activeds_main.c Examining data/wine-5.0/dlls/actxprxy/usrmarshal.c Examining data/wine-5.0/dlls/adsiid/adsiid.c Examining data/wine-5.0/dlls/adsldp/adsldp.c Examining data/wine-5.0/dlls/adsldp/tests/sysinfo.c Examining data/wine-5.0/dlls/adsldpc/main.c Examining data/wine-5.0/dlls/advapi32/advapi.c Examining data/wine-5.0/dlls/advapi32/advapi32_misc.h Examining data/wine-5.0/dlls/advapi32/cred.c Examining data/wine-5.0/dlls/advapi32/crypt.c Examining data/wine-5.0/dlls/advapi32/crypt.h Examining data/wine-5.0/dlls/advapi32/crypt_arc4.c Examining data/wine-5.0/dlls/advapi32/crypt_des.c Examining data/wine-5.0/dlls/advapi32/crypt_lmhash.c Examining data/wine-5.0/dlls/advapi32/eventlog.c Examining data/wine-5.0/dlls/advapi32/lsa.c Examining data/wine-5.0/dlls/advapi32/registry.c Examining data/wine-5.0/dlls/advapi32/security.c Examining data/wine-5.0/dlls/advapi32/service.c Examining data/wine-5.0/dlls/advapi32/tests/cred.c Examining data/wine-5.0/dlls/advapi32/tests/crypt.c Examining data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c Examining data/wine-5.0/dlls/advapi32/tests/crypt_md4.c Examining data/wine-5.0/dlls/advapi32/tests/crypt_md5.c Examining data/wine-5.0/dlls/advapi32/tests/crypt_sha.c Examining data/wine-5.0/dlls/advapi32/tests/eventlog.c Examining data/wine-5.0/dlls/advapi32/tests/lsa.c Examining data/wine-5.0/dlls/advapi32/tests/registry.c Examining data/wine-5.0/dlls/advapi32/tests/security.c Examining data/wine-5.0/dlls/advapi32/tests/service.c Examining data/wine-5.0/dlls/advapi32/wmi.c Examining data/wine-5.0/dlls/advpack/advpack.c Examining data/wine-5.0/dlls/advpack/advpack_private.h Examining data/wine-5.0/dlls/advpack/files.c Examining data/wine-5.0/dlls/advpack/install.c Examining data/wine-5.0/dlls/advpack/reg.c Examining data/wine-5.0/dlls/advpack/tests/advpack.c Examining data/wine-5.0/dlls/advpack/tests/files.c Examining data/wine-5.0/dlls/advpack/tests/install.c Examining data/wine-5.0/dlls/amsi/main.c Examining data/wine-5.0/dlls/amstream/amstream_private.h Examining data/wine-5.0/dlls/amstream/audiodata.c Examining data/wine-5.0/dlls/amstream/audiostream.c Examining data/wine-5.0/dlls/amstream/ddrawstream.c Examining data/wine-5.0/dlls/amstream/filter.c Examining data/wine-5.0/dlls/amstream/main.c Examining data/wine-5.0/dlls/amstream/multimedia.c Examining data/wine-5.0/dlls/amstream/tests/amstream.c Examining data/wine-5.0/dlls/apphelp/apphelp.c Examining data/wine-5.0/dlls/apphelp/tests/apphelp.c Examining data/wine-5.0/dlls/appwiz.cpl/appwiz.c Examining data/wine-5.0/dlls/appwiz.cpl/appwiz.h Examining data/wine-5.0/dlls/appwiz.cpl/res.h Examining data/wine-5.0/dlls/appwiz.cpl/addons.c Examining data/wine-5.0/dlls/atl/atl.c Examining data/wine-5.0/dlls/atl/atl30.c Examining data/wine-5.0/dlls/atl/atl_ax.c Examining data/wine-5.0/dlls/atl/registrar.c Examining data/wine-5.0/dlls/atl/tests/atl_ax.c Examining data/wine-5.0/dlls/atl/tests/module.c Examining data/wine-5.0/dlls/atl/tests/registrar.c Examining data/wine-5.0/dlls/atl100/tests/atl.c Examining data/wine-5.0/dlls/atl80/atl80.c Examining data/wine-5.0/dlls/atl80/tests/atl.c Examining data/wine-5.0/dlls/atlthunk/atlthunk.c Examining data/wine-5.0/dlls/atlthunk/tests/atlthunk.c Examining data/wine-5.0/dlls/atmlib/main.c Examining data/wine-5.0/dlls/authz/authz.c Examining data/wine-5.0/dlls/avicap32/avicap32_main.c Examining data/wine-5.0/dlls/avifil32/acmstream.c Examining data/wine-5.0/dlls/avifil32/api.c Examining data/wine-5.0/dlls/avifil32/avifile.c Examining data/wine-5.0/dlls/avifil32/avifile_private.h Examining data/wine-5.0/dlls/avifil32/editstream.c Examining data/wine-5.0/dlls/avifil32/extrachunk.c Examining data/wine-5.0/dlls/avifil32/extrachunk.h Examining data/wine-5.0/dlls/avifil32/factory.c Examining data/wine-5.0/dlls/avifil32/getframe.c Examining data/wine-5.0/dlls/avifil32/icmstream.c Examining data/wine-5.0/dlls/avifil32/tests/api.c Examining data/wine-5.0/dlls/avifil32/tmpfile.c Examining data/wine-5.0/dlls/avifil32/wavfile.c Examining data/wine-5.0/dlls/avifile.dll16/main.c Examining data/wine-5.0/dlls/avrt/main.c Examining data/wine-5.0/dlls/bcrypt/bcrypt_internal.h Examining data/wine-5.0/dlls/bcrypt/bcrypt_main.c Examining data/wine-5.0/dlls/bcrypt/gnutls.c Examining data/wine-5.0/dlls/bcrypt/macos.c Examining data/wine-5.0/dlls/bcrypt/md2.c Examining data/wine-5.0/dlls/bcrypt/sha256.c Examining data/wine-5.0/dlls/bcrypt/sha512.c Examining data/wine-5.0/dlls/bcrypt/tests/bcrypt.c Examining data/wine-5.0/dlls/bluetoothapis/main.c Examining data/wine-5.0/dlls/browseui/aclmulti.c Examining data/wine-5.0/dlls/browseui/aclsource.c Examining data/wine-5.0/dlls/browseui/browseui.h Examining data/wine-5.0/dlls/browseui/browseui_main.c Examining data/wine-5.0/dlls/browseui/compcatcachedaemon.c Examining data/wine-5.0/dlls/browseui/progressdlg.c Examining data/wine-5.0/dlls/browseui/resids.h Examining data/wine-5.0/dlls/browseui/tests/autocomplete.c Examining data/wine-5.0/dlls/browseui/tests/progressdlg.c Examining data/wine-5.0/dlls/bthprops.cpl/main.c Examining data/wine-5.0/dlls/cabinet/tests/extract.c Examining data/wine-5.0/dlls/cabinet/tests/fdi.c Examining data/wine-5.0/dlls/cabinet/cabinet.h Examining data/wine-5.0/dlls/cabinet/cabinet_main.c Examining data/wine-5.0/dlls/cabinet/fdi.c Examining data/wine-5.0/dlls/cabinet/fci.c Examining data/wine-5.0/dlls/capi2032/cap20wxx.c Examining data/wine-5.0/dlls/capi2032/cap20wxx.h Examining data/wine-5.0/dlls/cards/cards.c Examining data/wine-5.0/dlls/cards/cards.h Examining data/wine-5.0/dlls/cdosys/main.c Examining data/wine-5.0/dlls/clusapi/clusapi.c Examining data/wine-5.0/dlls/combase/roapi.c Examining data/wine-5.0/dlls/combase/string.c Examining data/wine-5.0/dlls/combase/tests/roapi.c Examining data/wine-5.0/dlls/combase/tests/string.c Examining data/wine-5.0/dlls/comcat/comcat_main.c Examining data/wine-5.0/dlls/comcat/tests/comcat.c Examining data/wine-5.0/dlls/comctl32/animate.c Examining data/wine-5.0/dlls/comctl32/button.c Examining data/wine-5.0/dlls/comctl32/combo.c Examining data/wine-5.0/dlls/comctl32/comboex.c Examining data/wine-5.0/dlls/comctl32/comctl32.h Examining data/wine-5.0/dlls/comctl32/comctl32undoc.c Examining data/wine-5.0/dlls/comctl32/commctrl.c Examining data/wine-5.0/dlls/comctl32/datetime.c Examining data/wine-5.0/dlls/comctl32/dpa.c Examining data/wine-5.0/dlls/comctl32/draglist.c Examining data/wine-5.0/dlls/comctl32/dsa.c Examining data/wine-5.0/dlls/comctl32/edit.c Examining data/wine-5.0/dlls/comctl32/flatsb.c Examining data/wine-5.0/dlls/comctl32/header.c Examining data/wine-5.0/dlls/comctl32/hotkey.c Examining data/wine-5.0/dlls/comctl32/imagelist.c Examining data/wine-5.0/dlls/comctl32/ipaddress.c Examining data/wine-5.0/dlls/comctl32/listbox.c Examining data/wine-5.0/dlls/comctl32/listview.c Examining data/wine-5.0/dlls/comctl32/monthcal.c Examining data/wine-5.0/dlls/comctl32/nativefont.c Examining data/wine-5.0/dlls/comctl32/pager.c Examining data/wine-5.0/dlls/comctl32/progress.c Examining data/wine-5.0/dlls/comctl32/propsheet.c Examining data/wine-5.0/dlls/comctl32/rebar.c Examining data/wine-5.0/dlls/comctl32/smoothscroll.c Examining data/wine-5.0/dlls/comctl32/static.c Examining data/wine-5.0/dlls/comctl32/status.c Examining data/wine-5.0/dlls/comctl32/string.c Examining data/wine-5.0/dlls/comctl32/syslink.c Examining data/wine-5.0/dlls/comctl32/tab.c Examining data/wine-5.0/dlls/comctl32/taskdialog.c Examining data/wine-5.0/dlls/comctl32/tests/animate.c Examining data/wine-5.0/dlls/comctl32/tests/button.c Examining data/wine-5.0/dlls/comctl32/tests/combo.c Examining data/wine-5.0/dlls/comctl32/tests/datetime.c Examining data/wine-5.0/dlls/comctl32/tests/dpa.c Examining data/wine-5.0/dlls/comctl32/tests/edit.c Examining data/wine-5.0/dlls/comctl32/tests/header.c Examining data/wine-5.0/dlls/comctl32/tests/imagelist.c Examining data/wine-5.0/dlls/comctl32/tests/ipaddress.c Examining data/wine-5.0/dlls/comctl32/tests/listbox.c Examining data/wine-5.0/dlls/comctl32/tests/listview.c Examining data/wine-5.0/dlls/comctl32/tests/misc.c Examining data/wine-5.0/dlls/comctl32/tests/monthcal.c Examining data/wine-5.0/dlls/comctl32/tests/mru.c Examining data/wine-5.0/dlls/comctl32/tests/msg.h Examining data/wine-5.0/dlls/comctl32/tests/pager.c Examining data/wine-5.0/dlls/comctl32/tests/progress.c Examining data/wine-5.0/dlls/comctl32/tests/propsheet.c Examining data/wine-5.0/dlls/comctl32/tests/rebar.c Examining data/wine-5.0/dlls/comctl32/tests/resources.h Examining data/wine-5.0/dlls/comctl32/tests/static.c Examining data/wine-5.0/dlls/comctl32/tests/status.c Examining data/wine-5.0/dlls/comctl32/tests/subclass.c Examining data/wine-5.0/dlls/comctl32/tests/syslink.c Examining data/wine-5.0/dlls/comctl32/tests/tab.c Examining data/wine-5.0/dlls/comctl32/tests/taskdialog.c Examining data/wine-5.0/dlls/comctl32/tests/toolbar.c Examining data/wine-5.0/dlls/comctl32/tests/tooltips.c Examining data/wine-5.0/dlls/comctl32/tests/trackbar.c Examining data/wine-5.0/dlls/comctl32/tests/treeview.c Examining data/wine-5.0/dlls/comctl32/tests/updown.c Examining data/wine-5.0/dlls/comctl32/tests/v6util.h Examining data/wine-5.0/dlls/comctl32/theme_dialog.c Examining data/wine-5.0/dlls/comctl32/theme_scrollbar.c Examining data/wine-5.0/dlls/comctl32/theming.c Examining data/wine-5.0/dlls/comctl32/toolbar.c Examining data/wine-5.0/dlls/comctl32/tooltips.c Examining data/wine-5.0/dlls/comctl32/trackbar.c Examining data/wine-5.0/dlls/comctl32/treeview.c Examining data/wine-5.0/dlls/comctl32/updown.c Examining data/wine-5.0/dlls/comdlg32/cdlg.h Examining data/wine-5.0/dlls/comdlg32/cdlg32.c Examining data/wine-5.0/dlls/comdlg32/colordlg.c Examining data/wine-5.0/dlls/comdlg32/filedlg31.c Examining data/wine-5.0/dlls/comdlg32/filedlgbrowser.c Examining data/wine-5.0/dlls/comdlg32/filedlgbrowser.h Examining data/wine-5.0/dlls/comdlg32/finddlg.c Examining data/wine-5.0/dlls/comdlg32/fontdlg.c Examining data/wine-5.0/dlls/comdlg32/itemdlg.c Examining data/wine-5.0/dlls/comdlg32/printdlg.c Examining data/wine-5.0/dlls/comdlg32/tests/filedlg.c Examining data/wine-5.0/dlls/comdlg32/tests/finddlg.c Examining data/wine-5.0/dlls/comdlg32/tests/fontdlg.c Examining data/wine-5.0/dlls/comdlg32/tests/itemdlg.c Examining data/wine-5.0/dlls/comdlg32/tests/printdlg.c Examining data/wine-5.0/dlls/comdlg32/filedlg.c Examining data/wine-5.0/dlls/commdlg.dll16/cdlg16.h Examining data/wine-5.0/dlls/commdlg.dll16/colordlg.c Examining data/wine-5.0/dlls/commdlg.dll16/filedlg.c Examining data/wine-5.0/dlls/commdlg.dll16/finddlg.c Examining data/wine-5.0/dlls/commdlg.dll16/fontdlg.c Examining data/wine-5.0/dlls/commdlg.dll16/printdlg.c Examining data/wine-5.0/dlls/compobj.dll16/compobj.c Examining data/wine-5.0/dlls/compstui/compstui_main.c Examining data/wine-5.0/dlls/comsvcs/main.c Examining data/wine-5.0/dlls/comsvcs/tests/comsvcs.c Examining data/wine-5.0/dlls/connect/main.c Examining data/wine-5.0/dlls/credui/credui_main.c Examining data/wine-5.0/dlls/credui/credui_resources.h Examining data/wine-5.0/dlls/credui/tests/credui.c Examining data/wine-5.0/dlls/crypt32/base64.c Examining data/wine-5.0/dlls/crypt32/cert.c Examining data/wine-5.0/dlls/crypt32/chain.c Examining data/wine-5.0/dlls/crypt32/collectionstore.c Examining data/wine-5.0/dlls/crypt32/context.c Examining data/wine-5.0/dlls/crypt32/crl.c Examining data/wine-5.0/dlls/crypt32/crypt32_private.h Examining data/wine-5.0/dlls/crypt32/cryptres.h Examining data/wine-5.0/dlls/crypt32/ctl.c Examining data/wine-5.0/dlls/crypt32/decode.c Examining data/wine-5.0/dlls/crypt32/encode.c Examining data/wine-5.0/dlls/crypt32/filestore.c Examining data/wine-5.0/dlls/crypt32/main.c Examining data/wine-5.0/dlls/crypt32/message.c Examining data/wine-5.0/dlls/crypt32/msg.c Examining data/wine-5.0/dlls/crypt32/object.c Examining data/wine-5.0/dlls/crypt32/oid.c Examining data/wine-5.0/dlls/crypt32/pfx.c Examining data/wine-5.0/dlls/crypt32/proplist.c Examining data/wine-5.0/dlls/crypt32/protectdata.c Examining data/wine-5.0/dlls/crypt32/provstore.c Examining data/wine-5.0/dlls/crypt32/regstore.c Examining data/wine-5.0/dlls/crypt32/rootstore.c Examining data/wine-5.0/dlls/crypt32/serialize.c Examining data/wine-5.0/dlls/crypt32/sip.c Examining data/wine-5.0/dlls/crypt32/store.c Examining data/wine-5.0/dlls/crypt32/str.c Examining data/wine-5.0/dlls/crypt32/tests/base64.c Examining data/wine-5.0/dlls/crypt32/tests/cert.c Examining data/wine-5.0/dlls/crypt32/tests/chain.c Examining data/wine-5.0/dlls/crypt32/tests/crl.c Examining data/wine-5.0/dlls/crypt32/tests/ctl.c Examining data/wine-5.0/dlls/crypt32/tests/encode.c Examining data/wine-5.0/dlls/crypt32/tests/main.c Examining data/wine-5.0/dlls/crypt32/tests/message.c Examining data/wine-5.0/dlls/crypt32/tests/msg.c Examining data/wine-5.0/dlls/crypt32/tests/object.c Examining data/wine-5.0/dlls/crypt32/tests/oid.c Examining data/wine-5.0/dlls/crypt32/tests/protectdata.c Examining data/wine-5.0/dlls/crypt32/tests/sip.c Examining data/wine-5.0/dlls/crypt32/tests/store.c Examining data/wine-5.0/dlls/crypt32/tests/str.c Examining data/wine-5.0/dlls/cryptdlg/cryptres.h Examining data/wine-5.0/dlls/cryptdlg/main.c Examining data/wine-5.0/dlls/cryptdll/cryptdll.c Examining data/wine-5.0/dlls/cryptext/cryptext_main.c Examining data/wine-5.0/dlls/cryptnet/cryptnet_main.c Examining data/wine-5.0/dlls/cryptnet/tests/cryptnet.c Examining data/wine-5.0/dlls/cryptui/cryptuires.h Examining data/wine-5.0/dlls/cryptui/main.c Examining data/wine-5.0/dlls/cryptui/tests/cryptui.c Examining data/wine-5.0/dlls/ctapi32/ctapi.h Examining data/wine-5.0/dlls/ctapi32/ctapi32.c Examining data/wine-5.0/dlls/ctl3d.dll16/ctl3d.c Examining data/wine-5.0/dlls/ctl3d32/ctl3d32.c Examining data/wine-5.0/dlls/ctl3dv2.dll16/ctl3d.c Examining data/wine-5.0/dlls/d2d1/bitmap.c Examining data/wine-5.0/dlls/d2d1/bitmap_render_target.c Examining data/wine-5.0/dlls/d2d1/brush.c Examining data/wine-5.0/dlls/d2d1/d2d1_private.h Examining data/wine-5.0/dlls/d2d1/dc_render_target.c Examining data/wine-5.0/dlls/d2d1/device.c Examining data/wine-5.0/dlls/d2d1/effect.c Examining data/wine-5.0/dlls/d2d1/factory.c Examining data/wine-5.0/dlls/d2d1/geometry.c Examining data/wine-5.0/dlls/d2d1/hwnd_render_target.c Examining data/wine-5.0/dlls/d2d1/layer.c Examining data/wine-5.0/dlls/d2d1/mesh.c Examining data/wine-5.0/dlls/d2d1/state_block.c Examining data/wine-5.0/dlls/d2d1/stroke.c Examining data/wine-5.0/dlls/d2d1/tests/d2d1.c Examining data/wine-5.0/dlls/d2d1/wic_render_target.c Examining data/wine-5.0/dlls/d3d10/d3d10_main.c Examining data/wine-5.0/dlls/d3d10/d3d10_private.h Examining data/wine-5.0/dlls/d3d10/effect.c Examining data/wine-5.0/dlls/d3d10/shader.c Examining data/wine-5.0/dlls/d3d10/stateblock.c Examining data/wine-5.0/dlls/d3d10/tests/device.c Examining data/wine-5.0/dlls/d3d10/tests/effect.c Examining data/wine-5.0/dlls/d3d10_1/d3d10_1_main.c Examining data/wine-5.0/dlls/d3d10_1/tests/d3d10_1.c Examining data/wine-5.0/dlls/d3d10core/d3d10core_main.c Examining data/wine-5.0/dlls/d3d10core/tests/d3d10core.c Examining data/wine-5.0/dlls/d3d11/async.c Examining data/wine-5.0/dlls/d3d11/buffer.c Examining data/wine-5.0/dlls/d3d11/d3d11_main.c Examining data/wine-5.0/dlls/d3d11/d3d11_private.h Examining data/wine-5.0/dlls/d3d11/device.c Examining data/wine-5.0/dlls/d3d11/inputlayout.c Examining data/wine-5.0/dlls/d3d11/shader.c Examining data/wine-5.0/dlls/d3d11/state.c Examining data/wine-5.0/dlls/d3d11/tests/d3d11.c Examining data/wine-5.0/dlls/d3d11/texture.c Examining data/wine-5.0/dlls/d3d11/utils.c Examining data/wine-5.0/dlls/d3d11/view.c Examining data/wine-5.0/dlls/d3d12/d3d12_main.c Examining data/wine-5.0/dlls/d3d12/tests/d3d12.c Examining data/wine-5.0/dlls/d3d8/buffer.c Examining data/wine-5.0/dlls/d3d8/d3d8_main.c Examining data/wine-5.0/dlls/d3d8/d3d8_private.h Examining data/wine-5.0/dlls/d3d8/device.c Examining data/wine-5.0/dlls/d3d8/directx.c Examining data/wine-5.0/dlls/d3d8/shader.c Examining data/wine-5.0/dlls/d3d8/surface.c Examining data/wine-5.0/dlls/d3d8/swapchain.c Examining data/wine-5.0/dlls/d3d8/tests/device.c Examining data/wine-5.0/dlls/d3d8/tests/stateblock.c Examining data/wine-5.0/dlls/d3d8/tests/visual.c Examining data/wine-5.0/dlls/d3d8/texture.c Examining data/wine-5.0/dlls/d3d8/vertexdeclaration.c Examining data/wine-5.0/dlls/d3d8/volume.c Examining data/wine-5.0/dlls/d3d9/buffer.c Examining data/wine-5.0/dlls/d3d9/d3d9_main.c Examining data/wine-5.0/dlls/d3d9/d3d9_private.h Examining data/wine-5.0/dlls/d3d9/device.c Examining data/wine-5.0/dlls/d3d9/directx.c Examining data/wine-5.0/dlls/d3d9/query.c Examining data/wine-5.0/dlls/d3d9/shader.c Examining data/wine-5.0/dlls/d3d9/stateblock.c Examining data/wine-5.0/dlls/d3d9/surface.c Examining data/wine-5.0/dlls/d3d9/swapchain.c Examining data/wine-5.0/dlls/d3d9/tests/d3d9ex.c Examining data/wine-5.0/dlls/d3d9/tests/device.c Examining data/wine-5.0/dlls/d3d9/tests/stateblock.c Examining data/wine-5.0/dlls/d3d9/tests/utils.h Examining data/wine-5.0/dlls/d3d9/tests/visual.c Examining data/wine-5.0/dlls/d3d9/texture.c Examining data/wine-5.0/dlls/d3d9/vertexdeclaration.c Examining data/wine-5.0/dlls/d3d9/volume.c Examining data/wine-5.0/dlls/d3dcompiler_43/asmparser.c Examining data/wine-5.0/dlls/d3dcompiler_43/blob.c Examining data/wine-5.0/dlls/d3dcompiler_43/bytecodewriter.c Examining data/wine-5.0/dlls/d3dcompiler_43/compiler.c Examining data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h Examining data/wine-5.0/dlls/d3dcompiler_43/main.c Examining data/wine-5.0/dlls/d3dcompiler_43/preproc.c Examining data/wine-5.0/dlls/d3dcompiler_43/reflection.c Examining data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c Examining data/wine-5.0/dlls/d3dcompiler_43/tests/blob.c Examining data/wine-5.0/dlls/d3dcompiler_43/tests/hlsl.c Examining data/wine-5.0/dlls/d3dcompiler_43/tests/reflection.c Examining data/wine-5.0/dlls/d3dcompiler_43/utils.c Examining data/wine-5.0/dlls/d3dcompiler_43/wpp_private.h Examining data/wine-5.0/dlls/d3dim/d3dim_main.c Examining data/wine-5.0/dlls/d3drm/d3drm.c Examining data/wine-5.0/dlls/d3drm/d3drm_main.c Examining data/wine-5.0/dlls/d3drm/d3drm_private.h Examining data/wine-5.0/dlls/d3drm/device.c Examining data/wine-5.0/dlls/d3drm/face.c Examining data/wine-5.0/dlls/d3drm/frame.c Examining data/wine-5.0/dlls/d3drm/light.c Examining data/wine-5.0/dlls/d3drm/material.c Examining data/wine-5.0/dlls/d3drm/math.c Examining data/wine-5.0/dlls/d3drm/meshbuilder.c Examining data/wine-5.0/dlls/d3drm/tests/d3drm.c Examining data/wine-5.0/dlls/d3drm/tests/vector.c Examining data/wine-5.0/dlls/d3drm/texture.c Examining data/wine-5.0/dlls/d3drm/viewport.c Examining data/wine-5.0/dlls/d3dx10_33/d3dx10_33_main.c Examining data/wine-5.0/dlls/d3dx10_34/d3dx10_34_main.c Examining data/wine-5.0/dlls/d3dx10_35/d3dx10_35_main.c Examining data/wine-5.0/dlls/d3dx10_36/d3dx10_36_main.c Examining data/wine-5.0/dlls/d3dx10_37/d3dx10_37_main.c Examining data/wine-5.0/dlls/d3dx10_38/d3dx10_38_main.c Examining data/wine-5.0/dlls/d3dx10_39/d3dx10_39_main.c Examining data/wine-5.0/dlls/d3dx10_40/d3dx10_40_main.c Examining data/wine-5.0/dlls/d3dx10_41/d3dx10_41_main.c Examining data/wine-5.0/dlls/d3dx10_42/d3dx10_42_main.c Examining data/wine-5.0/dlls/d3dx10_43/async.c Examining data/wine-5.0/dlls/d3dx10_43/d3dx10_43_main.c Examining data/wine-5.0/dlls/d3dx10_43/tests/d3dx10.c Examining data/wine-5.0/dlls/d3dx11_43/async.c Examining data/wine-5.0/dlls/d3dx11_43/main.c Examining data/wine-5.0/dlls/d3dx11_43/tests/d3dx11.c Examining data/wine-5.0/dlls/d3dx11_43/texture.c Examining data/wine-5.0/dlls/d3dx9_36/animation.c Examining data/wine-5.0/dlls/d3dx9_36/core.c Examining data/wine-5.0/dlls/d3dx9_36/d3dx9_private.h Examining data/wine-5.0/dlls/d3dx9_36/font.c Examining data/wine-5.0/dlls/d3dx9_36/line.c Examining data/wine-5.0/dlls/d3dx9_36/main.c Examining data/wine-5.0/dlls/d3dx9_36/math.c Examining data/wine-5.0/dlls/d3dx9_36/mesh.c Examining data/wine-5.0/dlls/d3dx9_36/preshader.c Examining data/wine-5.0/dlls/d3dx9_36/render.c Examining data/wine-5.0/dlls/d3dx9_36/shader.c Examining data/wine-5.0/dlls/d3dx9_36/skin.c Examining data/wine-5.0/dlls/d3dx9_36/sprite.c Examining data/wine-5.0/dlls/d3dx9_36/surface.c Examining data/wine-5.0/dlls/d3dx9_36/tests/asm.c Examining data/wine-5.0/dlls/d3dx9_36/tests/core.c Examining data/wine-5.0/dlls/d3dx9_36/tests/effect.c Examining data/wine-5.0/dlls/d3dx9_36/tests/line.c Examining data/wine-5.0/dlls/d3dx9_36/tests/math.c Examining data/wine-5.0/dlls/d3dx9_36/tests/mesh.c Examining data/wine-5.0/dlls/d3dx9_36/tests/resources.h Examining data/wine-5.0/dlls/d3dx9_36/tests/shader.c Examining data/wine-5.0/dlls/d3dx9_36/tests/surface.c Examining data/wine-5.0/dlls/d3dx9_36/tests/texture.c Examining data/wine-5.0/dlls/d3dx9_36/tests/volume.c Examining data/wine-5.0/dlls/d3dx9_36/tests/xfile.c Examining data/wine-5.0/dlls/d3dx9_36/txc_compress_dxtn.c Examining data/wine-5.0/dlls/d3dx9_36/txc_dxtn.h Examining data/wine-5.0/dlls/d3dx9_36/txc_fetch_dxtn.c Examining data/wine-5.0/dlls/d3dx9_36/util.c Examining data/wine-5.0/dlls/d3dx9_36/volume.c Examining data/wine-5.0/dlls/d3dx9_36/xfile.c Examining data/wine-5.0/dlls/d3dx9_36/effect.c Examining data/wine-5.0/dlls/d3dx9_36/texture.c Examining data/wine-5.0/dlls/d3dxof/d3dxof.c Examining data/wine-5.0/dlls/d3dxof/d3dxof_private.h Examining data/wine-5.0/dlls/d3dxof/main.c Examining data/wine-5.0/dlls/d3dxof/mszip.c Examining data/wine-5.0/dlls/d3dxof/mszip.h Examining data/wine-5.0/dlls/d3dxof/parsing.c Examining data/wine-5.0/dlls/d3dxof/tests/d3dxof.c Examining data/wine-5.0/dlls/davclnt/main.c Examining data/wine-5.0/dlls/dbgeng/dbgeng.c Examining data/wine-5.0/dlls/dbgeng/tests/dbgeng.c Examining data/wine-5.0/dlls/dbghelp/coff.c Examining data/wine-5.0/dlls/dbghelp/cpu_arm.c Examining data/wine-5.0/dlls/dbghelp/cpu_i386.c Examining data/wine-5.0/dlls/dbghelp/cpu_ppc.c Examining data/wine-5.0/dlls/dbghelp/cpu_x86_64.c Examining data/wine-5.0/dlls/dbghelp/dbghelp.c Examining data/wine-5.0/dlls/dbghelp/dbghelp_private.h Examining data/wine-5.0/dlls/dbghelp/dwarf.c Examining data/wine-5.0/dlls/dbghelp/dwarf.h Examining data/wine-5.0/dlls/dbghelp/elf_module.c Examining data/wine-5.0/dlls/dbghelp/image.c Examining data/wine-5.0/dlls/dbghelp/image_private.h Examining data/wine-5.0/dlls/dbghelp/macho_module.c Examining data/wine-5.0/dlls/dbghelp/minidump.c Examining data/wine-5.0/dlls/dbghelp/module.c Examining data/wine-5.0/dlls/dbghelp/msc.c Examining data/wine-5.0/dlls/dbghelp/path.c Examining data/wine-5.0/dlls/dbghelp/pe_module.c Examining data/wine-5.0/dlls/dbghelp/source.c Examining data/wine-5.0/dlls/dbghelp/stabs.c Examining data/wine-5.0/dlls/dbghelp/stack.c Examining data/wine-5.0/dlls/dbghelp/storage.c Examining data/wine-5.0/dlls/dbghelp/symbol.c Examining data/wine-5.0/dlls/dbghelp/tests/dbghelp.c Examining data/wine-5.0/dlls/dbghelp/type.c Examining data/wine-5.0/dlls/dbghelp/wdbgexts.h Examining data/wine-5.0/dlls/dbghelp/cpu_arm64.c Examining data/wine-5.0/dlls/dciman32/dciman_main.c Examining data/wine-5.0/dlls/ddeml.dll16/ddeml.c Examining data/wine-5.0/dlls/ddraw/clipper.c Examining data/wine-5.0/dlls/ddraw/ddraw.c Examining data/wine-5.0/dlls/ddraw/ddraw_private.h Examining data/wine-5.0/dlls/ddraw/device.c Examining data/wine-5.0/dlls/ddraw/executebuffer.c Examining data/wine-5.0/dlls/ddraw/light.c Examining data/wine-5.0/dlls/ddraw/main.c Examining data/wine-5.0/dlls/ddraw/material.c Examining data/wine-5.0/dlls/ddraw/palette.c Examining data/wine-5.0/dlls/ddraw/surface.c Examining data/wine-5.0/dlls/ddraw/tests/d3d.c Examining data/wine-5.0/dlls/ddraw/tests/ddraw1.c Examining data/wine-5.0/dlls/ddraw/tests/ddraw2.c Examining data/wine-5.0/dlls/ddraw/tests/ddraw4.c Examining data/wine-5.0/dlls/ddraw/tests/ddraw7.c Examining data/wine-5.0/dlls/ddraw/tests/ddrawmodes.c Examining data/wine-5.0/dlls/ddraw/tests/dsurface.c Examining data/wine-5.0/dlls/ddraw/tests/refcount.c Examining data/wine-5.0/dlls/ddraw/tests/visual.c Examining data/wine-5.0/dlls/ddraw/utils.c Examining data/wine-5.0/dlls/ddraw/vertexbuffer.c Examining data/wine-5.0/dlls/ddraw/viewport.c Examining data/wine-5.0/dlls/ddrawex/ddraw.c Examining data/wine-5.0/dlls/ddrawex/ddrawex_private.h Examining data/wine-5.0/dlls/ddrawex/main.c Examining data/wine-5.0/dlls/ddrawex/surface.c Examining data/wine-5.0/dlls/ddrawex/tests/ddrawex.c Examining data/wine-5.0/dlls/ddrawex/tests/ddrawex.h Examining data/wine-5.0/dlls/ddrawex/tests/surface.c Examining data/wine-5.0/dlls/devenum/devenum_main.c Examining data/wine-5.0/dlls/devenum/devenum_private.h Examining data/wine-5.0/dlls/devenum/parsedisplayname.c Examining data/wine-5.0/dlls/devenum/tests/devenum.c Examining data/wine-5.0/dlls/devenum/createdevenum.c Examining data/wine-5.0/dlls/devenum/mediacatenum.c Examining data/wine-5.0/dlls/dhcpcsvc/dhcpcsvc.c Examining data/wine-5.0/dlls/dhcpcsvc/tests/dhcpcsvc.c Examining data/wine-5.0/dlls/dhtmled.ocx/dhtmled_private.h Examining data/wine-5.0/dlls/dhtmled.ocx/edit.c Examining data/wine-5.0/dlls/dhtmled.ocx/main.c Examining data/wine-5.0/dlls/difxapi/main.c Examining data/wine-5.0/dlls/dinput/config.c Examining data/wine-5.0/dlls/dinput/data_formats.c Examining data/wine-5.0/dlls/dinput/device.c Examining data/wine-5.0/dlls/dinput/device_private.h Examining data/wine-5.0/dlls/dinput/dinput_main.c Examining data/wine-5.0/dlls/dinput/dinput_private.h Examining data/wine-5.0/dlls/dinput/effect_linuxinput.c Examining data/wine-5.0/dlls/dinput/joystick.c Examining data/wine-5.0/dlls/dinput/joystick_linux.c Examining data/wine-5.0/dlls/dinput/joystick_linuxinput.c Examining data/wine-5.0/dlls/dinput/joystick_osx.c Examining data/wine-5.0/dlls/dinput/joystick_private.h Examining data/wine-5.0/dlls/dinput/keyboard.c Examining data/wine-5.0/dlls/dinput/mouse.c Examining data/wine-5.0/dlls/dinput/resource.h Examining data/wine-5.0/dlls/dinput/tests/device.c Examining data/wine-5.0/dlls/dinput/tests/dinput.c Examining data/wine-5.0/dlls/dinput/tests/joystick.c Examining data/wine-5.0/dlls/dinput/tests/keyboard.c Examining data/wine-5.0/dlls/dinput/tests/mouse.c Examining data/wine-5.0/dlls/dinput8/tests/device.c Examining data/wine-5.0/dlls/dinput8/tests/dinput.c Examining data/wine-5.0/dlls/dispdib.dll16/dispdib.c Examining data/wine-5.0/dlls/dispex/tests/marshal.c Examining data/wine-5.0/dlls/dispex/usrmarshal.c Examining data/wine-5.0/dlls/display.drv16/display.c Examining data/wine-5.0/dlls/dmband/band.c Examining data/wine-5.0/dlls/dmband/bandtrack.c Examining data/wine-5.0/dlls/dmband/dmband_main.c Examining data/wine-5.0/dlls/dmband/dmband_private.h Examining data/wine-5.0/dlls/dmband/dmobject.c Examining data/wine-5.0/dlls/dmband/dmobject.h Examining data/wine-5.0/dlls/dmband/dmutils.c Examining data/wine-5.0/dlls/dmband/dmutils.h Examining data/wine-5.0/dlls/dmband/tests/dmband.c Examining data/wine-5.0/dlls/dmcompos/chordmap.c Examining data/wine-5.0/dlls/dmcompos/chordmaptrack.c Examining data/wine-5.0/dlls/dmcompos/composer.c Examining data/wine-5.0/dlls/dmcompos/dmcompos_main.c Examining data/wine-5.0/dlls/dmcompos/dmcompos_private.h Examining data/wine-5.0/dlls/dmcompos/dmobject.c Examining data/wine-5.0/dlls/dmcompos/dmobject.h Examining data/wine-5.0/dlls/dmcompos/signposttrack.c Examining data/wine-5.0/dlls/dmcompos/tests/dmcompos.c Examining data/wine-5.0/dlls/dmime/audiopath.c Examining data/wine-5.0/dlls/dmime/dmime_main.c Examining data/wine-5.0/dlls/dmime/dmime_private.h Examining data/wine-5.0/dlls/dmime/dmobject.c Examining data/wine-5.0/dlls/dmime/dmobject.h Examining data/wine-5.0/dlls/dmime/dmutils.c Examining data/wine-5.0/dlls/dmime/dmutils.h Examining data/wine-5.0/dlls/dmime/graph.c Examining data/wine-5.0/dlls/dmime/lyricstrack.c Examining data/wine-5.0/dlls/dmime/markertrack.c Examining data/wine-5.0/dlls/dmime/paramcontroltrack.c Examining data/wine-5.0/dlls/dmime/performance.c Examining data/wine-5.0/dlls/dmime/segment.c Examining data/wine-5.0/dlls/dmime/segmentstate.c Examining data/wine-5.0/dlls/dmime/segtriggertrack.c Examining data/wine-5.0/dlls/dmime/seqtrack.c Examining data/wine-5.0/dlls/dmime/sysextrack.c Examining data/wine-5.0/dlls/dmime/tempotrack.c Examining data/wine-5.0/dlls/dmime/tests/dmime.c Examining data/wine-5.0/dlls/dmime/tests/performance.c Examining data/wine-5.0/dlls/dmime/timesigtrack.c Examining data/wine-5.0/dlls/dmime/wavetrack.c Examining data/wine-5.0/dlls/dmloader/container.c Examining data/wine-5.0/dlls/dmloader/debug.c Examining data/wine-5.0/dlls/dmloader/debug.h Examining data/wine-5.0/dlls/dmloader/dmloader_main.c Examining data/wine-5.0/dlls/dmloader/dmloader_private.h Examining data/wine-5.0/dlls/dmloader/dmobject.c Examining data/wine-5.0/dlls/dmloader/dmobject.h Examining data/wine-5.0/dlls/dmloader/loader.c Examining data/wine-5.0/dlls/dmloader/loaderstream.c Examining data/wine-5.0/dlls/dmloader/tests/loader.c Examining data/wine-5.0/dlls/dmoguids/dmoguids.c Examining data/wine-5.0/dlls/dmscript/dmobject.c Examining data/wine-5.0/dlls/dmscript/dmobject.h Examining data/wine-5.0/dlls/dmscript/dmscript_main.c Examining data/wine-5.0/dlls/dmscript/dmscript_private.h Examining data/wine-5.0/dlls/dmscript/script.c Examining data/wine-5.0/dlls/dmscript/scripttrack.c Examining data/wine-5.0/dlls/dmscript/tests/dmscript.c Examining data/wine-5.0/dlls/dmstyle/auditiontrack.c Examining data/wine-5.0/dlls/dmstyle/chordtrack.c Examining data/wine-5.0/dlls/dmstyle/commandtrack.c Examining data/wine-5.0/dlls/dmstyle/dmobject.c Examining data/wine-5.0/dlls/dmstyle/dmobject.h Examining data/wine-5.0/dlls/dmstyle/dmstyle_main.c Examining data/wine-5.0/dlls/dmstyle/dmstyle_private.h Examining data/wine-5.0/dlls/dmstyle/dmutils.c Examining data/wine-5.0/dlls/dmstyle/dmutils.h Examining data/wine-5.0/dlls/dmstyle/motiftrack.c Examining data/wine-5.0/dlls/dmstyle/mutetrack.c Examining data/wine-5.0/dlls/dmstyle/style.c Examining data/wine-5.0/dlls/dmstyle/styletrack.c Examining data/wine-5.0/dlls/dmstyle/tests/dmstyle.c Examining data/wine-5.0/dlls/dmsynth/dmsynth_main.c Examining data/wine-5.0/dlls/dmsynth/dmsynth_private.h Examining data/wine-5.0/dlls/dmsynth/synth.c Examining data/wine-5.0/dlls/dmsynth/synthsink.c Examining data/wine-5.0/dlls/dmsynth/tests/dmsynth.c Examining data/wine-5.0/dlls/dmusic/buffer.c Examining data/wine-5.0/dlls/dmusic/clock.c Examining data/wine-5.0/dlls/dmusic/collection.c Examining data/wine-5.0/dlls/dmusic/dmobject.c Examining data/wine-5.0/dlls/dmusic/dmobject.h Examining data/wine-5.0/dlls/dmusic/dmusic.c Examining data/wine-5.0/dlls/dmusic/dmusic_main.c Examining data/wine-5.0/dlls/dmusic/dmusic_private.h Examining data/wine-5.0/dlls/dmusic/download.c Examining data/wine-5.0/dlls/dmusic/instrument.c Examining data/wine-5.0/dlls/dmusic/port.c Examining data/wine-5.0/dlls/dmusic/tests/dmusic.c Examining data/wine-5.0/dlls/dmusic32/dmusic32_main.c Examining data/wine-5.0/dlls/dnsapi/dnsapi.h Examining data/wine-5.0/dlls/dnsapi/main.c Examining data/wine-5.0/dlls/dnsapi/name.c Examining data/wine-5.0/dlls/dnsapi/ns_name.c Examining data/wine-5.0/dlls/dnsapi/ns_parse.c Examining data/wine-5.0/dlls/dnsapi/query.c Examining data/wine-5.0/dlls/dnsapi/record.c Examining data/wine-5.0/dlls/dnsapi/tests/cache.c Examining data/wine-5.0/dlls/dnsapi/tests/name.c Examining data/wine-5.0/dlls/dnsapi/tests/record.c Examining data/wine-5.0/dlls/dplayx/dpclassfactory.c Examining data/wine-5.0/dlls/dplayx/dplay.c Examining data/wine-5.0/dlls/dplayx/dplay_global.h Examining data/wine-5.0/dlls/dplayx/dplaysp.c Examining data/wine-5.0/dlls/dplayx/dplayx_global.c Examining data/wine-5.0/dlls/dplayx/dplayx_global.h Examining data/wine-5.0/dlls/dplayx/dplayx_main.c Examining data/wine-5.0/dlls/dplayx/dplayx_messages.c Examining data/wine-5.0/dlls/dplayx/dplayx_messages.h Examining data/wine-5.0/dlls/dplayx/dplayx_queue.h Examining data/wine-5.0/dlls/dplayx/dplobby.c Examining data/wine-5.0/dlls/dplayx/lobbysp.c Examining data/wine-5.0/dlls/dplayx/lobbysp.h Examining data/wine-5.0/dlls/dplayx/name_server.c Examining data/wine-5.0/dlls/dplayx/name_server.h Examining data/wine-5.0/dlls/dplayx/tests/dplayx.c Examining data/wine-5.0/dlls/dpnet/address.c Examining data/wine-5.0/dlls/dpnet/client.c Examining data/wine-5.0/dlls/dpnet/dpnet_main.c Examining data/wine-5.0/dlls/dpnet/dpnet_private.h Examining data/wine-5.0/dlls/dpnet/lobbiedapp.c Examining data/wine-5.0/dlls/dpnet/peer.c Examining data/wine-5.0/dlls/dpnet/server.c Examining data/wine-5.0/dlls/dpnet/tests/address.c Examining data/wine-5.0/dlls/dpnet/tests/client.c Examining data/wine-5.0/dlls/dpnet/tests/dpnet_test.h Examining data/wine-5.0/dlls/dpnet/tests/server.c Examining data/wine-5.0/dlls/dpnet/tests/thread.c Examining data/wine-5.0/dlls/dpnet/threadpool.c Examining data/wine-5.0/dlls/dpnhpast/main.c Examining data/wine-5.0/dlls/dpvoice/client.c Examining data/wine-5.0/dlls/dpvoice/dvoice_private.h Examining data/wine-5.0/dlls/dpvoice/main.c Examining data/wine-5.0/dlls/dpvoice/server.c Examining data/wine-5.0/dlls/dpvoice/tests/voice.c Examining data/wine-5.0/dlls/dpwsockx/dpwsockx_dll.h Examining data/wine-5.0/dlls/dpwsockx/dpwsockx_main.c Examining data/wine-5.0/dlls/drmclien/main.c Examining data/wine-5.0/dlls/dsdmo/main.c Examining data/wine-5.0/dlls/dsound/buffer.c Examining data/wine-5.0/dlls/dsound/capture.c Examining data/wine-5.0/dlls/dsound/dsound.c Examining data/wine-5.0/dlls/dsound/dsound_convert.c Examining data/wine-5.0/dlls/dsound/dsound_main.c Examining data/wine-5.0/dlls/dsound/dsound_private.h Examining data/wine-5.0/dlls/dsound/duplex.c Examining data/wine-5.0/dlls/dsound/mixer.c Examining data/wine-5.0/dlls/dsound/primary.c Examining data/wine-5.0/dlls/dsound/propset.c Examining data/wine-5.0/dlls/dsound/sound3d.c Examining data/wine-5.0/dlls/dsound/tests/capture.c Examining data/wine-5.0/dlls/dsound/tests/ds3d.c Examining data/wine-5.0/dlls/dsound/tests/ds3d8.c Examining data/wine-5.0/dlls/dsound/tests/dsound.c Examining data/wine-5.0/dlls/dsound/tests/dsound8.c Examining data/wine-5.0/dlls/dsound/tests/dsound_test.h Examining data/wine-5.0/dlls/dsound/tests/duplex.c Examining data/wine-5.0/dlls/dsound/tests/propset.c Examining data/wine-5.0/dlls/dsquery/main.c Examining data/wine-5.0/dlls/dssenh/main.c Examining data/wine-5.0/dlls/dssenh/tests/dssenh.c Examining data/wine-5.0/dlls/dswave/dmobject.c Examining data/wine-5.0/dlls/dswave/dmobject.h Examining data/wine-5.0/dlls/dswave/dswave.c Examining data/wine-5.0/dlls/dswave/dswave_main.c Examining data/wine-5.0/dlls/dswave/dswave_private.h Examining data/wine-5.0/dlls/dswave/tests/dswave.c Examining data/wine-5.0/dlls/dwmapi/dwmapi_main.c Examining data/wine-5.0/dlls/dwrite/analyzer.c Examining data/wine-5.0/dlls/dwrite/bidi.c Examining data/wine-5.0/dlls/dwrite/direction.c Examining data/wine-5.0/dlls/dwrite/dwrite_private.h Examining data/wine-5.0/dlls/dwrite/font.c Examining data/wine-5.0/dlls/dwrite/freetype.c Examining data/wine-5.0/dlls/dwrite/gdiinterop.c Examining data/wine-5.0/dlls/dwrite/layout.c Examining data/wine-5.0/dlls/dwrite/main.c Examining data/wine-5.0/dlls/dwrite/opentype.c Examining data/wine-5.0/dlls/dwrite/shape.c Examining data/wine-5.0/dlls/dwrite/tests/analyzer.c Examining data/wine-5.0/dlls/dwrite/tests/font.c Examining data/wine-5.0/dlls/dwrite/tests/layout.c Examining data/wine-5.0/dlls/dx8vb/main.c Examining data/wine-5.0/dlls/dxdiagn/container.c Examining data/wine-5.0/dlls/dxdiagn/dxdiag_main.c Examining data/wine-5.0/dlls/dxdiagn/dxdiag_private.h Examining data/wine-5.0/dlls/dxdiagn/provider.c Examining data/wine-5.0/dlls/dxdiagn/resource.h Examining data/wine-5.0/dlls/dxdiagn/tests/container.c Examining data/wine-5.0/dlls/dxdiagn/tests/provider.c Examining data/wine-5.0/dlls/dxerr8/dxerr8.c Examining data/wine-5.0/dlls/dxerr8/errors.h Examining data/wine-5.0/dlls/dxerr9/dxerr9.c Examining data/wine-5.0/dlls/dxerr9/errors.h Examining data/wine-5.0/dlls/dxgi/adapter.c Examining data/wine-5.0/dlls/dxgi/device.c Examining data/wine-5.0/dlls/dxgi/dxgi_main.c Examining data/wine-5.0/dlls/dxgi/dxgi_private.h Examining data/wine-5.0/dlls/dxgi/factory.c Examining data/wine-5.0/dlls/dxgi/output.c Examining data/wine-5.0/dlls/dxgi/surface.c Examining data/wine-5.0/dlls/dxgi/swapchain.c Examining data/wine-5.0/dlls/dxgi/tests/dxgi.c Examining data/wine-5.0/dlls/dxgi/utils.c Examining data/wine-5.0/dlls/dxguid/dx10guid.c Examining data/wine-5.0/dlls/dxguid/dx8guid.c Examining data/wine-5.0/dlls/dxguid/dx9guid.c Examining data/wine-5.0/dlls/dxguid/dxguid.c Examining data/wine-5.0/dlls/dxva2/main.c Examining data/wine-5.0/dlls/esent/esent_main.c Examining data/wine-5.0/dlls/evr/evr.c Examining data/wine-5.0/dlls/evr/evr_private.h Examining data/wine-5.0/dlls/evr/main.c Examining data/wine-5.0/dlls/evr/tests/evr.c Examining data/wine-5.0/dlls/explorerframe/explorerframe_main.c Examining data/wine-5.0/dlls/explorerframe/explorerframe_main.h Examining data/wine-5.0/dlls/explorerframe/nstc.c Examining data/wine-5.0/dlls/explorerframe/taskbarlist.c Examining data/wine-5.0/dlls/explorerframe/tests/msg.h Examining data/wine-5.0/dlls/explorerframe/tests/nstc.c Examining data/wine-5.0/dlls/faultrep/faultrep.c Examining data/wine-5.0/dlls/faultrep/tests/faultrep.c Examining data/wine-5.0/dlls/feclient/main.c Examining data/wine-5.0/dlls/fltlib/fltlib.c Examining data/wine-5.0/dlls/fltmgr.sys/main.c Examining data/wine-5.0/dlls/fntcache/main.c Examining data/wine-5.0/dlls/fontsub/main.c Examining data/wine-5.0/dlls/fusion/asmcache.c Examining data/wine-5.0/dlls/fusion/asmenum.c Examining data/wine-5.0/dlls/fusion/asmname.c Examining data/wine-5.0/dlls/fusion/assembly.c Examining data/wine-5.0/dlls/fusion/fusion.c Examining data/wine-5.0/dlls/fusion/fusionpriv.h Examining data/wine-5.0/dlls/fusion/tests/asmcache.c Examining data/wine-5.0/dlls/fusion/tests/asmenum.c Examining data/wine-5.0/dlls/fusion/tests/asmname.c Examining data/wine-5.0/dlls/fusion/tests/fusion.c Examining data/wine-5.0/dlls/fwpuclnt/main.c Examining data/wine-5.0/dlls/gameux/factory.c Examining data/wine-5.0/dlls/gameux/gameexplorer.c Examining data/wine-5.0/dlls/gameux/gamestatistics.c Examining data/wine-5.0/dlls/gameux/gameux_private.h Examining data/wine-5.0/dlls/gameux/main.c Examining data/wine-5.0/dlls/gameux/tests/gameexplorer.c Examining data/wine-5.0/dlls/gameux/tests/gamestatistics.c Examining data/wine-5.0/dlls/gdi.exe16/bidi.c Examining data/wine-5.0/dlls/gdi.exe16/env.c Examining data/wine-5.0/dlls/gdi.exe16/gdi.c Examining data/wine-5.0/dlls/gdi.exe16/metafile.c Examining data/wine-5.0/dlls/gdi.exe16/printdrv.c Examining data/wine-5.0/dlls/gdi32/bidi.c Examining data/wine-5.0/dlls/gdi32/bitblt.c Examining data/wine-5.0/dlls/gdi32/bitmap.c Examining data/wine-5.0/dlls/gdi32/brush.c Examining data/wine-5.0/dlls/gdi32/clipping.c Examining data/wine-5.0/dlls/gdi32/dc.c Examining data/wine-5.0/dlls/gdi32/dib.c Examining data/wine-5.0/dlls/gdi32/dibdrv/bitblt.c Examining data/wine-5.0/dlls/gdi32/dibdrv/dc.c Examining data/wine-5.0/dlls/gdi32/dibdrv/dibdrv.h Examining data/wine-5.0/dlls/gdi32/dibdrv/graphics.c Examining data/wine-5.0/dlls/gdi32/dibdrv/objects.c Examining data/wine-5.0/dlls/gdi32/dibdrv/opengl.c Examining data/wine-5.0/dlls/gdi32/dibdrv/primitives.c Examining data/wine-5.0/dlls/gdi32/direction.c Examining data/wine-5.0/dlls/gdi32/driver.c Examining data/wine-5.0/dlls/gdi32/enhmetafile.c Examining data/wine-5.0/dlls/gdi32/enhmfdrv/bitblt.c Examining data/wine-5.0/dlls/gdi32/enhmfdrv/dc.c Examining data/wine-5.0/dlls/gdi32/enhmfdrv/enhmetafiledrv.h Examining data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c Examining data/wine-5.0/dlls/gdi32/enhmfdrv/init.c Examining data/wine-5.0/dlls/gdi32/enhmfdrv/objects.c Examining data/wine-5.0/dlls/gdi32/font.c Examining data/wine-5.0/dlls/gdi32/freetype.c Examining data/wine-5.0/dlls/gdi32/gdi_private.h Examining data/wine-5.0/dlls/gdi32/gdiobj.c Examining data/wine-5.0/dlls/gdi32/icm.c Examining data/wine-5.0/dlls/gdi32/mapping.c Examining data/wine-5.0/dlls/gdi32/metafile.c Examining data/wine-5.0/dlls/gdi32/mfdrv/bitblt.c Examining data/wine-5.0/dlls/gdi32/mfdrv/dc.c Examining data/wine-5.0/dlls/gdi32/mfdrv/graphics.c Examining data/wine-5.0/dlls/gdi32/mfdrv/init.c Examining data/wine-5.0/dlls/gdi32/mfdrv/metafiledrv.h Examining data/wine-5.0/dlls/gdi32/mfdrv/objects.c Examining data/wine-5.0/dlls/gdi32/mfdrv/text.c Examining data/wine-5.0/dlls/gdi32/opengl.c Examining data/wine-5.0/dlls/gdi32/painting.c Examining data/wine-5.0/dlls/gdi32/palette.c Examining data/wine-5.0/dlls/gdi32/path.c Examining data/wine-5.0/dlls/gdi32/pen.c Examining data/wine-5.0/dlls/gdi32/printdrv.c Examining data/wine-5.0/dlls/gdi32/region.c Examining data/wine-5.0/dlls/gdi32/resource.h Examining data/wine-5.0/dlls/gdi32/tests/bitmap.c Examining data/wine-5.0/dlls/gdi32/tests/brush.c Examining data/wine-5.0/dlls/gdi32/tests/clipping.c Examining data/wine-5.0/dlls/gdi32/tests/dc.c Examining data/wine-5.0/dlls/gdi32/tests/dib.c Examining data/wine-5.0/dlls/gdi32/tests/driver.c Examining data/wine-5.0/dlls/gdi32/tests/font.c Examining data/wine-5.0/dlls/gdi32/tests/gdiobj.c Examining data/wine-5.0/dlls/gdi32/tests/icm.c Examining data/wine-5.0/dlls/gdi32/tests/mapping.c Examining data/wine-5.0/dlls/gdi32/tests/metafile.c Examining data/wine-5.0/dlls/gdi32/tests/palette.c Examining data/wine-5.0/dlls/gdi32/tests/path.c Examining data/wine-5.0/dlls/gdi32/tests/pen.c Examining data/wine-5.0/dlls/gdi32/vulkan.c Examining data/wine-5.0/dlls/gdiplus/brush.c Examining data/wine-5.0/dlls/gdiplus/customlinecap.c Examining data/wine-5.0/dlls/gdiplus/font.c Examining data/wine-5.0/dlls/gdiplus/gdiplus.c Examining data/wine-5.0/dlls/gdiplus/gdiplus_private.h Examining data/wine-5.0/dlls/gdiplus/graphicspath.c Examining data/wine-5.0/dlls/gdiplus/image.c Examining data/wine-5.0/dlls/gdiplus/imageattributes.c Examining data/wine-5.0/dlls/gdiplus/matrix.c Examining data/wine-5.0/dlls/gdiplus/metafile.c Examining data/wine-5.0/dlls/gdiplus/pathiterator.c Examining data/wine-5.0/dlls/gdiplus/pen.c Examining data/wine-5.0/dlls/gdiplus/region.c Examining data/wine-5.0/dlls/gdiplus/stringformat.c Examining data/wine-5.0/dlls/gdiplus/tests/brush.c Examining data/wine-5.0/dlls/gdiplus/tests/customlinecap.c Examining data/wine-5.0/dlls/gdiplus/tests/font.c Examining data/wine-5.0/dlls/gdiplus/tests/graphics.c Examining data/wine-5.0/dlls/gdiplus/tests/graphicspath.c Examining data/wine-5.0/dlls/gdiplus/tests/image.c Examining data/wine-5.0/dlls/gdiplus/tests/matrix.c Examining data/wine-5.0/dlls/gdiplus/tests/metafile.c Examining data/wine-5.0/dlls/gdiplus/tests/pathiterator.c Examining data/wine-5.0/dlls/gdiplus/tests/pen.c Examining data/wine-5.0/dlls/gdiplus/tests/region.c Examining data/wine-5.0/dlls/gdiplus/tests/stringformat.c Examining data/wine-5.0/dlls/gdiplus/graphics.c Examining data/wine-5.0/dlls/glu32/geom.c Examining data/wine-5.0/dlls/glu32/glu.c Examining data/wine-5.0/dlls/glu32/mesh.c Examining data/wine-5.0/dlls/glu32/mesh.h Examining data/wine-5.0/dlls/glu32/mipmap.c Examining data/wine-5.0/dlls/glu32/priorityq.c Examining data/wine-5.0/dlls/glu32/project.c Examining data/wine-5.0/dlls/glu32/quad.c Examining data/wine-5.0/dlls/glu32/render.c Examining data/wine-5.0/dlls/glu32/sweep.c Examining data/wine-5.0/dlls/glu32/tess.c Examining data/wine-5.0/dlls/glu32/tess.h Examining data/wine-5.0/dlls/gphoto2.ds/capability.c Examining data/wine-5.0/dlls/gphoto2.ds/ds_image.c Examining data/wine-5.0/dlls/gphoto2.ds/gphoto2_i.h Examining data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c Examining data/wine-5.0/dlls/gphoto2.ds/resource.h Examining data/wine-5.0/dlls/gphoto2.ds/ui.c Examining data/wine-5.0/dlls/gpkcsp/main.c Examining data/wine-5.0/dlls/hal/hal.c Examining data/wine-5.0/dlls/hhctrl.ocx/chm.c Examining data/wine-5.0/dlls/hhctrl.ocx/content.c Examining data/wine-5.0/dlls/hhctrl.ocx/help.c Examining data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c Examining data/wine-5.0/dlls/hhctrl.ocx/hhctrl.h Examining data/wine-5.0/dlls/hhctrl.ocx/index.c Examining data/wine-5.0/dlls/hhctrl.ocx/resource.h Examining data/wine-5.0/dlls/hhctrl.ocx/search.c Examining data/wine-5.0/dlls/hhctrl.ocx/stream.c Examining data/wine-5.0/dlls/hhctrl.ocx/stream.h Examining data/wine-5.0/dlls/hhctrl.ocx/webbrowser.c Examining data/wine-5.0/dlls/hid/hidd.c Examining data/wine-5.0/dlls/hid/hidp.c Examining data/wine-5.0/dlls/hid/main.c Examining data/wine-5.0/dlls/hid/tests/device.c Examining data/wine-5.0/dlls/hidclass.sys/buffer.c Examining data/wine-5.0/dlls/hidclass.sys/descriptor.c Examining data/wine-5.0/dlls/hidclass.sys/device.c Examining data/wine-5.0/dlls/hidclass.sys/hid.h Examining data/wine-5.0/dlls/hidclass.sys/main.c Examining data/wine-5.0/dlls/hidclass.sys/pnp.c Examining data/wine-5.0/dlls/hlink/browse_ctx.c Examining data/wine-5.0/dlls/hlink/extserv.c Examining data/wine-5.0/dlls/hlink/hlink_main.c Examining data/wine-5.0/dlls/hlink/hlink_private.h Examining data/wine-5.0/dlls/hlink/link.c Examining data/wine-5.0/dlls/hlink/tests/browse_ctx.c Examining data/wine-5.0/dlls/hlink/tests/hlink.c Examining data/wine-5.0/dlls/hnetcfg/apps.c Examining data/wine-5.0/dlls/hnetcfg/hnetcfg.c Examining data/wine-5.0/dlls/hnetcfg/hnetcfg_private.h Examining data/wine-5.0/dlls/hnetcfg/manager.c Examining data/wine-5.0/dlls/hnetcfg/policy.c Examining data/wine-5.0/dlls/hnetcfg/port.c Examining data/wine-5.0/dlls/hnetcfg/profile.c Examining data/wine-5.0/dlls/hnetcfg/service.c Examining data/wine-5.0/dlls/hnetcfg/tests/policy.c Examining data/wine-5.0/dlls/http.sys/http.c Examining data/wine-5.0/dlls/httpapi/httpapi_main.c Examining data/wine-5.0/dlls/httpapi/tests/httpapi.c Examining data/wine-5.0/dlls/iccvid/iccvid.c Examining data/wine-5.0/dlls/iccvid/iccvid_private.h Examining data/wine-5.0/dlls/ieframe/classinfo.c Examining data/wine-5.0/dlls/ieframe/client.c Examining data/wine-5.0/dlls/ieframe/dochost.c Examining data/wine-5.0/dlls/ieframe/events.c Examining data/wine-5.0/dlls/ieframe/frame.c Examining data/wine-5.0/dlls/ieframe/ie.c Examining data/wine-5.0/dlls/ieframe/ieframe.h Examining data/wine-5.0/dlls/ieframe/ieframe_main.c Examining data/wine-5.0/dlls/ieframe/iehtmlwnd.c Examining data/wine-5.0/dlls/ieframe/iexplore.c Examining data/wine-5.0/dlls/ieframe/intshcut.c Examining data/wine-5.0/dlls/ieframe/navigate.c Examining data/wine-5.0/dlls/ieframe/oleobject.c Examining data/wine-5.0/dlls/ieframe/persist.c Examining data/wine-5.0/dlls/ieframe/resource.h Examining data/wine-5.0/dlls/ieframe/shellbrowser.c Examining data/wine-5.0/dlls/ieframe/shelluihelper.c Examining data/wine-5.0/dlls/ieframe/tests/ie.c Examining data/wine-5.0/dlls/ieframe/tests/intshcut.c Examining data/wine-5.0/dlls/ieframe/tests/webbrowser.c Examining data/wine-5.0/dlls/ieframe/urlhist.c Examining data/wine-5.0/dlls/ieframe/view.c Examining data/wine-5.0/dlls/ieframe/webbrowser.c Examining data/wine-5.0/dlls/ifsmgr.vxd/ifsmgr.c Examining data/wine-5.0/dlls/imaadp32.acm/imaadp32.c Examining data/wine-5.0/dlls/imagehlp/access.c Examining data/wine-5.0/dlls/imagehlp/imagehlp_main.c Examining data/wine-5.0/dlls/imagehlp/integrity.c Examining data/wine-5.0/dlls/imagehlp/modify.c Examining data/wine-5.0/dlls/imagehlp/tests/image.c Examining data/wine-5.0/dlls/imagehlp/tests/integrity.c Examining data/wine-5.0/dlls/imm32/imm.c Examining data/wine-5.0/dlls/imm32/tests/imm32.c Examining data/wine-5.0/dlls/inetcomm/imaptransport.c Examining data/wine-5.0/dlls/inetcomm/inetcomm_main.c Examining data/wine-5.0/dlls/inetcomm/inetcomm_private.h Examining data/wine-5.0/dlls/inetcomm/internettransport.c Examining data/wine-5.0/dlls/inetcomm/mimeintl.c Examining data/wine-5.0/dlls/inetcomm/mimeole.c Examining data/wine-5.0/dlls/inetcomm/pop3transport.c Examining data/wine-5.0/dlls/inetcomm/protocol.c Examining data/wine-5.0/dlls/inetcomm/smtptransport.c Examining data/wine-5.0/dlls/inetcomm/tests/mimeintl.c Examining data/wine-5.0/dlls/inetcomm/tests/mimeole.c Examining data/wine-5.0/dlls/inetcpl.cpl/connections.c Examining data/wine-5.0/dlls/inetcpl.cpl/content.c Examining data/wine-5.0/dlls/inetcpl.cpl/general.c Examining data/wine-5.0/dlls/inetcpl.cpl/inetcpl.c Examining data/wine-5.0/dlls/inetcpl.cpl/inetcpl.h Examining data/wine-5.0/dlls/inetcpl.cpl/security.c Examining data/wine-5.0/dlls/inetmib1/main.c Examining data/wine-5.0/dlls/inetmib1/tests/main.c Examining data/wine-5.0/dlls/infosoft/infosoft_main.c Examining data/wine-5.0/dlls/infosoft/tests/infosoft.c Examining data/wine-5.0/dlls/infosoft/wordbreaker.c Examining data/wine-5.0/dlls/initpki/main.c Examining data/wine-5.0/dlls/inkobj/inkobj.c Examining data/wine-5.0/dlls/inkobj/inkobj_internal.h Examining data/wine-5.0/dlls/inseng/inseng_main.c Examining data/wine-5.0/dlls/iphlpapi/icmp.c Examining data/wine-5.0/dlls/iphlpapi/ifenum.c Examining data/wine-5.0/dlls/iphlpapi/ifenum.h Examining data/wine-5.0/dlls/iphlpapi/ip.h Examining data/wine-5.0/dlls/iphlpapi/ip_icmp.h Examining data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c Examining data/wine-5.0/dlls/iphlpapi/ipstats.c Examining data/wine-5.0/dlls/iphlpapi/ipstats.h Examining data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c Examining data/wine-5.0/dlls/itircl/itircl_main.c Examining data/wine-5.0/dlls/itss/chm_lib.c Examining data/wine-5.0/dlls/itss/chm_lib.h Examining data/wine-5.0/dlls/itss/itss.c Examining data/wine-5.0/dlls/itss/itsstor.h Examining data/wine-5.0/dlls/itss/lzx.c Examining data/wine-5.0/dlls/itss/lzx.h Examining data/wine-5.0/dlls/itss/moniker.c Examining data/wine-5.0/dlls/itss/protocol.c Examining data/wine-5.0/dlls/itss/storage.c Examining data/wine-5.0/dlls/itss/tests/protocol.c Examining data/wine-5.0/dlls/joy.cpl/joy.h Examining data/wine-5.0/dlls/joy.cpl/main.c Examining data/wine-5.0/dlls/jscript/activex.c Examining data/wine-5.0/dlls/jscript/array.c Examining data/wine-5.0/dlls/jscript/bool.c Examining data/wine-5.0/dlls/jscript/compile.c Examining data/wine-5.0/dlls/jscript/date.c Examining data/wine-5.0/dlls/jscript/decode.c Examining data/wine-5.0/dlls/jscript/dispex.c Examining data/wine-5.0/dlls/jscript/engine.c Examining data/wine-5.0/dlls/jscript/engine.h Examining data/wine-5.0/dlls/jscript/enumerator.c Examining data/wine-5.0/dlls/jscript/error.c Examining data/wine-5.0/dlls/jscript/function.c Examining data/wine-5.0/dlls/jscript/global.c Examining data/wine-5.0/dlls/jscript/jscript.c Examining data/wine-5.0/dlls/jscript/jscript.h Examining data/wine-5.0/dlls/jscript/jscript_main.c Examining data/wine-5.0/dlls/jscript/jsglobal_dispid.h Examining data/wine-5.0/dlls/jscript/json.c Examining data/wine-5.0/dlls/jscript/jsregexp.c Examining data/wine-5.0/dlls/jscript/jsstr.c Examining data/wine-5.0/dlls/jscript/jsstr.h Examining data/wine-5.0/dlls/jscript/jsutils.c Examining data/wine-5.0/dlls/jscript/jsval.h Examining data/wine-5.0/dlls/jscript/lex.c Examining data/wine-5.0/dlls/jscript/math.c Examining data/wine-5.0/dlls/jscript/number.c Examining data/wine-5.0/dlls/jscript/object.c Examining data/wine-5.0/dlls/jscript/parser.h Examining data/wine-5.0/dlls/jscript/regexp.c Examining data/wine-5.0/dlls/jscript/regexp.h Examining data/wine-5.0/dlls/jscript/resource.h Examining data/wine-5.0/dlls/jscript/string.c Examining data/wine-5.0/dlls/jscript/tests/activex.c Examining data/wine-5.0/dlls/jscript/tests/caller.c Examining data/wine-5.0/dlls/jscript/tests/jscript.c Examining data/wine-5.0/dlls/jscript/tests/run.c Examining data/wine-5.0/dlls/jscript/vbarray.c Examining data/wine-5.0/dlls/jsproxy/main.c Examining data/wine-5.0/dlls/jsproxy/tests/jsproxy.c Examining data/wine-5.0/dlls/kerberos/krb5_ap.c Examining data/wine-5.0/dlls/kernel32/actctx.c Examining data/wine-5.0/dlls/kernel32/atom.c Examining data/wine-5.0/dlls/kernel32/comm.c Examining data/wine-5.0/dlls/kernel32/computername.c Examining data/wine-5.0/dlls/kernel32/console.c Examining data/wine-5.0/dlls/kernel32/console_private.h Examining data/wine-5.0/dlls/kernel32/cpu.c Examining data/wine-5.0/dlls/kernel32/debugger.c Examining data/wine-5.0/dlls/kernel32/editline.c Examining data/wine-5.0/dlls/kernel32/environ.c Examining data/wine-5.0/dlls/kernel32/file.c Examining data/wine-5.0/dlls/kernel32/format_msg.c Examining data/wine-5.0/dlls/kernel32/heap.c Examining data/wine-5.0/dlls/kernel32/kernel_main.c Examining data/wine-5.0/dlls/kernel32/kernel_private.h Examining data/wine-5.0/dlls/kernel32/lcformat.c Examining data/wine-5.0/dlls/kernel32/lzexpand.c Examining data/wine-5.0/dlls/kernel32/module.c Examining data/wine-5.0/dlls/kernel32/path.c Examining data/wine-5.0/dlls/kernel32/powermgnt.c Examining data/wine-5.0/dlls/kernel32/process.c Examining data/wine-5.0/dlls/kernel32/profile.c Examining data/wine-5.0/dlls/kernel32/resource.c Examining data/wine-5.0/dlls/kernel32/string.c Examining data/wine-5.0/dlls/kernel32/sync.c Examining data/wine-5.0/dlls/kernel32/tape.c Examining data/wine-5.0/dlls/kernel32/term.c Examining data/wine-5.0/dlls/kernel32/tests/actctx.c Examining data/wine-5.0/dlls/kernel32/tests/atom.c Examining data/wine-5.0/dlls/kernel32/tests/change.c Examining data/wine-5.0/dlls/kernel32/tests/codepage.c Examining data/wine-5.0/dlls/kernel32/tests/comm.c Examining data/wine-5.0/dlls/kernel32/tests/console.c Examining data/wine-5.0/dlls/kernel32/tests/debugger.c Examining data/wine-5.0/dlls/kernel32/tests/directory.c Examining data/wine-5.0/dlls/kernel32/tests/drive.c Examining data/wine-5.0/dlls/kernel32/tests/dummy.c Examining data/wine-5.0/dlls/kernel32/tests/environ.c Examining data/wine-5.0/dlls/kernel32/tests/fiber.c Examining data/wine-5.0/dlls/kernel32/tests/file.c Examining data/wine-5.0/dlls/kernel32/tests/format_msg.c Examining data/wine-5.0/dlls/kernel32/tests/heap.c Examining data/wine-5.0/dlls/kernel32/tests/loader.c Examining data/wine-5.0/dlls/kernel32/tests/locale.c Examining data/wine-5.0/dlls/kernel32/tests/mailslot.c Examining data/wine-5.0/dlls/kernel32/tests/module.c Examining data/wine-5.0/dlls/kernel32/tests/path.c Examining data/wine-5.0/dlls/kernel32/tests/pipe.c Examining data/wine-5.0/dlls/kernel32/tests/power.c Examining data/wine-5.0/dlls/kernel32/tests/process.c Examining data/wine-5.0/dlls/kernel32/tests/profile.c Examining data/wine-5.0/dlls/kernel32/tests/resource.c Examining data/wine-5.0/dlls/kernel32/tests/sync.c Examining data/wine-5.0/dlls/kernel32/tests/thread.c Examining data/wine-5.0/dlls/kernel32/tests/time.c Examining data/wine-5.0/dlls/kernel32/tests/timer.c Examining data/wine-5.0/dlls/kernel32/tests/toolhelp.c Examining data/wine-5.0/dlls/kernel32/tests/version.c Examining data/wine-5.0/dlls/kernel32/tests/virtual.c Examining data/wine-5.0/dlls/kernel32/tests/volume.c Examining data/wine-5.0/dlls/kernel32/thread.c Examining data/wine-5.0/dlls/kernel32/time.c Examining data/wine-5.0/dlls/kernel32/toolhelp.c Examining data/wine-5.0/dlls/kernel32/version.c Examining data/wine-5.0/dlls/kernel32/virtual.c Examining data/wine-5.0/dlls/kernel32/volume.c Examining data/wine-5.0/dlls/kernel32/wer.c Examining data/wine-5.0/dlls/kernel32/locale.c Examining data/wine-5.0/dlls/kernelbase/console.c Examining data/wine-5.0/dlls/kernelbase/debug.c Examining data/wine-5.0/dlls/kernelbase/file.c Examining data/wine-5.0/dlls/kernelbase/kernelbase.h Examining data/wine-5.0/dlls/kernelbase/loader.c Examining data/wine-5.0/dlls/kernelbase/locale.c Examining data/wine-5.0/dlls/kernelbase/main.c Examining data/wine-5.0/dlls/kernelbase/memory.c Examining data/wine-5.0/dlls/kernelbase/path.c Examining data/wine-5.0/dlls/kernelbase/process.c Examining data/wine-5.0/dlls/kernelbase/registry.c Examining data/wine-5.0/dlls/kernelbase/security.c Examining data/wine-5.0/dlls/kernelbase/string.c Examining data/wine-5.0/dlls/kernelbase/sync.c Examining data/wine-5.0/dlls/kernelbase/tests/path.c Examining data/wine-5.0/dlls/kernelbase/tests/sync.c Examining data/wine-5.0/dlls/kernelbase/thread.c Examining data/wine-5.0/dlls/kernelbase/version.c Examining data/wine-5.0/dlls/kernelbase/wctype.c Examining data/wine-5.0/dlls/keyboard.drv16/keyboard.c Examining data/wine-5.0/dlls/krnl386.exe16/atom.c Examining data/wine-5.0/dlls/krnl386.exe16/dma.c Examining data/wine-5.0/dlls/krnl386.exe16/dosexe.h Examining data/wine-5.0/dlls/krnl386.exe16/dosmem.c Examining data/wine-5.0/dlls/krnl386.exe16/dosvm.c Examining data/wine-5.0/dlls/krnl386.exe16/error.c Examining data/wine-5.0/dlls/krnl386.exe16/file.c Examining data/wine-5.0/dlls/krnl386.exe16/fpu.c Examining data/wine-5.0/dlls/krnl386.exe16/global.c Examining data/wine-5.0/dlls/krnl386.exe16/instr.c Examining data/wine-5.0/dlls/krnl386.exe16/int13.c Examining data/wine-5.0/dlls/krnl386.exe16/int15.c Examining data/wine-5.0/dlls/krnl386.exe16/int21.c Examining data/wine-5.0/dlls/krnl386.exe16/int25.c Examining data/wine-5.0/dlls/krnl386.exe16/int26.c Examining data/wine-5.0/dlls/krnl386.exe16/int2f.c Examining data/wine-5.0/dlls/krnl386.exe16/int31.c Examining data/wine-5.0/dlls/krnl386.exe16/int67.c Examining data/wine-5.0/dlls/krnl386.exe16/ioports.c Examining data/wine-5.0/dlls/krnl386.exe16/kernel.c Examining data/wine-5.0/dlls/krnl386.exe16/kernel16_private.h Examining data/wine-5.0/dlls/krnl386.exe16/local.c Examining data/wine-5.0/dlls/krnl386.exe16/ne_module.c Examining data/wine-5.0/dlls/krnl386.exe16/ne_segment.c Examining data/wine-5.0/dlls/krnl386.exe16/registry.c Examining data/wine-5.0/dlls/krnl386.exe16/relay.c Examining data/wine-5.0/dlls/krnl386.exe16/resource.c Examining data/wine-5.0/dlls/krnl386.exe16/selector.c Examining data/wine-5.0/dlls/krnl386.exe16/snoop.c Examining data/wine-5.0/dlls/krnl386.exe16/soundblaster.c Examining data/wine-5.0/dlls/krnl386.exe16/syslevel.c Examining data/wine-5.0/dlls/krnl386.exe16/task.c Examining data/wine-5.0/dlls/krnl386.exe16/thunk.c Examining data/wine-5.0/dlls/krnl386.exe16/utthunk.c Examining data/wine-5.0/dlls/krnl386.exe16/vxd.c Examining data/wine-5.0/dlls/krnl386.exe16/wowthunk.c Examining data/wine-5.0/dlls/krnl386.exe16/interrupts.c Examining data/wine-5.0/dlls/ksecdd.sys/main.c Examining data/wine-5.0/dlls/ksuser/main.c Examining data/wine-5.0/dlls/ktmw32/ktmw32_main.c Examining data/wine-5.0/dlls/l3codeca.acm/mpegl3.c Examining data/wine-5.0/dlls/loadperf/loadperf_main.c Examining data/wine-5.0/dlls/localspl/localmon.c Examining data/wine-5.0/dlls/localspl/localspl_main.c Examining data/wine-5.0/dlls/localspl/localspl_private.h Examining data/wine-5.0/dlls/localspl/provider.c Examining data/wine-5.0/dlls/localspl/tests/localmon.c Examining data/wine-5.0/dlls/localui/localui.c Examining data/wine-5.0/dlls/localui/localui.h Examining data/wine-5.0/dlls/localui/tests/localui.c Examining data/wine-5.0/dlls/lz32/tests/lzexpand_main.c Examining data/wine-5.0/dlls/lzexpand.dll16/lzexpand.c Examining data/wine-5.0/dlls/mapi32/imalloc.c Examining data/wine-5.0/dlls/mapi32/mapi32_main.c Examining data/wine-5.0/dlls/mapi32/prop.c Examining data/wine-5.0/dlls/mapi32/res.h Examining data/wine-5.0/dlls/mapi32/sendmail.c Examining data/wine-5.0/dlls/mapi32/tests/imalloc.c Examining data/wine-5.0/dlls/mapi32/tests/mapi32_test.h Examining data/wine-5.0/dlls/mapi32/tests/prop.c Examining data/wine-5.0/dlls/mapi32/tests/util.c Examining data/wine-5.0/dlls/mapi32/util.c Examining data/wine-5.0/dlls/mapi32/util.h Examining data/wine-5.0/dlls/mapistub/main.c Examining data/wine-5.0/dlls/mciavi32/info.c Examining data/wine-5.0/dlls/mciavi32/mciavi.c Examining data/wine-5.0/dlls/mciavi32/mmoutput.c Examining data/wine-5.0/dlls/mciavi32/private_mciavi.h Examining data/wine-5.0/dlls/mciavi32/wnd.c Examining data/wine-5.0/dlls/mcicda/mcicda.c Examining data/wine-5.0/dlls/mciqtz32/mciqtz.c Examining data/wine-5.0/dlls/mciqtz32/mciqtz_private.h Examining data/wine-5.0/dlls/mciseq/mcimidi.c Examining data/wine-5.0/dlls/mciwave/mciwave.c Examining data/wine-5.0/dlls/mf/main.c Examining data/wine-5.0/dlls/mf/mf_private.h Examining data/wine-5.0/dlls/mf/samplegrabber.c Examining data/wine-5.0/dlls/mf/sar.c Examining data/wine-5.0/dlls/mf/tests/mf.c Examining data/wine-5.0/dlls/mf/topology.c Examining data/wine-5.0/dlls/mf/session.c Examining data/wine-5.0/dlls/mfmediaengine/main.c Examining data/wine-5.0/dlls/mfmediaengine/tests/mfmediaengine.c Examining data/wine-5.0/dlls/mfplat/buffer.c Examining data/wine-5.0/dlls/mfplat/main.c Examining data/wine-5.0/dlls/mfplat/mediatype.c Examining data/wine-5.0/dlls/mfplat/mfplat_private.h Examining data/wine-5.0/dlls/mfplat/queue.c Examining data/wine-5.0/dlls/mfplat/tests/mfplat.c Examining data/wine-5.0/dlls/mfplay/player.c Examining data/wine-5.0/dlls/mfreadwrite/main.c Examining data/wine-5.0/dlls/mfreadwrite/tests/mfplat.c Examining data/wine-5.0/dlls/mfuuid/mfuuid.c Examining data/wine-5.0/dlls/mgmtapi/mgmtapi.c Examining data/wine-5.0/dlls/midimap/midimap.c Examining data/wine-5.0/dlls/mlang/mlang.c Examining data/wine-5.0/dlls/mlang/tests/mlang.c Examining data/wine-5.0/dlls/mmcndmgr/mmcndmgr.c Examining data/wine-5.0/dlls/mmcndmgr/tests/mmcndmgr.c Examining data/wine-5.0/dlls/mmdevapi/audiovolume.c Examining data/wine-5.0/dlls/mmdevapi/devenum.c Examining data/wine-5.0/dlls/mmdevapi/main.c Examining data/wine-5.0/dlls/mmdevapi/mmdevapi.h Examining data/wine-5.0/dlls/mmdevapi/tests/capture.c Examining data/wine-5.0/dlls/mmdevapi/tests/dependency.c Examining data/wine-5.0/dlls/mmdevapi/tests/mmdevenum.c Examining data/wine-5.0/dlls/mmdevapi/tests/propstore.c Examining data/wine-5.0/dlls/mmdevapi/tests/render.c Examining data/wine-5.0/dlls/mmdevldr.vxd/mmdevldr.c Examining data/wine-5.0/dlls/mmsystem.dll16/driver.c Examining data/wine-5.0/dlls/mmsystem.dll16/mci16.c Examining data/wine-5.0/dlls/mmsystem.dll16/message16.c Examining data/wine-5.0/dlls/mmsystem.dll16/mmio16.c Examining data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c Examining data/wine-5.0/dlls/mmsystem.dll16/winemm16.h Examining data/wine-5.0/dlls/monodebg.vxd/monodebg.c Examining data/wine-5.0/dlls/mountmgr.sys/dbus.c Examining data/wine-5.0/dlls/mountmgr.sys/device.c Examining data/wine-5.0/dlls/mountmgr.sys/diskarb.c Examining data/wine-5.0/dlls/mountmgr.sys/mountmgr.c Examining data/wine-5.0/dlls/mountmgr.sys/mountmgr.h Examining data/wine-5.0/dlls/mouse.drv16/mouse.c Examining data/wine-5.0/dlls/mp3dmod/mp3dmod.c Examining data/wine-5.0/dlls/mp3dmod/tests/mp3dmod.c Examining data/wine-5.0/dlls/mpr/auth.c Examining data/wine-5.0/dlls/mpr/mpr_main.c Examining data/wine-5.0/dlls/mpr/mprres.h Examining data/wine-5.0/dlls/mpr/multinet.c Examining data/wine-5.0/dlls/mpr/netspi.h Examining data/wine-5.0/dlls/mpr/nps.c Examining data/wine-5.0/dlls/mpr/pwcache.c Examining data/wine-5.0/dlls/mpr/tests/mpr.c Examining data/wine-5.0/dlls/mpr/wnet.c Examining data/wine-5.0/dlls/mpr/wnetpriv.h Examining data/wine-5.0/dlls/mprapi/mprapi.c Examining data/wine-5.0/dlls/msacm.dll16/msacm.c Examining data/wine-5.0/dlls/msacm.dll16/wineacm16.h Examining data/wine-5.0/dlls/msacm32.drv/wavemap.c Examining data/wine-5.0/dlls/msacm32/driver.c Examining data/wine-5.0/dlls/msacm32/filter.c Examining data/wine-5.0/dlls/msacm32/format.c Examining data/wine-5.0/dlls/msacm32/internal.c Examining data/wine-5.0/dlls/msacm32/msacm32_main.c Examining data/wine-5.0/dlls/msacm32/pcmconverter.c Examining data/wine-5.0/dlls/msacm32/stream.c Examining data/wine-5.0/dlls/msacm32/tests/msacm.c Examining data/wine-5.0/dlls/msacm32/wineacm.h Examining data/wine-5.0/dlls/msado15/command.c Examining data/wine-5.0/dlls/msado15/connection.c Examining data/wine-5.0/dlls/msado15/main.c Examining data/wine-5.0/dlls/msado15/msado15_private.h Examining data/wine-5.0/dlls/msado15/recordset.c Examining data/wine-5.0/dlls/msado15/stream.c Examining data/wine-5.0/dlls/msado15/tests/msado15.c Examining data/wine-5.0/dlls/msadp32.acm/msadp32.c Examining data/wine-5.0/dlls/msasn1/main.c Examining data/wine-5.0/dlls/mscat32/main.c Examining data/wine-5.0/dlls/mscms/handle.c Examining data/wine-5.0/dlls/mscms/icc.c Examining data/wine-5.0/dlls/mscms/mscms_main.c Examining data/wine-5.0/dlls/mscms/mscms_priv.h Examining data/wine-5.0/dlls/mscms/profile.c Examining data/wine-5.0/dlls/mscms/stub.c Examining data/wine-5.0/dlls/mscms/tests/profile.c Examining data/wine-5.0/dlls/mscms/transform.c Examining data/wine-5.0/dlls/mscoree/assembly.c Examining data/wine-5.0/dlls/mscoree/config.c Examining data/wine-5.0/dlls/mscoree/cordebug.c Examining data/wine-5.0/dlls/mscoree/corruntimehost.c Examining data/wine-5.0/dlls/mscoree/metadata.c Examining data/wine-5.0/dlls/mscoree/metahost.c Examining data/wine-5.0/dlls/mscoree/mscoree_main.c Examining data/wine-5.0/dlls/mscoree/mscoree_private.h Examining data/wine-5.0/dlls/mscoree/tests/comtest.c Examining data/wine-5.0/dlls/mscoree/tests/debugging.c Examining data/wine-5.0/dlls/mscoree/tests/metahost.c Examining data/wine-5.0/dlls/mscoree/tests/mscoree.c Examining data/wine-5.0/dlls/mscorwks/mscorwks_main.c Examining data/wine-5.0/dlls/msctf/categorymgr.c Examining data/wine-5.0/dlls/msctf/compartmentmgr.c Examining data/wine-5.0/dlls/msctf/context.c Examining data/wine-5.0/dlls/msctf/displayattributemgr.c Examining data/wine-5.0/dlls/msctf/documentmgr.c Examining data/wine-5.0/dlls/msctf/inputprocessor.c Examining data/wine-5.0/dlls/msctf/langbarmgr.c Examining data/wine-5.0/dlls/msctf/msctf.c Examining data/wine-5.0/dlls/msctf/msctf_internal.h Examining data/wine-5.0/dlls/msctf/range.c Examining data/wine-5.0/dlls/msctf/tests/inputprocessor.c Examining data/wine-5.0/dlls/msctf/threadmgr.c Examining data/wine-5.0/dlls/msdaps/main.c Examining data/wine-5.0/dlls/msdaps/usrmarshal.c Examining data/wine-5.0/dlls/msdaps/row_server.c Examining data/wine-5.0/dlls/msdelta/msdelta_main.c Examining data/wine-5.0/dlls/msdmo/dmoreg.c Examining data/wine-5.0/dlls/msdmo/dmort.c Examining data/wine-5.0/dlls/msdmo/tests/msdmo.c Examining data/wine-5.0/dlls/msdrm/main.c Examining data/wine-5.0/dlls/msftedit/msftedit_main.c Examining data/wine-5.0/dlls/msftedit/tests/richole.c Examining data/wine-5.0/dlls/msg711.acm/msg711.c Examining data/wine-5.0/dlls/msgsm32.acm/msgsm32.c Examining data/wine-5.0/dlls/mshtml/binding.h Examining data/wine-5.0/dlls/mshtml/conpoint.c Examining data/wine-5.0/dlls/mshtml/dispex.c Examining data/wine-5.0/dlls/mshtml/editor.c Examining data/wine-5.0/dlls/mshtml/htmlanchor.c Examining data/wine-5.0/dlls/mshtml/htmlarea.c Examining data/wine-5.0/dlls/mshtml/htmlattr.c Examining data/wine-5.0/dlls/mshtml/htmlbody.c Examining data/wine-5.0/dlls/mshtml/htmlcomment.c Examining data/wine-5.0/dlls/mshtml/htmlcurstyle.c Examining data/wine-5.0/dlls/mshtml/htmldoc.c Examining data/wine-5.0/dlls/mshtml/htmlelem.c Examining data/wine-5.0/dlls/mshtml/htmlelemcol.c Examining data/wine-5.0/dlls/mshtml/htmlevent.c Examining data/wine-5.0/dlls/mshtml/htmlevent.h Examining data/wine-5.0/dlls/mshtml/htmlform.c Examining data/wine-5.0/dlls/mshtml/htmlframe.c Examining data/wine-5.0/dlls/mshtml/htmlgeneric.c Examining data/wine-5.0/dlls/mshtml/htmlhead.c Examining data/wine-5.0/dlls/mshtml/htmlimg.c Examining data/wine-5.0/dlls/mshtml/htmlinput.c Examining data/wine-5.0/dlls/mshtml/htmllink.c Examining data/wine-5.0/dlls/mshtml/htmllocation.c Examining data/wine-5.0/dlls/mshtml/htmlnode.c Examining data/wine-5.0/dlls/mshtml/htmlobject.c Examining data/wine-5.0/dlls/mshtml/htmlscript.c Examining data/wine-5.0/dlls/mshtml/htmlscript.h Examining data/wine-5.0/dlls/mshtml/htmlselect.c Examining data/wine-5.0/dlls/mshtml/htmlstorage.c Examining data/wine-5.0/dlls/mshtml/htmlstyle.c Examining data/wine-5.0/dlls/mshtml/htmlstyle.h Examining data/wine-5.0/dlls/mshtml/htmlstyleelem.c Examining data/wine-5.0/dlls/mshtml/htmlstylesheet.c Examining data/wine-5.0/dlls/mshtml/htmltable.c Examining data/wine-5.0/dlls/mshtml/htmltextarea.c Examining data/wine-5.0/dlls/mshtml/htmltextnode.c Examining data/wine-5.0/dlls/mshtml/htmlwindow.c Examining data/wine-5.0/dlls/mshtml/ifacewrap.c Examining data/wine-5.0/dlls/mshtml/loadopts.c Examining data/wine-5.0/dlls/mshtml/main.c Examining data/wine-5.0/dlls/mshtml/mshtml_private.h Examining data/wine-5.0/dlls/mshtml/mutation.c Examining data/wine-5.0/dlls/mshtml/navigate.c Examining data/wine-5.0/dlls/mshtml/npplugin.c Examining data/wine-5.0/dlls/mshtml/nsembed.c Examining data/wine-5.0/dlls/mshtml/nsevents.c Examining data/wine-5.0/dlls/mshtml/nsio.c Examining data/wine-5.0/dlls/mshtml/nsservice.c Examining data/wine-5.0/dlls/mshtml/olecmd.c Examining data/wine-5.0/dlls/mshtml/oleobj.c Examining data/wine-5.0/dlls/mshtml/omnavigator.c Examining data/wine-5.0/dlls/mshtml/persist.c Examining data/wine-5.0/dlls/mshtml/pluginhost.c Examining data/wine-5.0/dlls/mshtml/pluginhost.h Examining data/wine-5.0/dlls/mshtml/protocol.c Examining data/wine-5.0/dlls/mshtml/range.c Examining data/wine-5.0/dlls/mshtml/resource.h Examining data/wine-5.0/dlls/mshtml/script.c Examining data/wine-5.0/dlls/mshtml/secmgr.c Examining data/wine-5.0/dlls/mshtml/selection.c Examining data/wine-5.0/dlls/mshtml/service.c Examining data/wine-5.0/dlls/mshtml/svg.c Examining data/wine-5.0/dlls/mshtml/task.c Examining data/wine-5.0/dlls/mshtml/tests/activex.c Examining data/wine-5.0/dlls/mshtml/tests/dom.c Examining data/wine-5.0/dlls/mshtml/tests/events.c Examining data/wine-5.0/dlls/mshtml/tests/htmldoc.c Examining data/wine-5.0/dlls/mshtml/tests/htmllocation.c Examining data/wine-5.0/dlls/mshtml/tests/misc.c Examining data/wine-5.0/dlls/mshtml/tests/mshtml_test.h Examining data/wine-5.0/dlls/mshtml/tests/protocol.c Examining data/wine-5.0/dlls/mshtml/tests/script.c Examining data/wine-5.0/dlls/mshtml/tests/style.c Examining data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c Examining data/wine-5.0/dlls/mshtml/view.c Examining data/wine-5.0/dlls/mshtml/xmlhttprequest.c Examining data/wine-5.0/dlls/msi/action.c Examining data/wine-5.0/dlls/msi/alter.c Examining data/wine-5.0/dlls/msi/appsearch.c Examining data/wine-5.0/dlls/msi/assembly.c Examining data/wine-5.0/dlls/msi/classes.c Examining data/wine-5.0/dlls/msi/create.c Examining data/wine-5.0/dlls/msi/custom.c Examining data/wine-5.0/dlls/msi/database.c Examining data/wine-5.0/dlls/msi/delete.c Examining data/wine-5.0/dlls/msi/dialog.c Examining data/wine-5.0/dlls/msi/distinct.c Examining data/wine-5.0/dlls/msi/drop.c Examining data/wine-5.0/dlls/msi/files.c Examining data/wine-5.0/dlls/msi/font.c Examining data/wine-5.0/dlls/msi/format.c Examining data/wine-5.0/dlls/msi/handle.c Examining data/wine-5.0/dlls/msi/insert.c Examining data/wine-5.0/dlls/msi/install.c Examining data/wine-5.0/dlls/msi/media.c Examining data/wine-5.0/dlls/msi/msi.c Examining data/wine-5.0/dlls/msi/msi_main.c Examining data/wine-5.0/dlls/msi/msipriv.h Examining data/wine-5.0/dlls/msi/msiquery.c Examining data/wine-5.0/dlls/msi/msiserver_dispids.h Examining data/wine-5.0/dlls/msi/package.c Examining data/wine-5.0/dlls/msi/patch.c Examining data/wine-5.0/dlls/msi/query.h Examining data/wine-5.0/dlls/msi/record.c Examining data/wine-5.0/dlls/msi/registry.c Examining data/wine-5.0/dlls/msi/resource.h Examining data/wine-5.0/dlls/msi/script.c Examining data/wine-5.0/dlls/msi/select.c Examining data/wine-5.0/dlls/msi/source.c Examining data/wine-5.0/dlls/msi/storages.c Examining data/wine-5.0/dlls/msi/streams.c Examining data/wine-5.0/dlls/msi/string.c Examining data/wine-5.0/dlls/msi/suminfo.c Examining data/wine-5.0/dlls/msi/table.c Examining data/wine-5.0/dlls/msi/tests/action.c Examining data/wine-5.0/dlls/msi/tests/automation.c Examining data/wine-5.0/dlls/msi/tests/custom.c Examining data/wine-5.0/dlls/msi/tests/db.c Examining data/wine-5.0/dlls/msi/tests/format.c Examining data/wine-5.0/dlls/msi/tests/install.c Examining data/wine-5.0/dlls/msi/tests/msi.c Examining data/wine-5.0/dlls/msi/tests/package.c Examining data/wine-5.0/dlls/msi/tests/patch.c Examining data/wine-5.0/dlls/msi/tests/record.c Examining data/wine-5.0/dlls/msi/tests/selfreg.c Examining data/wine-5.0/dlls/msi/tests/source.c Examining data/wine-5.0/dlls/msi/tests/suminfo.c Examining data/wine-5.0/dlls/msi/tests/utils.h Examining data/wine-5.0/dlls/msi/tokenize.c Examining data/wine-5.0/dlls/msi/update.c Examining data/wine-5.0/dlls/msi/upgrade.c Examining data/wine-5.0/dlls/msi/where.c Examining data/wine-5.0/dlls/msi/automation.c Examining data/wine-5.0/dlls/msident/msident.c Examining data/wine-5.0/dlls/msimg32/msimg32_main.c Examining data/wine-5.0/dlls/msimtf/activeimmapp.c Examining data/wine-5.0/dlls/msimtf/main.c Examining data/wine-5.0/dlls/msisip/main.c Examining data/wine-5.0/dlls/msisys.ocx/msisys.c Examining data/wine-5.0/dlls/msls31/msls31_main.c Examining data/wine-5.0/dlls/msnet32/msnet_main.c Examining data/wine-5.0/dlls/mspatcha/lzxd_dec.c Examining data/wine-5.0/dlls/mspatcha/lzxd_dec.h Examining data/wine-5.0/dlls/mspatcha/mspatcha_main.c Examining data/wine-5.0/dlls/mspatcha/pa19.c Examining data/wine-5.0/dlls/mspatcha/pa19.h Examining data/wine-5.0/dlls/mspatcha/tests/apply_patch.c Examining data/wine-5.0/dlls/msports/main.c Examining data/wine-5.0/dlls/msrle32/msrle32.c Examining data/wine-5.0/dlls/msrle32/msrle_private.h Examining data/wine-5.0/dlls/msrle32/tests/msrle.c Examining data/wine-5.0/dlls/msscript.ocx/msscript.c Examining data/wine-5.0/dlls/msscript.ocx/tests/msscript.c Examining data/wine-5.0/dlls/mssign32/mssign32_main.c Examining data/wine-5.0/dlls/mssign32/mssign32_private.h Examining data/wine-5.0/dlls/mssip32/main.c Examining data/wine-5.0/dlls/mstask/factory.c Examining data/wine-5.0/dlls/mstask/mstask_main.c Examining data/wine-5.0/dlls/mstask/mstask_private.h Examining data/wine-5.0/dlls/mstask/task.c Examining data/wine-5.0/dlls/mstask/task_scheduler.c Examining data/wine-5.0/dlls/mstask/task_trigger.c Examining data/wine-5.0/dlls/mstask/tests/task.c Examining data/wine-5.0/dlls/mstask/tests/task_scheduler.c Examining data/wine-5.0/dlls/mstask/tests/task_trigger.c Examining data/wine-5.0/dlls/msvcirt/msvcirt.c Examining data/wine-5.0/dlls/msvcirt/msvcirt.h Examining data/wine-5.0/dlls/msvcirt/tests/msvcirt.c Examining data/wine-5.0/dlls/msvcm80/msvcm_main.c Examining data/wine-5.0/dlls/msvcp100/tests/misc.c Examining data/wine-5.0/dlls/msvcp100/tests/string.c Examining data/wine-5.0/dlls/msvcp110/tests/msvcp110.c Examining data/wine-5.0/dlls/msvcp120/tests/msvcp120.c Examining data/wine-5.0/dlls/msvcp140/tests/msvcp140.c Examining data/wine-5.0/dlls/msvcp60/ios.c Examining data/wine-5.0/dlls/msvcp60/main.c Examining data/wine-5.0/dlls/msvcp60/msvcp.h Examining data/wine-5.0/dlls/msvcp60/string.c Examining data/wine-5.0/dlls/msvcp60/tests/ios.c Examining data/wine-5.0/dlls/msvcp60/tests/string.c Examining data/wine-5.0/dlls/msvcp90/cxx.h Examining data/wine-5.0/dlls/msvcp90/exception.c Examining data/wine-5.0/dlls/msvcp90/ios.c Examining data/wine-5.0/dlls/msvcp90/locale.c Examining data/wine-5.0/dlls/msvcp90/math.c Examining data/wine-5.0/dlls/msvcp90/memory.c Examining data/wine-5.0/dlls/msvcp90/misc.c Examining data/wine-5.0/dlls/msvcp90/msvcp90.h Examining data/wine-5.0/dlls/msvcp90/msvcp_main.c Examining data/wine-5.0/dlls/msvcp90/string.c Examining data/wine-5.0/dlls/msvcp90/tests/ios.c Examining data/wine-5.0/dlls/msvcp90/tests/misc.c Examining data/wine-5.0/dlls/msvcp90/tests/string.c Examining data/wine-5.0/dlls/msvcr100/tests/msvcr100.c Examining data/wine-5.0/dlls/msvcr110/tests/msvcr110.c Examining data/wine-5.0/dlls/msvcr120/tests/msvcr120.c Examining data/wine-5.0/dlls/msvcr90/tests/msvcr90.c Examining data/wine-5.0/dlls/msvcrt/console.c Examining data/wine-5.0/dlls/msvcrt/cpp.c Examining data/wine-5.0/dlls/msvcrt/cppexcept.h Examining data/wine-5.0/dlls/msvcrt/ctype.c Examining data/wine-5.0/dlls/msvcrt/cxx.h Examining data/wine-5.0/dlls/msvcrt/data.c Examining data/wine-5.0/dlls/msvcrt/dir.c Examining data/wine-5.0/dlls/msvcrt/environ.c Examining data/wine-5.0/dlls/msvcrt/errno.c Examining data/wine-5.0/dlls/msvcrt/except.c Examining data/wine-5.0/dlls/msvcrt/except_arm.c Examining data/wine-5.0/dlls/msvcrt/except_arm64.c Examining data/wine-5.0/dlls/msvcrt/except_i386.c Examining data/wine-5.0/dlls/msvcrt/except_x86_64.c Examining data/wine-5.0/dlls/msvcrt/exit.c Examining data/wine-5.0/dlls/msvcrt/file.c Examining data/wine-5.0/dlls/msvcrt/heap.c Examining data/wine-5.0/dlls/msvcrt/iob.c Examining data/wine-5.0/dlls/msvcrt/locale.c Examining data/wine-5.0/dlls/msvcrt/lock.c Examining data/wine-5.0/dlls/msvcrt/main.c Examining data/wine-5.0/dlls/msvcrt/math.c Examining data/wine-5.0/dlls/msvcrt/mathf.c Examining data/wine-5.0/dlls/msvcrt/mbcs.c Examining data/wine-5.0/dlls/msvcrt/msvcrt.h Examining data/wine-5.0/dlls/msvcrt/mtdll.h Examining data/wine-5.0/dlls/msvcrt/onexit.c Examining data/wine-5.0/dlls/msvcrt/printf.h Examining data/wine-5.0/dlls/msvcrt/process.c Examining data/wine-5.0/dlls/msvcrt/scanf.c Examining data/wine-5.0/dlls/msvcrt/scanf.h Examining data/wine-5.0/dlls/msvcrt/scheduler.c Examining data/wine-5.0/dlls/msvcrt/tests/cpp.c Examining data/wine-5.0/dlls/msvcrt/tests/data.c Examining data/wine-5.0/dlls/msvcrt/tests/dir.c Examining data/wine-5.0/dlls/msvcrt/tests/environ.c Examining data/wine-5.0/dlls/msvcrt/tests/file.c Examining data/wine-5.0/dlls/msvcrt/tests/headers.c Examining data/wine-5.0/dlls/msvcrt/tests/heap.c Examining data/wine-5.0/dlls/msvcrt/tests/locale.c Examining data/wine-5.0/dlls/msvcrt/tests/misc.c Examining data/wine-5.0/dlls/msvcrt/tests/printf.c Examining data/wine-5.0/dlls/msvcrt/tests/scanf.c Examining data/wine-5.0/dlls/msvcrt/tests/signal.c Examining data/wine-5.0/dlls/msvcrt/tests/string.c Examining data/wine-5.0/dlls/msvcrt/tests/time.c Examining data/wine-5.0/dlls/msvcrt/thread.c Examining data/wine-5.0/dlls/msvcrt/undname.c Examining data/wine-5.0/dlls/msvcrt/wcs.c Examining data/wine-5.0/dlls/msvcrt/string.c Examining data/wine-5.0/dlls/msvcrt/misc.c Examining data/wine-5.0/dlls/msvcrt/time.c Examining data/wine-5.0/dlls/msvcrt20/msvcrt20.c Examining data/wine-5.0/dlls/msvcrt40/msvcrt40.c Examining data/wine-5.0/dlls/msvcrtd/debug.c Examining data/wine-5.0/dlls/msvcrtd/tests/debug.c Examining data/wine-5.0/dlls/msvfw32/drawdib.c Examining data/wine-5.0/dlls/msvfw32/mciwnd.c Examining data/wine-5.0/dlls/msvfw32/msvideo_main.c Examining data/wine-5.0/dlls/msvfw32/msvideo_private.h Examining data/wine-5.0/dlls/msvfw32/tests/drawdib.c Examining data/wine-5.0/dlls/msvfw32/tests/mciwnd.c Examining data/wine-5.0/dlls/msvfw32/tests/msvfw.c Examining data/wine-5.0/dlls/msvidc32/msvidc32_private.h Examining data/wine-5.0/dlls/msvidc32/msvideo1.c Examining data/wine-5.0/dlls/msvideo.dll16/msvideo16.c Examining data/wine-5.0/dlls/msvideo.dll16/vfw16.h Examining data/wine-5.0/dlls/mswsock/mswsock.c Examining data/wine-5.0/dlls/msxml/main.c Examining data/wine-5.0/dlls/msxml2/main.c Examining data/wine-5.0/dlls/msxml3/attribute.c Examining data/wine-5.0/dlls/msxml3/bsc.c Examining data/wine-5.0/dlls/msxml3/cdata.c Examining data/wine-5.0/dlls/msxml3/comment.c Examining data/wine-5.0/dlls/msxml3/dispex.c Examining data/wine-5.0/dlls/msxml3/docfrag.c Examining data/wine-5.0/dlls/msxml3/doctype.c Examining data/wine-5.0/dlls/msxml3/domdoc.c Examining data/wine-5.0/dlls/msxml3/domimpl.c Examining data/wine-5.0/dlls/msxml3/element.c Examining data/wine-5.0/dlls/msxml3/entityref.c Examining data/wine-5.0/dlls/msxml3/factory.c Examining data/wine-5.0/dlls/msxml3/httprequest.c Examining data/wine-5.0/dlls/msxml3/main.c Examining data/wine-5.0/dlls/msxml3/msxml_private.h Examining data/wine-5.0/dlls/msxml3/mxnamespace.c Examining data/wine-5.0/dlls/msxml3/mxwriter.c Examining data/wine-5.0/dlls/msxml3/node.c Examining data/wine-5.0/dlls/msxml3/nodelist.c Examining data/wine-5.0/dlls/msxml3/nodemap.c Examining data/wine-5.0/dlls/msxml3/parseerror.c Examining data/wine-5.0/dlls/msxml3/pi.c Examining data/wine-5.0/dlls/msxml3/saxreader.c Examining data/wine-5.0/dlls/msxml3/schema.c Examining data/wine-5.0/dlls/msxml3/selection.c Examining data/wine-5.0/dlls/msxml3/stylesheet.c Examining data/wine-5.0/dlls/msxml3/tests/domdoc.c Examining data/wine-5.0/dlls/msxml3/tests/httpreq.c Examining data/wine-5.0/dlls/msxml3/tests/saxreader.c Examining data/wine-5.0/dlls/msxml3/tests/schema.c Examining data/wine-5.0/dlls/msxml3/tests/xmldoc.c Examining data/wine-5.0/dlls/msxml3/tests/xmlparser.c Examining data/wine-5.0/dlls/msxml3/tests/xmlview.c Examining data/wine-5.0/dlls/msxml3/text.c Examining data/wine-5.0/dlls/msxml3/uuid.c Examining data/wine-5.0/dlls/msxml3/xmldoc.c Examining data/wine-5.0/dlls/msxml3/xmlelem.c Examining data/wine-5.0/dlls/msxml3/xmlparser.c Examining data/wine-5.0/dlls/msxml3/xmlview.c Examining data/wine-5.0/dlls/msxml3/xslpattern.h Examining data/wine-5.0/dlls/msxml3/xdr.c Examining data/wine-5.0/dlls/msxml4/main.c Examining data/wine-5.0/dlls/msxml6/main.c Examining data/wine-5.0/dlls/mtxdm/mtxdm_main.c Examining data/wine-5.0/dlls/ncrypt/main.c Examining data/wine-5.0/dlls/nddeapi/nddeapi.c Examining data/wine-5.0/dlls/ndis.sys/main.c Examining data/wine-5.0/dlls/netapi32/nbcmdqueue.c Examining data/wine-5.0/dlls/netapi32/nbcmdqueue.h Examining data/wine-5.0/dlls/netapi32/nbnamecache.c Examining data/wine-5.0/dlls/netapi32/nbnamecache.h Examining data/wine-5.0/dlls/netapi32/nbt.c Examining data/wine-5.0/dlls/netapi32/netapi32.c Examining data/wine-5.0/dlls/netapi32/netbios.c Examining data/wine-5.0/dlls/netapi32/netbios.h Examining data/wine-5.0/dlls/netapi32/tests/access.c Examining data/wine-5.0/dlls/netapi32/tests/apibuf.c Examining data/wine-5.0/dlls/netapi32/tests/ds.c Examining data/wine-5.0/dlls/netapi32/tests/wksta.c Examining data/wine-5.0/dlls/netcfgx/main.c Examining data/wine-5.0/dlls/netcfgx/netcfg.c Examining data/wine-5.0/dlls/netcfgx/netcfg_private.h Examining data/wine-5.0/dlls/netcfgx/tests/netcfgx.c Examining data/wine-5.0/dlls/netprofm/list.c Examining data/wine-5.0/dlls/netprofm/main.c Examining data/wine-5.0/dlls/netprofm/netprofm_private.h Examining data/wine-5.0/dlls/netprofm/tests/list.c Examining data/wine-5.0/dlls/newdev/main.c Examining data/wine-5.0/dlls/ninput/main.c Examining data/wine-5.0/dlls/ninput/tests/ninput.c Examining data/wine-5.0/dlls/normaliz/normaliz.c Examining data/wine-5.0/dlls/npmshtml/main.c Examining data/wine-5.0/dlls/npptools/main.c Examining data/wine-5.0/dlls/ntdll/actctx.c Examining data/wine-5.0/dlls/ntdll/atom.c Examining data/wine-5.0/dlls/ntdll/cdrom.c Examining data/wine-5.0/dlls/ntdll/critsection.c Examining data/wine-5.0/dlls/ntdll/crypt.c Examining data/wine-5.0/dlls/ntdll/debugbuffer.c Examining data/wine-5.0/dlls/ntdll/debugtools.c Examining data/wine-5.0/dlls/ntdll/directory.c Examining data/wine-5.0/dlls/ntdll/env.c Examining data/wine-5.0/dlls/ntdll/error.c Examining data/wine-5.0/dlls/ntdll/exception.c Examining data/wine-5.0/dlls/ntdll/file.c Examining data/wine-5.0/dlls/ntdll/handletable.c Examining data/wine-5.0/dlls/ntdll/heap.c Examining data/wine-5.0/dlls/ntdll/large_int.c Examining data/wine-5.0/dlls/ntdll/loader.c Examining data/wine-5.0/dlls/ntdll/loadorder.c Examining data/wine-5.0/dlls/ntdll/locale.c Examining data/wine-5.0/dlls/ntdll/nt.c Examining data/wine-5.0/dlls/ntdll/ntdll_misc.h Examining data/wine-5.0/dlls/ntdll/om.c Examining data/wine-5.0/dlls/ntdll/path.c Examining data/wine-5.0/dlls/ntdll/printf.c Examining data/wine-5.0/dlls/ntdll/process.c Examining data/wine-5.0/dlls/ntdll/reg.c Examining data/wine-5.0/dlls/ntdll/relay.c Examining data/wine-5.0/dlls/ntdll/resource.c Examining data/wine-5.0/dlls/ntdll/rtl.c Examining data/wine-5.0/dlls/ntdll/rtlbitmap.c Examining data/wine-5.0/dlls/ntdll/rtlstr.c Examining data/wine-5.0/dlls/ntdll/sec.c Examining data/wine-5.0/dlls/ntdll/serial.c Examining data/wine-5.0/dlls/ntdll/server.c Examining data/wine-5.0/dlls/ntdll/signal_arm.c Examining data/wine-5.0/dlls/ntdll/signal_arm64.c Examining data/wine-5.0/dlls/ntdll/signal_i386.c Examining data/wine-5.0/dlls/ntdll/signal_powerpc.c Examining data/wine-5.0/dlls/ntdll/signal_x86_64.c Examining data/wine-5.0/dlls/ntdll/string.c Examining data/wine-5.0/dlls/ntdll/sync.c Examining data/wine-5.0/dlls/ntdll/tape.c Examining data/wine-5.0/dlls/ntdll/tests/atom.c Examining data/wine-5.0/dlls/ntdll/tests/change.c Examining data/wine-5.0/dlls/ntdll/tests/directory.c Examining data/wine-5.0/dlls/ntdll/tests/env.c Examining data/wine-5.0/dlls/ntdll/tests/error.c Examining data/wine-5.0/dlls/ntdll/tests/exception.c Examining data/wine-5.0/dlls/ntdll/tests/file.c Examining data/wine-5.0/dlls/ntdll/tests/info.c Examining data/wine-5.0/dlls/ntdll/tests/large_int.c Examining data/wine-5.0/dlls/ntdll/tests/ntdll_test.h Examining data/wine-5.0/dlls/ntdll/tests/om.c Examining data/wine-5.0/dlls/ntdll/tests/path.c Examining data/wine-5.0/dlls/ntdll/tests/pipe.c Examining data/wine-5.0/dlls/ntdll/tests/port.c Examining data/wine-5.0/dlls/ntdll/tests/reg.c Examining data/wine-5.0/dlls/ntdll/tests/rtl.c Examining data/wine-5.0/dlls/ntdll/tests/rtlbitmap.c Examining data/wine-5.0/dlls/ntdll/tests/rtlstr.c Examining data/wine-5.0/dlls/ntdll/tests/string.c Examining data/wine-5.0/dlls/ntdll/tests/threadpool.c Examining data/wine-5.0/dlls/ntdll/tests/time.c Examining data/wine-5.0/dlls/ntdll/tests/virtual.c Examining data/wine-5.0/dlls/ntdll/thread.c Examining data/wine-5.0/dlls/ntdll/threadpool.c Examining data/wine-5.0/dlls/ntdll/time.c Examining data/wine-5.0/dlls/ntdll/version.c Examining data/wine-5.0/dlls/ntdll/virtual.c Examining data/wine-5.0/dlls/ntdll/wcstring.c Examining data/wine-5.0/dlls/ntdll/misc.c Examining data/wine-5.0/dlls/ntdsapi/ntdsapi.c Examining data/wine-5.0/dlls/ntdsapi/tests/ntdsapi.c Examining data/wine-5.0/dlls/ntoskrnl.exe/instr.c Examining data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c Examining data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl_private.h Examining data/wine-5.0/dlls/ntoskrnl.exe/pnp.c Examining data/wine-5.0/dlls/ntoskrnl.exe/sync.c Examining data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c Examining data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.h Examining data/wine-5.0/dlls/ntoskrnl.exe/tests/driver2.c Examining data/wine-5.0/dlls/ntoskrnl.exe/tests/driver3.c Examining data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c Examining data/wine-5.0/dlls/ntprint/ntprint.c Examining data/wine-5.0/dlls/ntprint/tests/ntprint.c Examining data/wine-5.0/dlls/objsel/factory.c Examining data/wine-5.0/dlls/objsel/objsel.c Examining data/wine-5.0/dlls/objsel/objsel_private.h Examining data/wine-5.0/dlls/odbc32/proxyodbc.c Examining data/wine-5.0/dlls/odbcbcp/main.c Examining data/wine-5.0/dlls/odbccp32/odbccp32.c Examining data/wine-5.0/dlls/odbccp32/tests/misc.c Examining data/wine-5.0/dlls/ole2.dll16/ifs.h Examining data/wine-5.0/dlls/ole2.dll16/memlockbytes.c Examining data/wine-5.0/dlls/ole2.dll16/ole2.c Examining data/wine-5.0/dlls/ole2disp.dll16/ole2disp.c Examining data/wine-5.0/dlls/ole2disp.dll16/ole2disp.h Examining data/wine-5.0/dlls/ole2nls.dll16/ole2nls.c Examining data/wine-5.0/dlls/ole32/antimoniker.c Examining data/wine-5.0/dlls/ole32/bindctx.c Examining data/wine-5.0/dlls/ole32/classmoniker.c Examining data/wine-5.0/dlls/ole32/clipboard.c Examining data/wine-5.0/dlls/ole32/comcat.c Examining data/wine-5.0/dlls/ole32/compobj.c Examining data/wine-5.0/dlls/ole32/compobj_private.h Examining data/wine-5.0/dlls/ole32/compositemoniker.c Examining data/wine-5.0/dlls/ole32/defaulthandler.c Examining data/wine-5.0/dlls/ole32/dictionary.c Examining data/wine-5.0/dlls/ole32/dictionary.h Examining data/wine-5.0/dlls/ole32/errorinfo.c Examining data/wine-5.0/dlls/ole32/filelockbytes.c Examining data/wine-5.0/dlls/ole32/filemoniker.c Examining data/wine-5.0/dlls/ole32/ftmarshal.c Examining data/wine-5.0/dlls/ole32/git.c Examining data/wine-5.0/dlls/ole32/hglobalstream.c Examining data/wine-5.0/dlls/ole32/ifs.c Examining data/wine-5.0/dlls/ole32/itemmoniker.c Examining data/wine-5.0/dlls/ole32/marshal.c Examining data/wine-5.0/dlls/ole32/memlockbytes.c Examining data/wine-5.0/dlls/ole32/moniker.c Examining data/wine-5.0/dlls/ole32/moniker.h Examining data/wine-5.0/dlls/ole32/ole2.c Examining data/wine-5.0/dlls/ole32/ole2impl.c Examining data/wine-5.0/dlls/ole32/ole2stubs.c Examining data/wine-5.0/dlls/ole32/ole32_main.c Examining data/wine-5.0/dlls/ole32/oleobj.c Examining data/wine-5.0/dlls/ole32/oleproxy.c Examining data/wine-5.0/dlls/ole32/olestd.h Examining data/wine-5.0/dlls/ole32/pointermoniker.c Examining data/wine-5.0/dlls/ole32/rpc.c Examining data/wine-5.0/dlls/ole32/stg_prop.c Examining data/wine-5.0/dlls/ole32/stg_stream.c Examining data/wine-5.0/dlls/ole32/storage32.c Examining data/wine-5.0/dlls/ole32/storage32.h Examining data/wine-5.0/dlls/ole32/stubmanager.c Examining data/wine-5.0/dlls/ole32/tests/clipboard.c Examining data/wine-5.0/dlls/ole32/tests/compobj.c Examining data/wine-5.0/dlls/ole32/tests/defaulthandler.c Examining data/wine-5.0/dlls/ole32/tests/dragdrop.c Examining data/wine-5.0/dlls/ole32/tests/errorinfo.c Examining data/wine-5.0/dlls/ole32/tests/hglobalstream.c Examining data/wine-5.0/dlls/ole32/tests/marshal.c Examining data/wine-5.0/dlls/ole32/tests/moniker.c Examining data/wine-5.0/dlls/ole32/tests/ole2.c Examining data/wine-5.0/dlls/ole32/tests/ole_server.c Examining data/wine-5.0/dlls/ole32/tests/propvariant.c Examining data/wine-5.0/dlls/ole32/tests/stg_prop.c Examining data/wine-5.0/dlls/ole32/tests/storage32.c Examining data/wine-5.0/dlls/ole32/tests/testlib.c Examining data/wine-5.0/dlls/ole32/tests/usrmarshal.c Examining data/wine-5.0/dlls/ole32/usrmarshal.c Examining data/wine-5.0/dlls/ole32/datacache.c Examining data/wine-5.0/dlls/oleacc/client.c Examining data/wine-5.0/dlls/oleacc/main.c Examining data/wine-5.0/dlls/oleacc/oleacc_private.h Examining data/wine-5.0/dlls/oleacc/propservice.c Examining data/wine-5.0/dlls/oleacc/resource.h Examining data/wine-5.0/dlls/oleacc/tests/main.c Examining data/wine-5.0/dlls/oleacc/window.c Examining data/wine-5.0/dlls/oleaut32/connpt.c Examining data/wine-5.0/dlls/oleaut32/connpt.h Examining data/wine-5.0/dlls/oleaut32/dispatch.c Examining data/wine-5.0/dlls/oleaut32/hash.c Examining data/wine-5.0/dlls/oleaut32/oleaut.c Examining data/wine-5.0/dlls/oleaut32/olefont.c Examining data/wine-5.0/dlls/oleaut32/olepicture.c Examining data/wine-5.0/dlls/oleaut32/olepropframe.c Examining data/wine-5.0/dlls/oleaut32/recinfo.c Examining data/wine-5.0/dlls/oleaut32/resource.h Examining data/wine-5.0/dlls/oleaut32/safearray.c Examining data/wine-5.0/dlls/oleaut32/tests/dispatch.c Examining data/wine-5.0/dlls/oleaut32/tests/olefont.c Examining data/wine-5.0/dlls/oleaut32/tests/olepicture.c Examining data/wine-5.0/dlls/oleaut32/tests/safearray.c Examining data/wine-5.0/dlls/oleaut32/tests/tmarshal.c Examining data/wine-5.0/dlls/oleaut32/tests/typelib.c Examining data/wine-5.0/dlls/oleaut32/tests/usrmarshal.c Examining data/wine-5.0/dlls/oleaut32/tests/varformat.c Examining data/wine-5.0/dlls/oleaut32/tests/vartest.c Examining data/wine-5.0/dlls/oleaut32/tests/vartype.c Examining data/wine-5.0/dlls/oleaut32/typelib.c Examining data/wine-5.0/dlls/oleaut32/typelib.h Examining data/wine-5.0/dlls/oleaut32/usrmarshal.c Examining data/wine-5.0/dlls/oleaut32/varformat.c Examining data/wine-5.0/dlls/oleaut32/variant.c Examining data/wine-5.0/dlls/oleaut32/variant.h Examining data/wine-5.0/dlls/oleaut32/vartype.c Examining data/wine-5.0/dlls/olecli.dll16/olecli.c Examining data/wine-5.0/dlls/olecli.dll16/olecli.h Examining data/wine-5.0/dlls/olecli32/olecli.h Examining data/wine-5.0/dlls/olecli32/olecli_main.c Examining data/wine-5.0/dlls/oledb32/convert.c Examining data/wine-5.0/dlls/oledb32/datainit.c Examining data/wine-5.0/dlls/oledb32/dslocator.c Examining data/wine-5.0/dlls/oledb32/errorinfo.c Examining data/wine-5.0/dlls/oledb32/main.c Examining data/wine-5.0/dlls/oledb32/oledb_private.h Examining data/wine-5.0/dlls/oledb32/resource.h Examining data/wine-5.0/dlls/oledb32/rowpos.c Examining data/wine-5.0/dlls/oledb32/tests/convert.c Examining data/wine-5.0/dlls/oledb32/tests/database.c Examining data/wine-5.0/dlls/oledb32/tests/marshal.c Examining data/wine-5.0/dlls/oledlg/insobjdlg.c Examining data/wine-5.0/dlls/oledlg/oledlg_main.c Examining data/wine-5.0/dlls/oledlg/oledlg_private.h Examining data/wine-5.0/dlls/oledlg/pastespl.c Examining data/wine-5.0/dlls/oledlg/resource.h Examining data/wine-5.0/dlls/oledlg/tests/main.c Examining data/wine-5.0/dlls/olepro32/olepro32stubs.c Examining data/wine-5.0/dlls/olesvr.dll16/olesvr.c Examining data/wine-5.0/dlls/olesvr32/olesvr_main.c Examining data/wine-5.0/dlls/olethk32/main.c Examining data/wine-5.0/dlls/opcservices/factory.c Examining data/wine-5.0/dlls/opcservices/opc_private.h Examining data/wine-5.0/dlls/opcservices/tests/opcservices.c Examining data/wine-5.0/dlls/opcservices/package.c Examining data/wine-5.0/dlls/opcservices/uri.c Examining data/wine-5.0/dlls/opcservices/compress.c Examining data/wine-5.0/dlls/openal32/openal.c Examining data/wine-5.0/dlls/opencl/opencl.c Examining data/wine-5.0/dlls/opengl32/opengl_ext.h Examining data/wine-5.0/dlls/opengl32/tests/opengl.c Examining data/wine-5.0/dlls/opengl32/wgl.c Examining data/wine-5.0/dlls/packager/packager_main.c Examining data/wine-5.0/dlls/packager/tests/oleobj.c Examining data/wine-5.0/dlls/pdh/pdh_main.c Examining data/wine-5.0/dlls/pdh/tests/pdh.c Examining data/wine-5.0/dlls/photometadatahandler/main.c Examining data/wine-5.0/dlls/pidgen/main.c Examining data/wine-5.0/dlls/powrprof/powrprof.c Examining data/wine-5.0/dlls/printui/printui.c Examining data/wine-5.0/dlls/printui/printui_private.h Examining data/wine-5.0/dlls/prntvpt/main.c Examining data/wine-5.0/dlls/propsys/propstore.c Examining data/wine-5.0/dlls/propsys/propsys_main.c Examining data/wine-5.0/dlls/propsys/propsys_private.h Examining data/wine-5.0/dlls/propsys/propvar.c Examining data/wine-5.0/dlls/propsys/tests/propsys.c Examining data/wine-5.0/dlls/psapi/tests/psapi_main.c Examining data/wine-5.0/dlls/pstorec/pstorec.c Examining data/wine-5.0/dlls/pstorec/tests/pstorec.c Examining data/wine-5.0/dlls/qcap/audiorecord.c Examining data/wine-5.0/dlls/qcap/avico.c Examining data/wine-5.0/dlls/qcap/avimux.c Examining data/wine-5.0/dlls/qcap/capture.h Examining data/wine-5.0/dlls/qcap/capturegraph.c Examining data/wine-5.0/dlls/qcap/qcap_main.c Examining data/wine-5.0/dlls/qcap/qcap_main.h Examining data/wine-5.0/dlls/qcap/smartteefilter.c Examining data/wine-5.0/dlls/qcap/tests/audiorecord.c Examining data/wine-5.0/dlls/qcap/tests/avico.c Examining data/wine-5.0/dlls/qcap/tests/avimux.c Examining data/wine-5.0/dlls/qcap/tests/qcap.c Examining data/wine-5.0/dlls/qcap/tests/smartteefilter.c Examining data/wine-5.0/dlls/qcap/tests/videocapture.c Examining data/wine-5.0/dlls/qcap/v4l.c Examining data/wine-5.0/dlls/qcap/vfwcapture.c Examining data/wine-5.0/dlls/qedit/main.c Examining data/wine-5.0/dlls/qedit/mediadet.c Examining data/wine-5.0/dlls/qedit/nullrenderer.c Examining data/wine-5.0/dlls/qedit/qedit_private.h Examining data/wine-5.0/dlls/qedit/samplegrabber.c Examining data/wine-5.0/dlls/qedit/tests/mediadet.c Examining data/wine-5.0/dlls/qedit/tests/nullrenderer.c Examining data/wine-5.0/dlls/qedit/tests/rc.h Examining data/wine-5.0/dlls/qedit/tests/samplegrabber.c Examining data/wine-5.0/dlls/qedit/tests/timeline.c Examining data/wine-5.0/dlls/qedit/timeline.c Examining data/wine-5.0/dlls/qmgr/enum_files.c Examining data/wine-5.0/dlls/qmgr/enum_jobs.c Examining data/wine-5.0/dlls/qmgr/factory.c Examining data/wine-5.0/dlls/qmgr/file.c Examining data/wine-5.0/dlls/qmgr/job.c Examining data/wine-5.0/dlls/qmgr/qmgr.c Examining data/wine-5.0/dlls/qmgr/qmgr.h Examining data/wine-5.0/dlls/qmgr/qmgr_main.c Examining data/wine-5.0/dlls/qmgr/service.c Examining data/wine-5.0/dlls/qmgr/tests/enum_files.c Examining data/wine-5.0/dlls/qmgr/tests/enum_jobs.c Examining data/wine-5.0/dlls/qmgr/tests/file.c Examining data/wine-5.0/dlls/qmgr/tests/job.c Examining data/wine-5.0/dlls/qmgr/tests/qmgr.c Examining data/wine-5.0/dlls/quartz/acmwrapper.c Examining data/wine-5.0/dlls/quartz/avidec.c Examining data/wine-5.0/dlls/quartz/dsoundrender.c Examining data/wine-5.0/dlls/quartz/enummoniker.c Examining data/wine-5.0/dlls/quartz/enumregfilters.c Examining data/wine-5.0/dlls/quartz/filesource.c Examining data/wine-5.0/dlls/quartz/filtergraph.c Examining data/wine-5.0/dlls/quartz/filtermapper.c Examining data/wine-5.0/dlls/quartz/main.c Examining data/wine-5.0/dlls/quartz/memallocator.c Examining data/wine-5.0/dlls/quartz/quartz_private.h Examining data/wine-5.0/dlls/quartz/regsvr.c Examining data/wine-5.0/dlls/quartz/systemclock.c Examining data/wine-5.0/dlls/quartz/tests/acmwrapper.c Examining data/wine-5.0/dlls/quartz/tests/avidec.c Examining data/wine-5.0/dlls/quartz/tests/avisplit.c Examining data/wine-5.0/dlls/quartz/tests/dsoundrender.c Examining data/wine-5.0/dlls/quartz/tests/filesource.c Examining data/wine-5.0/dlls/quartz/tests/filtergraph.c Examining data/wine-5.0/dlls/quartz/tests/filtermapper.c Examining data/wine-5.0/dlls/quartz/tests/memallocator.c Examining data/wine-5.0/dlls/quartz/tests/mpegsplit.c Examining data/wine-5.0/dlls/quartz/tests/systemclock.c Examining data/wine-5.0/dlls/quartz/tests/videorenderer.c Examining data/wine-5.0/dlls/quartz/tests/vmr7.c Examining data/wine-5.0/dlls/quartz/tests/vmr9.c Examining data/wine-5.0/dlls/quartz/tests/waveparser.c Examining data/wine-5.0/dlls/quartz/videorenderer.c Examining data/wine-5.0/dlls/quartz/vmr9.c Examining data/wine-5.0/dlls/query/query_main.c Examining data/wine-5.0/dlls/qwave/main.c Examining data/wine-5.0/dlls/qwave/tests/qos.c Examining data/wine-5.0/dlls/rasapi32/rasapi.c Examining data/wine-5.0/dlls/rasapi32/tests/rasapi.c Examining data/wine-5.0/dlls/rasdlg/rasdlg_main.c Examining data/wine-5.0/dlls/regapi/main.c Examining data/wine-5.0/dlls/resutils/resutils.c Examining data/wine-5.0/dlls/riched20/caret.c Examining data/wine-5.0/dlls/riched20/clipboard.c Examining data/wine-5.0/dlls/riched20/context.c Examining data/wine-5.0/dlls/riched20/editor.h Examining data/wine-5.0/dlls/riched20/editstr.h Examining data/wine-5.0/dlls/riched20/list.c Examining data/wine-5.0/dlls/riched20/paint.c Examining data/wine-5.0/dlls/riched20/para.c Examining data/wine-5.0/dlls/riched20/reader.c Examining data/wine-5.0/dlls/riched20/res.h Examining data/wine-5.0/dlls/riched20/richole.c Examining data/wine-5.0/dlls/riched20/row.c Examining data/wine-5.0/dlls/riched20/rtf.h Examining data/wine-5.0/dlls/riched20/run.c Examining data/wine-5.0/dlls/riched20/string.c Examining data/wine-5.0/dlls/riched20/style.c Examining data/wine-5.0/dlls/riched20/table.c Examining data/wine-5.0/dlls/riched20/tests/editor.c Examining data/wine-5.0/dlls/riched20/tests/richole.c Examining data/wine-5.0/dlls/riched20/tests/txtsrv.c Examining data/wine-5.0/dlls/riched20/txthost.c Examining data/wine-5.0/dlls/riched20/txtsrv.c Examining data/wine-5.0/dlls/riched20/undo.c Examining data/wine-5.0/dlls/riched20/wrap.c Examining data/wine-5.0/dlls/riched20/writer.c Examining data/wine-5.0/dlls/riched20/editor.c Examining data/wine-5.0/dlls/riched32/richedit.c Examining data/wine-5.0/dlls/riched32/tests/editor.c Examining data/wine-5.0/dlls/rpcrt4/cpsf.c Examining data/wine-5.0/dlls/rpcrt4/cpsf.h Examining data/wine-5.0/dlls/rpcrt4/epm_towers.h Examining data/wine-5.0/dlls/rpcrt4/ncastatus.h Examining data/wine-5.0/dlls/rpcrt4/ndr_clientserver.c Examining data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c Examining data/wine-5.0/dlls/rpcrt4/ndr_es.c Examining data/wine-5.0/dlls/rpcrt4/ndr_fullpointer.c Examining data/wine-5.0/dlls/rpcrt4/ndr_marshall.c Examining data/wine-5.0/dlls/rpcrt4/ndr_misc.h Examining data/wine-5.0/dlls/rpcrt4/ndr_ole.c Examining data/wine-5.0/dlls/rpcrt4/ndr_stubless.h Examining data/wine-5.0/dlls/rpcrt4/ndr_typelib.c Examining data/wine-5.0/dlls/rpcrt4/rpc_assoc.c Examining data/wine-5.0/dlls/rpcrt4/rpc_assoc.h Examining data/wine-5.0/dlls/rpcrt4/rpc_async.c Examining data/wine-5.0/dlls/rpcrt4/rpc_binding.c Examining data/wine-5.0/dlls/rpcrt4/rpc_binding.h Examining data/wine-5.0/dlls/rpcrt4/rpc_defs.h Examining data/wine-5.0/dlls/rpcrt4/rpc_epmap.c Examining data/wine-5.0/dlls/rpcrt4/rpc_message.c Examining data/wine-5.0/dlls/rpcrt4/rpc_message.h Examining data/wine-5.0/dlls/rpcrt4/rpc_server.c Examining data/wine-5.0/dlls/rpcrt4/rpc_server.h Examining data/wine-5.0/dlls/rpcrt4/rpc_transport.c Examining data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c Examining data/wine-5.0/dlls/rpcrt4/tests/cstub.c Examining data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c Examining data/wine-5.0/dlls/rpcrt4/tests/rpc.c Examining data/wine-5.0/dlls/rpcrt4/tests/rpc_async.c Examining data/wine-5.0/dlls/rpcrt4/tests/server.c Examining data/wine-5.0/dlls/rpcrt4/tests/server_defines.h Examining data/wine-5.0/dlls/rpcrt4/cproxy.c Examining data/wine-5.0/dlls/rpcrt4/cstub.c Examining data/wine-5.0/dlls/rpcrt4/ndr_stubless.c Examining data/wine-5.0/dlls/rsaenh/aes.c Examining data/wine-5.0/dlls/rsaenh/des.c Examining data/wine-5.0/dlls/rsaenh/handle.c Examining data/wine-5.0/dlls/rsaenh/handle.h Examining data/wine-5.0/dlls/rsaenh/implglue.c Examining data/wine-5.0/dlls/rsaenh/implglue.h Examining data/wine-5.0/dlls/rsaenh/mpi.c Examining data/wine-5.0/dlls/rsaenh/rc2.c Examining data/wine-5.0/dlls/rsaenh/rc4.c Examining data/wine-5.0/dlls/rsaenh/rsa.c Examining data/wine-5.0/dlls/rsaenh/rsaenh.c Examining data/wine-5.0/dlls/rsaenh/tests/rsaenh.c Examining data/wine-5.0/dlls/rsaenh/tomcrypt.h Examining data/wine-5.0/dlls/rstrtmgr/main.c Examining data/wine-5.0/dlls/rtutils/main.c Examining data/wine-5.0/dlls/rtutils/tracing.c Examining data/wine-5.0/dlls/samlib/main.c Examining data/wine-5.0/dlls/sane.ds/capability.c Examining data/wine-5.0/dlls/sane.ds/ds_ctrl.c Examining data/wine-5.0/dlls/sane.ds/ds_image.c Examining data/wine-5.0/dlls/sane.ds/options.c Examining data/wine-5.0/dlls/sane.ds/resource.h Examining data/wine-5.0/dlls/sane.ds/sane_i.h Examining data/wine-5.0/dlls/sane.ds/sane_main.c Examining data/wine-5.0/dlls/sane.ds/ui.c Examining data/wine-5.0/dlls/sapi/automation.c Examining data/wine-5.0/dlls/sapi/main.c Examining data/wine-5.0/dlls/sapi/sapi_private.h Examining data/wine-5.0/dlls/sapi/tests/automation.c Examining data/wine-5.0/dlls/sapi/tests/token.c Examining data/wine-5.0/dlls/sapi/tests/tts.c Examining data/wine-5.0/dlls/sapi/token.c Examining data/wine-5.0/dlls/sapi/tts.c Examining data/wine-5.0/dlls/sas/main.c Examining data/wine-5.0/dlls/scarddlg/main.c Examining data/wine-5.0/dlls/sccbase/main.c Examining data/wine-5.0/dlls/schannel/lsamode.c Examining data/wine-5.0/dlls/schannel/schannel_main.c Examining data/wine-5.0/dlls/schannel/tests/main.c Examining data/wine-5.0/dlls/schannel/usermode.c Examining data/wine-5.0/dlls/schedsvc/atsvc.c Examining data/wine-5.0/dlls/schedsvc/schedsvc.c Examining data/wine-5.0/dlls/schedsvc/schedsvc_private.h Examining data/wine-5.0/dlls/schedsvc/svc_main.c Examining data/wine-5.0/dlls/schedsvc/tests/atsvcapi.c Examining data/wine-5.0/dlls/schedsvc/tests/rpcapi.c Examining data/wine-5.0/dlls/scrobj/scrobj.c Examining data/wine-5.0/dlls/scrobj/tests/scrobj.c Examining data/wine-5.0/dlls/scrrun/dictionary.c Examining data/wine-5.0/dlls/scrrun/filesystem.c Examining data/wine-5.0/dlls/scrrun/scrrun.c Examining data/wine-5.0/dlls/scrrun/scrrun_private.h Examining data/wine-5.0/dlls/scrrun/tests/dictionary.c Examining data/wine-5.0/dlls/scrrun/tests/filesystem.c Examining data/wine-5.0/dlls/scsiport.sys/scsiport.c Examining data/wine-5.0/dlls/secur32/base64_codec.c Examining data/wine-5.0/dlls/secur32/dispatcher.c Examining data/wine-5.0/dlls/secur32/hmac_md5.c Examining data/wine-5.0/dlls/secur32/hmac_md5.h Examining data/wine-5.0/dlls/secur32/lsa.c Examining data/wine-5.0/dlls/secur32/negotiate.c Examining data/wine-5.0/dlls/secur32/ntlm.c Examining data/wine-5.0/dlls/secur32/schannel.c Examining data/wine-5.0/dlls/secur32/schannel_gnutls.c Examining data/wine-5.0/dlls/secur32/schannel_macosx.c Examining data/wine-5.0/dlls/secur32/secur32.c Examining data/wine-5.0/dlls/secur32/secur32_priv.h Examining data/wine-5.0/dlls/secur32/tests/main.c Examining data/wine-5.0/dlls/secur32/tests/negotiate.c Examining data/wine-5.0/dlls/secur32/tests/ntlm.c Examining data/wine-5.0/dlls/secur32/tests/schannel.c Examining data/wine-5.0/dlls/secur32/tests/secur32.c Examining data/wine-5.0/dlls/secur32/thunks.c Examining data/wine-5.0/dlls/secur32/thunks.h Examining data/wine-5.0/dlls/secur32/util.c Examining data/wine-5.0/dlls/secur32/wrapper.c Examining data/wine-5.0/dlls/sensapi/sensapi.c Examining data/wine-5.0/dlls/serialui/confdlg.c Examining data/wine-5.0/dlls/serialui/serialui.h Examining data/wine-5.0/dlls/serialui/tests/confdlg.c Examining data/wine-5.0/dlls/setupapi/devinst.c Examining data/wine-5.0/dlls/setupapi/dialog.c Examining data/wine-5.0/dlls/setupapi/dirid.c Examining data/wine-5.0/dlls/setupapi/diskspace.c Examining data/wine-5.0/dlls/setupapi/fakedll.c Examining data/wine-5.0/dlls/setupapi/install.c Examining data/wine-5.0/dlls/setupapi/misc.c Examining data/wine-5.0/dlls/setupapi/parser.c Examining data/wine-5.0/dlls/setupapi/query.c Examining data/wine-5.0/dlls/setupapi/queue.c Examining data/wine-5.0/dlls/setupapi/setupapi_private.h Examining data/wine-5.0/dlls/setupapi/setupcab.c Examining data/wine-5.0/dlls/setupapi/stringtable.c Examining data/wine-5.0/dlls/setupapi/stubs.c Examining data/wine-5.0/dlls/setupapi/tests/coinst.c Examining data/wine-5.0/dlls/setupapi/tests/devinst.c Examining data/wine-5.0/dlls/setupapi/tests/dialog.c Examining data/wine-5.0/dlls/setupapi/tests/diskspace.c Examining data/wine-5.0/dlls/setupapi/tests/install.c Examining data/wine-5.0/dlls/setupapi/tests/misc.c Examining data/wine-5.0/dlls/setupapi/tests/parser.c Examining data/wine-5.0/dlls/setupapi/tests/query.c Examining data/wine-5.0/dlls/setupapi/tests/setupcab.c Examining data/wine-5.0/dlls/setupapi/tests/stringtable.c Examining data/wine-5.0/dlls/setupx.dll16/devinst16.c Examining data/wine-5.0/dlls/setupx.dll16/infparse.c Examining data/wine-5.0/dlls/setupx.dll16/setupx16.h Examining data/wine-5.0/dlls/setupx.dll16/setupx_main.c Examining data/wine-5.0/dlls/setupx.dll16/virtcopy.c Examining data/wine-5.0/dlls/sfc/sfc_main.c Examining data/wine-5.0/dlls/sfc_os/sfc_os.c Examining data/wine-5.0/dlls/shcore/main.c Examining data/wine-5.0/dlls/shcore/tests/shcore.c Examining data/wine-5.0/dlls/shdoclc/shdoclc.h Examining data/wine-5.0/dlls/shdocvw/shdocvw.h Examining data/wine-5.0/dlls/shdocvw/shdocvw_main.c Examining data/wine-5.0/dlls/shdocvw/shlinstobj.c Examining data/wine-5.0/dlls/shdocvw/tests/shdocvw.c Examining data/wine-5.0/dlls/shdocvw/tests/shortcut.c Examining data/wine-5.0/dlls/shell.dll16/shell.c Examining data/wine-5.0/dlls/shell32/appbar.c Examining data/wine-5.0/dlls/shell32/assoc.c Examining data/wine-5.0/dlls/shell32/autocomplete.c Examining data/wine-5.0/dlls/shell32/brsfolder.c Examining data/wine-5.0/dlls/shell32/changenotify.c Examining data/wine-5.0/dlls/shell32/classes.c Examining data/wine-5.0/dlls/shell32/clipboard.c Examining data/wine-5.0/dlls/shell32/control.c Examining data/wine-5.0/dlls/shell32/cpanel.h Examining data/wine-5.0/dlls/shell32/cpanelfolder.c Examining data/wine-5.0/dlls/shell32/dataobject.c Examining data/wine-5.0/dlls/shell32/dde.c Examining data/wine-5.0/dlls/shell32/debughlp.c Examining data/wine-5.0/dlls/shell32/debughlp.h Examining data/wine-5.0/dlls/shell32/dialogs.c Examining data/wine-5.0/dlls/shell32/dragdrophelper.c Examining data/wine-5.0/dlls/shell32/ebrowser.c Examining data/wine-5.0/dlls/shell32/enumidlist.c Examining data/wine-5.0/dlls/shell32/folders.c Examining data/wine-5.0/dlls/shell32/iconcache.c Examining data/wine-5.0/dlls/shell32/pidl.c Examining data/wine-5.0/dlls/shell32/pidl.h Examining data/wine-5.0/dlls/shell32/recyclebin.c Examining data/wine-5.0/dlls/shell32/shell32_main.c Examining data/wine-5.0/dlls/shell32/shell32_main.h Examining data/wine-5.0/dlls/shell32/shelldispatch.c Examining data/wine-5.0/dlls/shell32/shellfolder.h Examining data/wine-5.0/dlls/shell32/shellitem.c Examining data/wine-5.0/dlls/shell32/shelllink.c Examining data/wine-5.0/dlls/shell32/shellole.c Examining data/wine-5.0/dlls/shell32/shellord.c Examining data/wine-5.0/dlls/shell32/shellreg.c Examining data/wine-5.0/dlls/shell32/shellstring.c Examining data/wine-5.0/dlls/shell32/shfldr.h Examining data/wine-5.0/dlls/shell32/shfldr_desktop.c Examining data/wine-5.0/dlls/shell32/shfldr_fs.c Examining data/wine-5.0/dlls/shell32/shfldr_mycomp.c Examining data/wine-5.0/dlls/shell32/shfldr_netplaces.c Examining data/wine-5.0/dlls/shell32/shfldr_printers.c Examining data/wine-5.0/dlls/shell32/shfldr_unixfs.c Examining data/wine-5.0/dlls/shell32/shlexec.c Examining data/wine-5.0/dlls/shell32/shlfileop.c Examining data/wine-5.0/dlls/shell32/shlfolder.c Examining data/wine-5.0/dlls/shell32/shlfsbind.c Examining data/wine-5.0/dlls/shell32/shlmenu.c Examining data/wine-5.0/dlls/shell32/shlview.c Examining data/wine-5.0/dlls/shell32/shlview_cmenu.c Examining data/wine-5.0/dlls/shell32/shpolicy.c Examining data/wine-5.0/dlls/shell32/shresdef.h Examining data/wine-5.0/dlls/shell32/systray.c Examining data/wine-5.0/dlls/shell32/tests/appbar.c Examining data/wine-5.0/dlls/shell32/tests/assoc.c Examining data/wine-5.0/dlls/shell32/tests/autocomplete.c Examining data/wine-5.0/dlls/shell32/tests/brsfolder.c Examining data/wine-5.0/dlls/shell32/tests/ebrowser.c Examining data/wine-5.0/dlls/shell32/tests/msg.h Examining data/wine-5.0/dlls/shell32/tests/progman_dde.c Examining data/wine-5.0/dlls/shell32/tests/recyclebin.c Examining data/wine-5.0/dlls/shell32/tests/shell32_test.h Examining data/wine-5.0/dlls/shell32/tests/shelldispatch.c Examining data/wine-5.0/dlls/shell32/tests/shelllink.c Examining data/wine-5.0/dlls/shell32/tests/shellole.c Examining data/wine-5.0/dlls/shell32/tests/shellpath.c Examining data/wine-5.0/dlls/shell32/tests/shfldr_special.c Examining data/wine-5.0/dlls/shell32/tests/shlexec.c Examining data/wine-5.0/dlls/shell32/tests/shlfileop.c Examining data/wine-5.0/dlls/shell32/tests/shlfolder.c Examining data/wine-5.0/dlls/shell32/tests/shlview.c Examining data/wine-5.0/dlls/shell32/tests/string.c Examining data/wine-5.0/dlls/shell32/tests/systray.c Examining data/wine-5.0/dlls/shell32/trash.c Examining data/wine-5.0/dlls/shell32/undocshell.h Examining data/wine-5.0/dlls/shell32/version.h Examining data/wine-5.0/dlls/shell32/xdg.c Examining data/wine-5.0/dlls/shell32/xdg.h Examining data/wine-5.0/dlls/shell32/shellpath.c Examining data/wine-5.0/dlls/shlwapi/assoc.c Examining data/wine-5.0/dlls/shlwapi/clist.c Examining data/wine-5.0/dlls/shlwapi/istream.c Examining data/wine-5.0/dlls/shlwapi/msgbox.c Examining data/wine-5.0/dlls/shlwapi/ordinal.c Examining data/wine-5.0/dlls/shlwapi/path.c Examining data/wine-5.0/dlls/shlwapi/reg.c Examining data/wine-5.0/dlls/shlwapi/regstream.c Examining data/wine-5.0/dlls/shlwapi/resource.h Examining data/wine-5.0/dlls/shlwapi/shlwapi_main.c Examining data/wine-5.0/dlls/shlwapi/stopwatch.c Examining data/wine-5.0/dlls/shlwapi/string.c Examining data/wine-5.0/dlls/shlwapi/tests/assoc.c Examining data/wine-5.0/dlls/shlwapi/tests/clist.c Examining data/wine-5.0/dlls/shlwapi/tests/clsid.c Examining data/wine-5.0/dlls/shlwapi/tests/istream.c Examining data/wine-5.0/dlls/shlwapi/tests/ordinal.c Examining data/wine-5.0/dlls/shlwapi/tests/path.c Examining data/wine-5.0/dlls/shlwapi/tests/shreg.c Examining data/wine-5.0/dlls/shlwapi/tests/string.c Examining data/wine-5.0/dlls/shlwapi/tests/thread.c Examining data/wine-5.0/dlls/shlwapi/tests/url.c Examining data/wine-5.0/dlls/shlwapi/thread.c Examining data/wine-5.0/dlls/shlwapi/url.c Examining data/wine-5.0/dlls/shlwapi/wsprintf.c Examining data/wine-5.0/dlls/slbcsp/main.c Examining data/wine-5.0/dlls/slc/slc.c Examining data/wine-5.0/dlls/slc/tests/slc.c Examining data/wine-5.0/dlls/snmpapi/main.c Examining data/wine-5.0/dlls/snmpapi/tests/util.c Examining data/wine-5.0/dlls/sound.drv16/sound.c Examining data/wine-5.0/dlls/spoolss/router.c Examining data/wine-5.0/dlls/spoolss/spoolss.h Examining data/wine-5.0/dlls/spoolss/spoolss_main.c Examining data/wine-5.0/dlls/spoolss/tests/spoolss.c Examining data/wine-5.0/dlls/srclient/main.c Examining data/wine-5.0/dlls/sspicli/main.c Examining data/wine-5.0/dlls/sti/sti.c Examining data/wine-5.0/dlls/sti/sti_main.c Examining data/wine-5.0/dlls/sti/tests/sti.c Examining data/wine-5.0/dlls/storage.dll16/ifs.h Examining data/wine-5.0/dlls/storage.dll16/storage.c Examining data/wine-5.0/dlls/stress.dll16/stress.c Examining data/wine-5.0/dlls/strmbase/dispatch.c Examining data/wine-5.0/dlls/strmbase/dllfunc.c Examining data/wine-5.0/dlls/strmbase/enumpins.c Examining data/wine-5.0/dlls/strmbase/filter.c Examining data/wine-5.0/dlls/strmbase/mediatype.c Examining data/wine-5.0/dlls/strmbase/outputqueue.c Examining data/wine-5.0/dlls/strmbase/pin.c Examining data/wine-5.0/dlls/strmbase/pospass.c Examining data/wine-5.0/dlls/strmbase/qualitycontrol.c Examining data/wine-5.0/dlls/strmbase/renderer.c Examining data/wine-5.0/dlls/strmbase/seeking.c Examining data/wine-5.0/dlls/strmbase/strmbase_private.h Examining data/wine-5.0/dlls/strmbase/transform.c Examining data/wine-5.0/dlls/strmbase/video.c Examining data/wine-5.0/dlls/strmbase/window.c Examining data/wine-5.0/dlls/strmdll/main.c Examining data/wine-5.0/dlls/strmiids/evr.c Examining data/wine-5.0/dlls/strmiids/strmiids.c Examining data/wine-5.0/dlls/svrapi/svrapi_main.c Examining data/wine-5.0/dlls/sxs/cache.c Examining data/wine-5.0/dlls/sxs/sxs.c Examining data/wine-5.0/dlls/sxs/sxs_private.h Examining data/wine-5.0/dlls/sxs/tests/cache.c Examining data/wine-5.0/dlls/sxs/tests/name.c Examining data/wine-5.0/dlls/sxs/tests/sxs.c Examining data/wine-5.0/dlls/sxs/name.c Examining data/wine-5.0/dlls/system.drv16/system.c Examining data/wine-5.0/dlls/t2embed/main.c Examining data/wine-5.0/dlls/t2embed/tests/t2embed.c Examining data/wine-5.0/dlls/tapi32/assisted.c Examining data/wine-5.0/dlls/tapi32/line.c Examining data/wine-5.0/dlls/tapi32/phone.c Examining data/wine-5.0/dlls/tapi32/tests/tapi.c Examining data/wine-5.0/dlls/taskschd/folder.c Examining data/wine-5.0/dlls/taskschd/folder_collection.c Examining data/wine-5.0/dlls/taskschd/regtask.c Examining data/wine-5.0/dlls/taskschd/task.c Examining data/wine-5.0/dlls/taskschd/taskschd.c Examining data/wine-5.0/dlls/taskschd/taskschd_private.h Examining data/wine-5.0/dlls/taskschd/tests/scheduler.c Examining data/wine-5.0/dlls/tdh/tdh_main.c Examining data/wine-5.0/dlls/tdi.sys/main.c Examining data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c Examining data/wine-5.0/dlls/toolhelp.dll16/toolhelp.h Examining data/wine-5.0/dlls/traffic/traffic_main.c Examining data/wine-5.0/dlls/twain.dll16/twain.c Examining data/wine-5.0/dlls/twain_32/dsm_ctrl.c Examining data/wine-5.0/dlls/twain_32/resource.h Examining data/wine-5.0/dlls/twain_32/tests/dsm.c Examining data/wine-5.0/dlls/twain_32/twain32_main.c Examining data/wine-5.0/dlls/twain_32/twain_i.h Examining data/wine-5.0/dlls/typelib.dll16/typelib.c Examining data/wine-5.0/dlls/ucrtbase/printf.c Examining data/wine-5.0/dlls/ucrtbase/tests/cpp.c Examining data/wine-5.0/dlls/ucrtbase/tests/misc.c Examining data/wine-5.0/dlls/ucrtbase/tests/printf.c Examining data/wine-5.0/dlls/ucrtbase/tests/scanf.c Examining data/wine-5.0/dlls/ucrtbase/tests/string.c Examining data/wine-5.0/dlls/uianimation/main.c Examining data/wine-5.0/dlls/uianimation/tests/uianimation.c Examining data/wine-5.0/dlls/uiautomationcore/tests/uiautomation.c Examining data/wine-5.0/dlls/uiautomationcore/uia_main.c Examining data/wine-5.0/dlls/uiribbon/main.c Examining data/wine-5.0/dlls/uiribbon/uiribbon.c Examining data/wine-5.0/dlls/uiribbon/uiribbon_private.h Examining data/wine-5.0/dlls/updspapi/main.c Examining data/wine-5.0/dlls/url/url_main.c Examining data/wine-5.0/dlls/urlmon/axinstall.c Examining data/wine-5.0/dlls/urlmon/bindctx.c Examining data/wine-5.0/dlls/urlmon/binding.c Examining data/wine-5.0/dlls/urlmon/bindprot.c Examining data/wine-5.0/dlls/urlmon/download.c Examining data/wine-5.0/dlls/urlmon/file.c Examining data/wine-5.0/dlls/urlmon/format.c Examining data/wine-5.0/dlls/urlmon/ftp.c Examining data/wine-5.0/dlls/urlmon/gopher.c Examining data/wine-5.0/dlls/urlmon/http.c Examining data/wine-5.0/dlls/urlmon/internet.c Examining data/wine-5.0/dlls/urlmon/mimefilter.c Examining data/wine-5.0/dlls/urlmon/mk.c Examining data/wine-5.0/dlls/urlmon/protocol.c Examining data/wine-5.0/dlls/urlmon/resource.h Examining data/wine-5.0/dlls/urlmon/sec_mgr.c Examining data/wine-5.0/dlls/urlmon/session.c Examining data/wine-5.0/dlls/urlmon/tests/misc.c Examining data/wine-5.0/dlls/urlmon/tests/protocol.c Examining data/wine-5.0/dlls/urlmon/tests/sec_mgr.c Examining data/wine-5.0/dlls/urlmon/tests/stream.c Examining data/wine-5.0/dlls/urlmon/tests/uri.c Examining data/wine-5.0/dlls/urlmon/tests/url.c Examining data/wine-5.0/dlls/urlmon/umon.c Examining data/wine-5.0/dlls/urlmon/umstream.c Examining data/wine-5.0/dlls/urlmon/uri.c Examining data/wine-5.0/dlls/urlmon/urlmon_main.c Examining data/wine-5.0/dlls/urlmon/urlmon_main.h Examining data/wine-5.0/dlls/urlmon/usrmarshal.c Examining data/wine-5.0/dlls/usbd.sys/usbd.c Examining data/wine-5.0/dlls/user.exe16/bidi.c Examining data/wine-5.0/dlls/user.exe16/comm.c Examining data/wine-5.0/dlls/user.exe16/dialog.c Examining data/wine-5.0/dlls/user.exe16/hook.c Examining data/wine-5.0/dlls/user.exe16/message.c Examining data/wine-5.0/dlls/user.exe16/network.c Examining data/wine-5.0/dlls/user.exe16/user.c Examining data/wine-5.0/dlls/user.exe16/user_private.h Examining data/wine-5.0/dlls/user.exe16/window.c Examining data/wine-5.0/dlls/user32/button.c Examining data/wine-5.0/dlls/user32/caret.c Examining data/wine-5.0/dlls/user32/class.c Examining data/wine-5.0/dlls/user32/clipboard.c Examining data/wine-5.0/dlls/user32/combo.c Examining data/wine-5.0/dlls/user32/controls.h Examining data/wine-5.0/dlls/user32/cursoricon.c Examining data/wine-5.0/dlls/user32/dde_client.c Examining data/wine-5.0/dlls/user32/dde_misc.c Examining data/wine-5.0/dlls/user32/dde_private.h Examining data/wine-5.0/dlls/user32/dde_server.c Examining data/wine-5.0/dlls/user32/defdlg.c Examining data/wine-5.0/dlls/user32/defwnd.c Examining data/wine-5.0/dlls/user32/desktop.c Examining data/wine-5.0/dlls/user32/dialog.c Examining data/wine-5.0/dlls/user32/driver.c Examining data/wine-5.0/dlls/user32/edit.c Examining data/wine-5.0/dlls/user32/exticon.c Examining data/wine-5.0/dlls/user32/focus.c Examining data/wine-5.0/dlls/user32/hook.c Examining data/wine-5.0/dlls/user32/icontitle.c Examining data/wine-5.0/dlls/user32/input.c Examining data/wine-5.0/dlls/user32/listbox.c Examining data/wine-5.0/dlls/user32/lstr.c Examining data/wine-5.0/dlls/user32/mdi.c Examining data/wine-5.0/dlls/user32/menu.c Examining data/wine-5.0/dlls/user32/message.c Examining data/wine-5.0/dlls/user32/misc.c Examining data/wine-5.0/dlls/user32/msgbox.c Examining data/wine-5.0/dlls/user32/nonclient.c Examining data/wine-5.0/dlls/user32/painting.c Examining data/wine-5.0/dlls/user32/property.c Examining data/wine-5.0/dlls/user32/rawinput.c Examining data/wine-5.0/dlls/user32/resource.c Examining data/wine-5.0/dlls/user32/resources.h Examining data/wine-5.0/dlls/user32/scroll.c Examining data/wine-5.0/dlls/user32/spy.c Examining data/wine-5.0/dlls/user32/static.c Examining data/wine-5.0/dlls/user32/tests/broadcast.c Examining data/wine-5.0/dlls/user32/tests/class.c Examining data/wine-5.0/dlls/user32/tests/clipboard.c Examining data/wine-5.0/dlls/user32/tests/combo.c Examining data/wine-5.0/dlls/user32/tests/cursoricon.c Examining data/wine-5.0/dlls/user32/tests/dce.c Examining data/wine-5.0/dlls/user32/tests/dde.c Examining data/wine-5.0/dlls/user32/tests/dialog.c Examining data/wine-5.0/dlls/user32/tests/edit.c Examining data/wine-5.0/dlls/user32/tests/input.c Examining data/wine-5.0/dlls/user32/tests/listbox.c Examining data/wine-5.0/dlls/user32/tests/menu.c Examining data/wine-5.0/dlls/user32/tests/monitor.c Examining data/wine-5.0/dlls/user32/tests/msg.c Examining data/wine-5.0/dlls/user32/tests/resource.c Examining data/wine-5.0/dlls/user32/tests/scroll.c Examining data/wine-5.0/dlls/user32/tests/static.c Examining data/wine-5.0/dlls/user32/tests/sysparams.c Examining data/wine-5.0/dlls/user32/tests/text.c Examining data/wine-5.0/dlls/user32/tests/uitools.c Examining data/wine-5.0/dlls/user32/tests/win.c Examining data/wine-5.0/dlls/user32/tests/winstation.c Examining data/wine-5.0/dlls/user32/tests/wsprintf.c Examining data/wine-5.0/dlls/user32/text.c Examining data/wine-5.0/dlls/user32/uitools.c Examining data/wine-5.0/dlls/user32/user_main.c Examining data/wine-5.0/dlls/user32/user_private.h Examining data/wine-5.0/dlls/user32/win.c Examining data/wine-5.0/dlls/user32/win.h Examining data/wine-5.0/dlls/user32/winhelp.c Examining data/wine-5.0/dlls/user32/winpos.c Examining data/wine-5.0/dlls/user32/winproc.c Examining data/wine-5.0/dlls/user32/winstation.c Examining data/wine-5.0/dlls/user32/wsprintf.c Examining data/wine-5.0/dlls/user32/sysparams.c Examining data/wine-5.0/dlls/userenv/tests/userenv.c Examining data/wine-5.0/dlls/userenv/userenv_main.c Examining data/wine-5.0/dlls/usp10/bidi.c Examining data/wine-5.0/dlls/usp10/breaking.c Examining data/wine-5.0/dlls/usp10/direction.c Examining data/wine-5.0/dlls/usp10/indic.c Examining data/wine-5.0/dlls/usp10/opentype.c Examining data/wine-5.0/dlls/usp10/shape.c Examining data/wine-5.0/dlls/usp10/tests/usp10.c Examining data/wine-5.0/dlls/usp10/usp10.c Examining data/wine-5.0/dlls/usp10/usp10_internal.h Examining data/wine-5.0/dlls/utildll/main.c Examining data/wine-5.0/dlls/uuid/d2d.c Examining data/wine-5.0/dlls/uuid/uuid.c Examining data/wine-5.0/dlls/uxtheme/buffer.c Examining data/wine-5.0/dlls/uxtheme/draw.c Examining data/wine-5.0/dlls/uxtheme/main.c Examining data/wine-5.0/dlls/uxtheme/metric.c Examining data/wine-5.0/dlls/uxtheme/msstyles.c Examining data/wine-5.0/dlls/uxtheme/msstyles.h Examining data/wine-5.0/dlls/uxtheme/property.c Examining data/wine-5.0/dlls/uxtheme/stylemap.c Examining data/wine-5.0/dlls/uxtheme/system.c Examining data/wine-5.0/dlls/uxtheme/tests/system.c Examining data/wine-5.0/dlls/uxtheme/uxini.c Examining data/wine-5.0/dlls/uxtheme/uxthemedll.h Examining data/wine-5.0/dlls/vbscript/compile.c Examining data/wine-5.0/dlls/vbscript/global.c Examining data/wine-5.0/dlls/vbscript/interp.c Examining data/wine-5.0/dlls/vbscript/lex.c Examining data/wine-5.0/dlls/vbscript/parse.h Examining data/wine-5.0/dlls/vbscript/regexp.c Examining data/wine-5.0/dlls/vbscript/regexp.h Examining data/wine-5.0/dlls/vbscript/tests/createobj.c Examining data/wine-5.0/dlls/vbscript/tests/run.c Examining data/wine-5.0/dlls/vbscript/tests/vbscript.c Examining data/wine-5.0/dlls/vbscript/tests/vbscript_defs.h Examining data/wine-5.0/dlls/vbscript/utils.c Examining data/wine-5.0/dlls/vbscript/vbdisp.c Examining data/wine-5.0/dlls/vbscript/vbregexp.c Examining data/wine-5.0/dlls/vbscript/vbscript.c Examining data/wine-5.0/dlls/vbscript/vbscript.h Examining data/wine-5.0/dlls/vbscript/vbscript_defs.h Examining data/wine-5.0/dlls/vbscript/vbscript_main.c Examining data/wine-5.0/dlls/vcomp/main.c Examining data/wine-5.0/dlls/vcomp/tests/vcomp.c Examining data/wine-5.0/dlls/vcruntime140/misc.c Examining data/wine-5.0/dlls/vdhcp.vxd/vdhcp.c Examining data/wine-5.0/dlls/vdmdbg/vdmdbg.c Examining data/wine-5.0/dlls/ver.dll16/version.c Examining data/wine-5.0/dlls/version/tests/info.c Examining data/wine-5.0/dlls/version/tests/install.c Examining data/wine-5.0/dlls/version/version.c Examining data/wine-5.0/dlls/virtdisk/tests/virtdisk.c Examining data/wine-5.0/dlls/virtdisk/virtdisk_main.c Examining data/wine-5.0/dlls/vmm.vxd/vmm.c Examining data/wine-5.0/dlls/vnbt.vxd/vnbt.c Examining data/wine-5.0/dlls/vnetbios.vxd/vnetbios.c Examining data/wine-5.0/dlls/vssapi/main.c Examining data/wine-5.0/dlls/vtdapi.vxd/vtdapi.c Examining data/wine-5.0/dlls/vulkan-1/tests/vulkan.c Examining data/wine-5.0/dlls/vulkan-1/vulkan.c Examining data/wine-5.0/dlls/vwin32.vxd/vwin32.c Examining data/wine-5.0/dlls/w32skrnl/w32skernel.c Examining data/wine-5.0/dlls/w32sys.dll16/w32sys.c Examining data/wine-5.0/dlls/wbemdisp/locator.c Examining data/wine-5.0/dlls/wbemdisp/main.c Examining data/wine-5.0/dlls/wbemdisp/tests/wbemdisp.c Examining data/wine-5.0/dlls/wbemdisp/wbemdisp_private.h Examining data/wine-5.0/dlls/wbemprox/builtin.c Examining data/wine-5.0/dlls/wbemprox/class.c Examining data/wine-5.0/dlls/wbemprox/main.c Examining data/wine-5.0/dlls/wbemprox/process.c Examining data/wine-5.0/dlls/wbemprox/qualifier.c Examining data/wine-5.0/dlls/wbemprox/query.c Examining data/wine-5.0/dlls/wbemprox/reg.c Examining data/wine-5.0/dlls/wbemprox/security.c Examining data/wine-5.0/dlls/wbemprox/service.c Examining data/wine-5.0/dlls/wbemprox/services.c Examining data/wine-5.0/dlls/wbemprox/table.c Examining data/wine-5.0/dlls/wbemprox/tests/query.c Examining data/wine-5.0/dlls/wbemprox/tests/services.c Examining data/wine-5.0/dlls/wbemprox/wbemlocator.c Examining data/wine-5.0/dlls/wbemprox/wbemprox_private.h Examining data/wine-5.0/dlls/wdscore/wdscore_main.c Examining data/wine-5.0/dlls/webservices/channel.c Examining data/wine-5.0/dlls/webservices/error.c Examining data/wine-5.0/dlls/webservices/heap.c Examining data/wine-5.0/dlls/webservices/listener.c Examining data/wine-5.0/dlls/webservices/msg.c Examining data/wine-5.0/dlls/webservices/proxy.c Examining data/wine-5.0/dlls/webservices/sock.h Examining data/wine-5.0/dlls/webservices/string.c Examining data/wine-5.0/dlls/webservices/tests/channel.c Examining data/wine-5.0/dlls/webservices/tests/msg.c Examining data/wine-5.0/dlls/webservices/tests/proxy.c Examining data/wine-5.0/dlls/webservices/tests/reader.c Examining data/wine-5.0/dlls/webservices/tests/url.c Examining data/wine-5.0/dlls/webservices/tests/writer.c Examining data/wine-5.0/dlls/webservices/url.c Examining data/wine-5.0/dlls/webservices/webservices_private.h Examining data/wine-5.0/dlls/webservices/writer.c Examining data/wine-5.0/dlls/webservices/reader.c Examining data/wine-5.0/dlls/wer/main.c Examining data/wine-5.0/dlls/wer/tests/main.c Examining data/wine-5.0/dlls/wevtapi/main.c Examining data/wine-5.0/dlls/wiaservc/factory.c Examining data/wine-5.0/dlls/wiaservc/service.c Examining data/wine-5.0/dlls/wiaservc/tests/wia.c Examining data/wine-5.0/dlls/wiaservc/wiadevmgr.c Examining data/wine-5.0/dlls/wiaservc/wiaservc_main.c Examining data/wine-5.0/dlls/wiaservc/wiaservc_private.h Examining data/wine-5.0/dlls/wimgapi/main.c Examining data/wine-5.0/dlls/win32s16.dll16/win32s16.c Examining data/wine-5.0/dlls/win87em.dll16/win87em.c Examining data/wine-5.0/dlls/winaspi.dll16/aspi.h Examining data/wine-5.0/dlls/winaspi.dll16/winaspi.c Examining data/wine-5.0/dlls/windebug.dll16/windebug.c Examining data/wine-5.0/dlls/windowscodecs/bitmap.c Examining data/wine-5.0/dlls/windowscodecs/bmpdecode.c Examining data/wine-5.0/dlls/windowscodecs/bmpencode.c Examining data/wine-5.0/dlls/windowscodecs/clipper.c Examining data/wine-5.0/dlls/windowscodecs/clsfactory.c Examining data/wine-5.0/dlls/windowscodecs/colorcontext.c Examining data/wine-5.0/dlls/windowscodecs/colortransform.c Examining data/wine-5.0/dlls/windowscodecs/converter.c Examining data/wine-5.0/dlls/windowscodecs/fliprotate.c Examining data/wine-5.0/dlls/windowscodecs/gifformat.c Examining data/wine-5.0/dlls/windowscodecs/icnsformat.c Examining data/wine-5.0/dlls/windowscodecs/icoformat.c Examining data/wine-5.0/dlls/windowscodecs/imgfactory.c Examining data/wine-5.0/dlls/windowscodecs/info.c Examining data/wine-5.0/dlls/windowscodecs/jpegformat.c Examining data/wine-5.0/dlls/windowscodecs/main.c Examining data/wine-5.0/dlls/windowscodecs/metadatahandler.c Examining data/wine-5.0/dlls/windowscodecs/metadataquery.c Examining data/wine-5.0/dlls/windowscodecs/palette.c Examining data/wine-5.0/dlls/windowscodecs/pngformat.c Examining data/wine-5.0/dlls/windowscodecs/propertybag.c Examining data/wine-5.0/dlls/windowscodecs/proxy.c Examining data/wine-5.0/dlls/windowscodecs/regsvr.c Examining data/wine-5.0/dlls/windowscodecs/scaler.c Examining data/wine-5.0/dlls/windowscodecs/stream.c Examining data/wine-5.0/dlls/windowscodecs/tests/bitmap.c Examining data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c Examining data/wine-5.0/dlls/windowscodecs/tests/converter.c Examining data/wine-5.0/dlls/windowscodecs/tests/gifformat.c Examining data/wine-5.0/dlls/windowscodecs/tests/icoformat.c Examining data/wine-5.0/dlls/windowscodecs/tests/info.c Examining data/wine-5.0/dlls/windowscodecs/tests/jpegformat.c Examining data/wine-5.0/dlls/windowscodecs/tests/metadata.c Examining data/wine-5.0/dlls/windowscodecs/tests/palette.c Examining data/wine-5.0/dlls/windowscodecs/tests/pngformat.c Examining data/wine-5.0/dlls/windowscodecs/tests/propertybag.c Examining data/wine-5.0/dlls/windowscodecs/tests/stream.c Examining data/wine-5.0/dlls/windowscodecs/tests/tiffformat.c Examining data/wine-5.0/dlls/windowscodecs/tgaformat.c Examining data/wine-5.0/dlls/windowscodecs/tiffformat.c Examining data/wine-5.0/dlls/windowscodecs/ungif.c Examining data/wine-5.0/dlls/windowscodecs/ungif.h Examining data/wine-5.0/dlls/windowscodecs/wincodecs_private.h Examining data/wine-5.0/dlls/windowscodecsext/main.c Examining data/wine-5.0/dlls/windowscodecsext/tests/transform.c Examining data/wine-5.0/dlls/winealsa.drv/midi.c Examining data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c Examining data/wine-5.0/dlls/wineandroid.drv/android.h Examining data/wine-5.0/dlls/wineandroid.drv/android_native.h Examining data/wine-5.0/dlls/wineandroid.drv/device.c Examining data/wine-5.0/dlls/wineandroid.drv/init.c Examining data/wine-5.0/dlls/wineandroid.drv/keyboard.c Examining data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c Examining data/wine-5.0/dlls/wineandroid.drv/opengl.c Examining data/wine-5.0/dlls/wineandroid.drv/window.c Examining data/wine-5.0/dlls/winebus.sys/bus.h Examining data/wine-5.0/dlls/winebus.sys/bus_iohid.c Examining data/wine-5.0/dlls/winebus.sys/bus_sdl.c Examining data/wine-5.0/dlls/winebus.sys/bus_udev.c Examining data/wine-5.0/dlls/winebus.sys/controller.h Examining data/wine-5.0/dlls/winebus.sys/main.c Examining data/wine-5.0/dlls/winecoreaudio.drv/audiounit.c Examining data/wine-5.0/dlls/winecoreaudio.drv/coreaudio.c Examining data/wine-5.0/dlls/winecoreaudio.drv/coreaudio.h Examining data/wine-5.0/dlls/winecoreaudio.drv/coremidi.c Examining data/wine-5.0/dlls/winecoreaudio.drv/coremidi.h Examining data/wine-5.0/dlls/winecoreaudio.drv/midi.c Examining data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c Examining data/wine-5.0/dlls/winecrt0/crt0_private.h Examining data/wine-5.0/dlls/winecrt0/crt_dllmain.c Examining data/wine-5.0/dlls/winecrt0/debug.c Examining data/wine-5.0/dlls/winecrt0/delay_load.c Examining data/wine-5.0/dlls/winecrt0/dll_entry.c Examining data/wine-5.0/dlls/winecrt0/dll_main.c Examining data/wine-5.0/dlls/winecrt0/drv_entry.c Examining data/wine-5.0/dlls/winecrt0/exception.c Examining data/wine-5.0/dlls/winecrt0/exe16_entry.c Examining data/wine-5.0/dlls/winecrt0/exe_entry.c Examining data/wine-5.0/dlls/winecrt0/exe_main.c Examining data/wine-5.0/dlls/winecrt0/exe_wentry.c Examining data/wine-5.0/dlls/winecrt0/exe_wmain.c Examining data/wine-5.0/dlls/winecrt0/init.c Examining data/wine-5.0/dlls/winecrt0/register.c Examining data/wine-5.0/dlls/winecrt0/stub.c Examining data/wine-5.0/dlls/wined3d/adapter_gl.c Examining data/wine-5.0/dlls/wined3d/adapter_vk.c Examining data/wine-5.0/dlls/wined3d/arb_program_shader.c Examining data/wine-5.0/dlls/wined3d/ati_fragment_shader.c Examining data/wine-5.0/dlls/wined3d/buffer.c Examining data/wine-5.0/dlls/wined3d/context.c Examining data/wine-5.0/dlls/wined3d/cs.c Examining data/wine-5.0/dlls/wined3d/device.c Examining data/wine-5.0/dlls/wined3d/directx.c Examining data/wine-5.0/dlls/wined3d/gl_compat.c Examining data/wine-5.0/dlls/wined3d/glsl_shader.c Examining data/wine-5.0/dlls/wined3d/nvidia_texture_shader.c Examining data/wine-5.0/dlls/wined3d/palette.c Examining data/wine-5.0/dlls/wined3d/query.c Examining data/wine-5.0/dlls/wined3d/resource.c Examining data/wine-5.0/dlls/wined3d/sampler.c Examining data/wine-5.0/dlls/wined3d/shader.c Examining data/wine-5.0/dlls/wined3d/shader_sm1.c Examining data/wine-5.0/dlls/wined3d/shader_sm4.c Examining data/wine-5.0/dlls/wined3d/state.c Examining data/wine-5.0/dlls/wined3d/stateblock.c Examining data/wine-5.0/dlls/wined3d/surface.c Examining data/wine-5.0/dlls/wined3d/swapchain.c Examining data/wine-5.0/dlls/wined3d/texture.c Examining data/wine-5.0/dlls/wined3d/vertexdeclaration.c Examining data/wine-5.0/dlls/wined3d/view.c Examining data/wine-5.0/dlls/wined3d/wined3d_gl.h Examining data/wine-5.0/dlls/wined3d/wined3d_main.c Examining data/wine-5.0/dlls/wined3d/wined3d_private.h Examining data/wine-5.0/dlls/wined3d/wined3d_vk.h Examining data/wine-5.0/dlls/wined3d/utils.c Examining data/wine-5.0/dlls/winegstreamer/gst_cbs.c Examining data/wine-5.0/dlls/winegstreamer/gst_cbs.h Examining data/wine-5.0/dlls/winegstreamer/gst_guids.h Examining data/wine-5.0/dlls/winegstreamer/gst_private.h Examining data/wine-5.0/dlls/winegstreamer/gstdemux.c Examining data/wine-5.0/dlls/winegstreamer/gsttffilter.c Examining data/wine-5.0/dlls/winegstreamer/main.c Examining data/wine-5.0/dlls/winegstreamer/mfplat.c Examining data/wine-5.0/dlls/winehid.sys/main.c Examining data/wine-5.0/dlls/winejoystick.drv/joystick.c Examining data/wine-5.0/dlls/winejoystick.drv/joystick.h Examining data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c Examining data/wine-5.0/dlls/winejoystick.drv/joystick_osx.c Examining data/wine-5.0/dlls/winemac.drv/clipboard.c Examining data/wine-5.0/dlls/winemac.drv/cocoa_app.h Examining data/wine-5.0/dlls/winemac.drv/cocoa_event.h Examining data/wine-5.0/dlls/winemac.drv/cocoa_opengl.h Examining data/wine-5.0/dlls/winemac.drv/cocoa_window.h Examining data/wine-5.0/dlls/winemac.drv/display.c Examining data/wine-5.0/dlls/winemac.drv/dragdrop.c Examining data/wine-5.0/dlls/winemac.drv/event.c Examining data/wine-5.0/dlls/winemac.drv/gdi.c Examining data/wine-5.0/dlls/winemac.drv/image.c Examining data/wine-5.0/dlls/winemac.drv/ime.c Examining data/wine-5.0/dlls/winemac.drv/keyboard.c Examining data/wine-5.0/dlls/winemac.drv/macdrv.h Examining data/wine-5.0/dlls/winemac.drv/macdrv_cocoa.h Examining data/wine-5.0/dlls/winemac.drv/macdrv_main.c Examining data/wine-5.0/dlls/winemac.drv/macdrv_res.h Examining data/wine-5.0/dlls/winemac.drv/mouse.c Examining data/wine-5.0/dlls/winemac.drv/opengl.c Examining data/wine-5.0/dlls/winemac.drv/surface.c Examining data/wine-5.0/dlls/winemac.drv/systray.c Examining data/wine-5.0/dlls/winemac.drv/vulkan.c Examining data/wine-5.0/dlls/winemac.drv/window.c Examining data/wine-5.0/dlls/winemapi/main.c Examining data/wine-5.0/dlls/winemapi/sendmail.c Examining data/wine-5.0/dlls/wineoss.drv/midi.c Examining data/wine-5.0/dlls/wineoss.drv/midipatch.c Examining data/wine-5.0/dlls/wineoss.drv/mmaux.c Examining data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c Examining data/wine-5.0/dlls/wineps.drv/afm.c Examining data/wine-5.0/dlls/wineps.drv/afm2c.c Examining data/wine-5.0/dlls/wineps.drv/bitblt.c Examining data/wine-5.0/dlls/wineps.drv/bitmap.c Examining data/wine-5.0/dlls/wineps.drv/brush.c Examining data/wine-5.0/dlls/wineps.drv/builtin.c Examining data/wine-5.0/dlls/wineps.drv/clipping.c Examining data/wine-5.0/dlls/wineps.drv/color.c Examining data/wine-5.0/dlls/wineps.drv/data/AvantGarde_Book.c Examining data/wine-5.0/dlls/wineps.drv/data/AvantGarde_BookOblique.c Examining data/wine-5.0/dlls/wineps.drv/data/AvantGarde_Demi.c Examining data/wine-5.0/dlls/wineps.drv/data/AvantGarde_DemiOblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Bookman_Demi.c Examining data/wine-5.0/dlls/wineps.drv/data/Bookman_DemiItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/Bookman_Light.c Examining data/wine-5.0/dlls/wineps.drv/data/Bookman_LightItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/Courier.c Examining data/wine-5.0/dlls/wineps.drv/data/Courier_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/Courier_BoldOblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Courier_Oblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_BoldOblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Narrow.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Narrow_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Narrow_BoldOblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Narrow_Oblique.c Examining data/wine-5.0/dlls/wineps.drv/data/Helvetica_Oblique.c Examining data/wine-5.0/dlls/wineps.drv/data/NewCenturySchlbk_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/NewCenturySchlbk_BoldItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/NewCenturySchlbk_Italic.c Examining data/wine-5.0/dlls/wineps.drv/data/NewCenturySchlbk_Roman.c Examining data/wine-5.0/dlls/wineps.drv/data/Palatino_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/Palatino_BoldItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/Palatino_Italic.c Examining data/wine-5.0/dlls/wineps.drv/data/Palatino_Roman.c Examining data/wine-5.0/dlls/wineps.drv/data/Symbol.c Examining data/wine-5.0/dlls/wineps.drv/data/Times_Bold.c Examining data/wine-5.0/dlls/wineps.drv/data/Times_BoldItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/Times_Italic.c Examining data/wine-5.0/dlls/wineps.drv/data/Times_Roman.c Examining data/wine-5.0/dlls/wineps.drv/data/ZapfChancery_MediumItalic.c Examining data/wine-5.0/dlls/wineps.drv/data/ZapfDingbats.c Examining data/wine-5.0/dlls/wineps.drv/data/agl.c Examining data/wine-5.0/dlls/wineps.drv/data/agl.h Examining data/wine-5.0/dlls/wineps.drv/download.c Examining data/wine-5.0/dlls/wineps.drv/driver.c Examining data/wine-5.0/dlls/wineps.drv/encode.c Examining data/wine-5.0/dlls/wineps.drv/escape.c Examining data/wine-5.0/dlls/wineps.drv/font.c Examining data/wine-5.0/dlls/wineps.drv/glyphlist.c Examining data/wine-5.0/dlls/wineps.drv/graphics.c Examining data/wine-5.0/dlls/wineps.drv/init.c Examining data/wine-5.0/dlls/wineps.drv/mkagl.c Examining data/wine-5.0/dlls/wineps.drv/pen.c Examining data/wine-5.0/dlls/wineps.drv/ppd.c Examining data/wine-5.0/dlls/wineps.drv/ps.c Examining data/wine-5.0/dlls/wineps.drv/psdlg.h Examining data/wine-5.0/dlls/wineps.drv/psdrv.h Examining data/wine-5.0/dlls/wineps.drv/text.c Examining data/wine-5.0/dlls/wineps.drv/type1.c Examining data/wine-5.0/dlls/wineps.drv/type1afm.c Examining data/wine-5.0/dlls/wineps.drv/type42.c Examining data/wine-5.0/dlls/wineps16.drv16/driver.c Examining data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c Examining data/wine-5.0/dlls/wineqtdecoder/main.c Examining data/wine-5.0/dlls/wineqtdecoder/qtdatahandler.c Examining data/wine-5.0/dlls/wineqtdecoder/qtprivate.h Examining data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c Examining data/wine-5.0/dlls/wineqtdecoder/qtutils.c Examining data/wine-5.0/dlls/wineqtdecoder/qtvdecoder.c Examining data/wine-5.0/dlls/winevulkan/vulkan.c Examining data/wine-5.0/dlls/winevulkan/vulkan_private.h Examining data/wine-5.0/dlls/winevulkan/vulkan_thunks.c Examining data/wine-5.0/dlls/winevulkan/vulkan_thunks.h Examining data/wine-5.0/dlls/winex11.drv/bitblt.c Examining data/wine-5.0/dlls/winex11.drv/brush.c Examining data/wine-5.0/dlls/winex11.drv/clipboard.c Examining data/wine-5.0/dlls/winex11.drv/desktop.c Examining data/wine-5.0/dlls/winex11.drv/display.c Examining data/wine-5.0/dlls/winex11.drv/event.c Examining data/wine-5.0/dlls/winex11.drv/graphics.c Examining data/wine-5.0/dlls/winex11.drv/ime.c Examining data/wine-5.0/dlls/winex11.drv/init.c Examining data/wine-5.0/dlls/winex11.drv/keyboard.c Examining data/wine-5.0/dlls/winex11.drv/mouse.c Examining data/wine-5.0/dlls/winex11.drv/mwm.h Examining data/wine-5.0/dlls/winex11.drv/opengl.c Examining data/wine-5.0/dlls/winex11.drv/palette.c Examining data/wine-5.0/dlls/winex11.drv/pen.c Examining data/wine-5.0/dlls/winex11.drv/settings.c Examining data/wine-5.0/dlls/winex11.drv/systray.c Examining data/wine-5.0/dlls/winex11.drv/vulkan.c Examining data/wine-5.0/dlls/winex11.drv/window.c Examining data/wine-5.0/dlls/winex11.drv/wintab.c Examining data/wine-5.0/dlls/winex11.drv/x11drv.h Examining data/wine-5.0/dlls/winex11.drv/x11drv_main.c Examining data/wine-5.0/dlls/winex11.drv/xcomposite.h Examining data/wine-5.0/dlls/winex11.drv/xdnd.c Examining data/wine-5.0/dlls/winex11.drv/xim.c Examining data/wine-5.0/dlls/winex11.drv/xinerama.c Examining data/wine-5.0/dlls/winex11.drv/xrandr.c Examining data/wine-5.0/dlls/winex11.drv/xrender.c Examining data/wine-5.0/dlls/winex11.drv/xvidmode.c Examining data/wine-5.0/dlls/wing.dll16/wing.c Examining data/wine-5.0/dlls/wing32/wing32.c Examining data/wine-5.0/dlls/winhttp/cookie.c Examining data/wine-5.0/dlls/winhttp/handle.c Examining data/wine-5.0/dlls/winhttp/main.c Examining data/wine-5.0/dlls/winhttp/net.c Examining data/wine-5.0/dlls/winhttp/request.c Examining data/wine-5.0/dlls/winhttp/session.c Examining data/wine-5.0/dlls/winhttp/tests/notification.c Examining data/wine-5.0/dlls/winhttp/tests/url.c Examining data/wine-5.0/dlls/winhttp/tests/winhttp.c Examining data/wine-5.0/dlls/winhttp/url.c Examining data/wine-5.0/dlls/winhttp/winhttp_private.h Examining data/wine-5.0/dlls/wininet/resource.h Examining data/wine-5.0/dlls/wininet/tests/ftp.c Examining data/wine-5.0/dlls/wininet/tests/http.c Examining data/wine-5.0/dlls/wininet/tests/internet.c Examining data/wine-5.0/dlls/wininet/tests/url.c Examining data/wine-5.0/dlls/wininet/tests/urlcache.c Examining data/wine-5.0/dlls/wininet/tests/wininet_test.h Examining data/wine-5.0/dlls/wininet/cookie.c Examining data/wine-5.0/dlls/wininet/dialogs.c Examining data/wine-5.0/dlls/wininet/ftp.c Examining data/wine-5.0/dlls/wininet/gopher.c Examining data/wine-5.0/dlls/wininet/internet.h Examining data/wine-5.0/dlls/wininet/netconnection.c Examining data/wine-5.0/dlls/wininet/urlcache.c Examining data/wine-5.0/dlls/wininet/utility.c Examining data/wine-5.0/dlls/wininet/http.c Examining data/wine-5.0/dlls/wininet/internet.c Examining data/wine-5.0/dlls/winmm/driver.c Examining data/wine-5.0/dlls/winmm/joystick.c Examining data/wine-5.0/dlls/winmm/lolvldrv.c Examining data/wine-5.0/dlls/winmm/mci.c Examining data/wine-5.0/dlls/winmm/mmio.c Examining data/wine-5.0/dlls/winmm/playsound.c Examining data/wine-5.0/dlls/winmm/resource.h Examining data/wine-5.0/dlls/winmm/tests/capture.c Examining data/wine-5.0/dlls/winmm/tests/joystick.c Examining data/wine-5.0/dlls/winmm/tests/mci.c Examining data/wine-5.0/dlls/winmm/tests/mcicda.c Examining data/wine-5.0/dlls/winmm/tests/midi.c Examining data/wine-5.0/dlls/winmm/tests/mixer.c Examining data/wine-5.0/dlls/winmm/tests/mmio.c Examining data/wine-5.0/dlls/winmm/tests/timer.c Examining data/wine-5.0/dlls/winmm/tests/wave.c Examining data/wine-5.0/dlls/winmm/tests/winmm_test.h Examining data/wine-5.0/dlls/winmm/time.c Examining data/wine-5.0/dlls/winmm/waveform.c Examining data/wine-5.0/dlls/winmm/winemm.h Examining data/wine-5.0/dlls/winmm/winmm.c Examining data/wine-5.0/dlls/winnls.dll16/winnls.c Examining data/wine-5.0/dlls/winnls32/winnls.c Examining data/wine-5.0/dlls/winscard/winscard.c Examining data/wine-5.0/dlls/winsock.dll16/socket.c Examining data/wine-5.0/dlls/winsock.dll16/winsock16.h Examining data/wine-5.0/dlls/winspool.drv/info.c Examining data/wine-5.0/dlls/winspool.drv/tests/info.c Examining data/wine-5.0/dlls/winspool.drv/wspool.c Examining data/wine-5.0/dlls/winspool.drv/wspool.h Examining data/wine-5.0/dlls/winsta/main.c Examining data/wine-5.0/dlls/winsta/winsta.h Examining data/wine-5.0/dlls/wintab.dll16/wintab.c Examining data/wine-5.0/dlls/wintab32/context.c Examining data/wine-5.0/dlls/wintab32/manager.c Examining data/wine-5.0/dlls/wintab32/tests/context.c Examining data/wine-5.0/dlls/wintab32/wintab32.c Examining data/wine-5.0/dlls/wintab32/wintab_internal.h Examining data/wine-5.0/dlls/wintrust/asn.c Examining data/wine-5.0/dlls/wintrust/crypt.c Examining data/wine-5.0/dlls/wintrust/register.c Examining data/wine-5.0/dlls/wintrust/softpub.c Examining data/wine-5.0/dlls/wintrust/tests/asn.c Examining data/wine-5.0/dlls/wintrust/tests/crypt.c Examining data/wine-5.0/dlls/wintrust/tests/register.c Examining data/wine-5.0/dlls/wintrust/tests/softpub.c Examining data/wine-5.0/dlls/wintrust/wintrust_main.c Examining data/wine-5.0/dlls/wintrust/wintrust_priv.h Examining data/wine-5.0/dlls/wlanapi/main.c Examining data/wine-5.0/dlls/wlanapi/tests/wlanapi.c Examining data/wine-5.0/dlls/wlanui/main.c Examining data/wine-5.0/dlls/wldap32/add.c Examining data/wine-5.0/dlls/wldap32/ber.c Examining data/wine-5.0/dlls/wldap32/bind.c Examining data/wine-5.0/dlls/wldap32/compare.c Examining data/wine-5.0/dlls/wldap32/control.c Examining data/wine-5.0/dlls/wldap32/delete.c Examining data/wine-5.0/dlls/wldap32/dn.c Examining data/wine-5.0/dlls/wldap32/error.c Examining data/wine-5.0/dlls/wldap32/extended.c Examining data/wine-5.0/dlls/wldap32/init.c Examining data/wine-5.0/dlls/wldap32/main.c Examining data/wine-5.0/dlls/wldap32/misc.c Examining data/wine-5.0/dlls/wldap32/modify.c Examining data/wine-5.0/dlls/wldap32/modrdn.c Examining data/wine-5.0/dlls/wldap32/option.c Examining data/wine-5.0/dlls/wldap32/page.c Examining data/wine-5.0/dlls/wldap32/parse.c Examining data/wine-5.0/dlls/wldap32/rename.c Examining data/wine-5.0/dlls/wldap32/search.c Examining data/wine-5.0/dlls/wldap32/tests/parse.c Examining data/wine-5.0/dlls/wldap32/value.c Examining data/wine-5.0/dlls/wldap32/winldap_private.h Examining data/wine-5.0/dlls/wldap32/wldap32.h Examining data/wine-5.0/dlls/wmasf/main.c Examining data/wine-5.0/dlls/wmcodecdspuuid/wmcodecdspuuid.c Examining data/wine-5.0/dlls/wmiutils/main.c Examining data/wine-5.0/dlls/wmiutils/path.c Examining data/wine-5.0/dlls/wmiutils/statuscode.c Examining data/wine-5.0/dlls/wmiutils/tests/path.c Examining data/wine-5.0/dlls/wmiutils/wmiutils_private.h Examining data/wine-5.0/dlls/wmp/events.c Examining data/wine-5.0/dlls/wmp/oleobj.c Examining data/wine-5.0/dlls/wmp/player.c Examining data/wine-5.0/dlls/wmp/tests/media.c Examining data/wine-5.0/dlls/wmp/tests/oleobj.c Examining data/wine-5.0/dlls/wmp/wmp_main.c Examining data/wine-5.0/dlls/wmp/wmp_private.h Examining data/wine-5.0/dlls/wmphoto/main.c Examining data/wine-5.0/dlls/wmvcore/reader.c Examining data/wine-5.0/dlls/wmvcore/tests/wmvcore.c Examining data/wine-5.0/dlls/wmvcore/wmvcore.h Examining data/wine-5.0/dlls/wmvcore/wmvcore_main.c Examining data/wine-5.0/dlls/wmvcore/writer.c Examining data/wine-5.0/dlls/wnaspi32/aspi.c Examining data/wine-5.0/dlls/wnaspi32/aspi.h Examining data/wine-5.0/dlls/wnaspi32/winaspi32.c Examining data/wine-5.0/dlls/wnaspi32/winescsi.h Examining data/wine-5.0/dlls/wow32/wow_main.c Examining data/wine-5.0/dlls/wpc/tests/wpc.c Examining data/wine-5.0/dlls/wpc/wpc.c Examining data/wine-5.0/dlls/wpcap/wpcap.c Examining data/wine-5.0/dlls/ws2_32/async.c Examining data/wine-5.0/dlls/ws2_32/socket.c Examining data/wine-5.0/dlls/ws2_32/tests/protocol.c Examining data/wine-5.0/dlls/ws2_32/tests/sock.c Examining data/wine-5.0/dlls/wsdapi/address.c Examining data/wine-5.0/dlls/wsdapi/discovery.c Examining data/wine-5.0/dlls/wsdapi/memory.c Examining data/wine-5.0/dlls/wsdapi/msgparams.c Examining data/wine-5.0/dlls/wsdapi/network.c Examining data/wine-5.0/dlls/wsdapi/soap.c Examining data/wine-5.0/dlls/wsdapi/tests/address.c Examining data/wine-5.0/dlls/wsdapi/tests/discovery.c Examining data/wine-5.0/dlls/wsdapi/tests/memory.c Examining data/wine-5.0/dlls/wsdapi/tests/msgparams.c Examining data/wine-5.0/dlls/wsdapi/tests/xml.c Examining data/wine-5.0/dlls/wsdapi/wsdapi_internal.h Examining data/wine-5.0/dlls/wsdapi/xml.c Examining data/wine-5.0/dlls/wshom.ocx/shell.c Examining data/wine-5.0/dlls/wshom.ocx/tests/wshom.c Examining data/wine-5.0/dlls/wshom.ocx/wshom_main.c Examining data/wine-5.0/dlls/wshom.ocx/wshom_private.h Examining data/wine-5.0/dlls/wsnmp32/tests/wsnmp.c Examining data/wine-5.0/dlls/wsnmp32/wsnmp32.c Examining data/wine-5.0/dlls/wsock32/protocol.c Examining data/wine-5.0/dlls/wsock32/service.c Examining data/wine-5.0/dlls/wsock32/socket.c Examining data/wine-5.0/dlls/wsock32/wscontrol.h Examining data/wine-5.0/dlls/wtsapi32/tests/wtsapi.c Examining data/wine-5.0/dlls/wtsapi32/wtsapi32.c Examining data/wine-5.0/dlls/wuapi/downloader.c Examining data/wine-5.0/dlls/wuapi/installer.c Examining data/wine-5.0/dlls/wuapi/main.c Examining data/wine-5.0/dlls/wuapi/searcher.c Examining data/wine-5.0/dlls/wuapi/session.c Examining data/wine-5.0/dlls/wuapi/systeminfo.c Examining data/wine-5.0/dlls/wuapi/updates.c Examining data/wine-5.0/dlls/wuapi/wuapi_private.h Examining data/wine-5.0/dlls/wuaueng/main.c Examining data/wine-5.0/dlls/xaudio2_7/compat.c Examining data/wine-5.0/dlls/xaudio2_7/tests/xaudio2.c Examining data/wine-5.0/dlls/xaudio2_7/x3daudio.c Examining data/wine-5.0/dlls/xaudio2_7/xapo.c Examining data/wine-5.0/dlls/xaudio2_7/xapofx.c Examining data/wine-5.0/dlls/xaudio2_7/xaudio_allocator.c Examining data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c Examining data/wine-5.0/dlls/xaudio2_7/xaudio_private.h Examining data/wine-5.0/dlls/xinput1_3/hid.c Examining data/wine-5.0/dlls/xinput1_3/tests/xinput.c Examining data/wine-5.0/dlls/xinput1_3/xinput_main.c Examining data/wine-5.0/dlls/xinput1_3/xinput_private.h Examining data/wine-5.0/dlls/xmllite/reader.c Examining data/wine-5.0/dlls/xmllite/tests/reader.c Examining data/wine-5.0/dlls/xmllite/tests/writer.c Examining data/wine-5.0/dlls/xmllite/writer.c Examining data/wine-5.0/dlls/xmllite/xmllite_private.h Examining data/wine-5.0/dlls/xolehlp/xolehlp.c Examining data/wine-5.0/dlls/xpsprint/main.c Examining data/wine-5.0/dlls/xpssvcs/main.c Examining data/wine-5.0/include/accctrl.h Examining data/wine-5.0/include/aclapi.h Examining data/wine-5.0/include/aclui.h Examining data/wine-5.0/include/adshlp.h Examining data/wine-5.0/include/advpub.h Examining data/wine-5.0/include/af_irda.h Examining data/wine-5.0/include/amaudio.h Examining data/wine-5.0/include/appcompatapi.h Examining data/wine-5.0/include/appmgmt.h Examining data/wine-5.0/include/appmodel.h Examining data/wine-5.0/include/atlbase.h Examining data/wine-5.0/include/atlcom.h Examining data/wine-5.0/include/atlthunk.h Examining data/wine-5.0/include/atlwin.h Examining data/wine-5.0/include/audevcod.h Examining data/wine-5.0/include/audiosessiontypes.h Examining data/wine-5.0/include/authz.h Examining data/wine-5.0/include/aviriff.h Examining data/wine-5.0/include/avrt.h Examining data/wine-5.0/include/basetsd.h Examining data/wine-5.0/include/basetyps.h Examining data/wine-5.0/include/bcrypt.h Examining data/wine-5.0/include/bdaiface_enums.h Examining data/wine-5.0/include/bdatypes.h Examining data/wine-5.0/include/bitsmsg.h Examining data/wine-5.0/include/bluetoothapis.h Examining data/wine-5.0/include/bthsdpdef.h Examining data/wine-5.0/include/cderr.h Examining data/wine-5.0/include/cfgmgr32.h Examining data/wine-5.0/include/cguid.h Examining data/wine-5.0/include/cierror.h Examining data/wine-5.0/include/clusapi.h Examining data/wine-5.0/include/colordlg.h Examining data/wine-5.0/include/commctrl.h Examining data/wine-5.0/include/commdlg.h Examining data/wine-5.0/include/compobj.h Examining data/wine-5.0/include/corerror.h Examining data/wine-5.0/include/corhdr.h Examining data/wine-5.0/include/cpl.h Examining data/wine-5.0/include/cryptdlg.h Examining data/wine-5.0/include/cryptuiapi.h Examining data/wine-5.0/include/custcntl.h Examining data/wine-5.0/include/cvconst.h Examining data/wine-5.0/include/d2dbasetypes.h Examining data/wine-5.0/include/d2derr.h Examining data/wine-5.0/include/d3d.h Examining data/wine-5.0/include/d3d10_1shader.h Examining data/wine-5.0/include/d3d10effect.h Examining data/wine-5.0/include/d3d10misc.h Examining data/wine-5.0/include/d3d10shader.h Examining data/wine-5.0/include/d3d11shader.h Examining data/wine-5.0/include/d3d8.h Examining data/wine-5.0/include/d3d8caps.h Examining data/wine-5.0/include/d3d8types.h Examining data/wine-5.0/include/d3d9.h Examining data/wine-5.0/include/d3d9caps.h Examining data/wine-5.0/include/d3d9types.h Examining data/wine-5.0/include/d3dcaps.h Examining data/wine-5.0/include/d3dcompiler.h Examining data/wine-5.0/include/d3dhal.h Examining data/wine-5.0/include/d3drm.h Examining data/wine-5.0/include/d3drmdef.h Examining data/wine-5.0/include/d3drmobj.h Examining data/wine-5.0/include/d3drmwin.h Examining data/wine-5.0/include/d3dtypes.h Examining data/wine-5.0/include/d3dukmdt.h Examining data/wine-5.0/include/d3dx10.h Examining data/wine-5.0/include/d3dx10async.h Examining data/wine-5.0/include/d3dx10math.h Examining data/wine-5.0/include/d3dx10tex.h Examining data/wine-5.0/include/d3dx11.h Examining data/wine-5.0/include/d3dx11async.h Examining data/wine-5.0/include/d3dx11tex.h Examining data/wine-5.0/include/d3dx9.h Examining data/wine-5.0/include/d3dx9anim.h Examining data/wine-5.0/include/d3dx9core.h Examining data/wine-5.0/include/d3dx9effect.h Examining data/wine-5.0/include/d3dx9math.h Examining data/wine-5.0/include/d3dx9mesh.h Examining data/wine-5.0/include/d3dx9shader.h Examining data/wine-5.0/include/d3dx9shape.h Examining data/wine-5.0/include/d3dx9tex.h Examining data/wine-5.0/include/d3dx9xof.h Examining data/wine-5.0/include/davclnt.h Examining data/wine-5.0/include/dbgeng.h Examining data/wine-5.0/include/dbghelp.h Examining data/wine-5.0/include/dbt.h Examining data/wine-5.0/include/dciddi.h Examining data/wine-5.0/include/dciman.h Examining data/wine-5.0/include/dde.h Examining data/wine-5.0/include/ddeml.h Examining data/wine-5.0/include/ddk/compstui.h Examining data/wine-5.0/include/ddk/csq.h Examining data/wine-5.0/include/ddk/d3dkmthk.h Examining data/wine-5.0/include/ddk/fltkernel.h Examining data/wine-5.0/include/ddk/hidclass.h Examining data/wine-5.0/include/ddk/hidpi.h Examining data/wine-5.0/include/ddk/hidport.h Examining data/wine-5.0/include/ddk/hidsdi.h Examining data/wine-5.0/include/ddk/hidtypes.h Examining data/wine-5.0/include/ddk/imm.h Examining data/wine-5.0/include/ddk/mountmgr.h Examining data/wine-5.0/include/ddk/ndis.h Examining data/wine-5.0/include/ddk/ntddcdvd.h Examining data/wine-5.0/include/ddk/ntddk.h Examining data/wine-5.0/include/ddk/ntddser.h Examining data/wine-5.0/include/ddk/ntddtape.h Examining data/wine-5.0/include/ddk/ntifs.h Examining data/wine-5.0/include/ddk/usb.h Examining data/wine-5.0/include/ddk/usb100.h Examining data/wine-5.0/include/ddk/usb200.h Examining data/wine-5.0/include/ddk/usbdlib.h Examining data/wine-5.0/include/ddk/usbioctl.h Examining data/wine-5.0/include/ddk/usbiodef.h Examining data/wine-5.0/include/ddk/wdm.h Examining data/wine-5.0/include/ddk/winddiui.h Examining data/wine-5.0/include/ddk/winsplp.h Examining data/wine-5.0/include/ddraw.h Examining data/wine-5.0/include/ddrawgdi.h Examining data/wine-5.0/include/ddrawi.h Examining data/wine-5.0/include/delayloadhandler.h Examining data/wine-5.0/include/devguid.h Examining data/wine-5.0/include/devpkey.h Examining data/wine-5.0/include/devpropdef.h Examining data/wine-5.0/include/dhcpcsdk.h Examining data/wine-5.0/include/dhtmldid.h Examining data/wine-5.0/include/difxapi.h Examining data/wine-5.0/include/digitalv.h Examining data/wine-5.0/include/dinput.h Examining data/wine-5.0/include/dinputd.h Examining data/wine-5.0/include/dispdib.h Examining data/wine-5.0/include/dlgs.h Examining data/wine-5.0/include/dls1.h Examining data/wine-5.0/include/dls2.h Examining data/wine-5.0/include/dmdls.h Examining data/wine-5.0/include/dmerror.h Examining data/wine-5.0/include/dmksctrl.h Examining data/wine-5.0/include/dmo.h Examining data/wine-5.0/include/dmoreg.h Examining data/wine-5.0/include/dmort.h Examining data/wine-5.0/include/dmplugin.h Examining data/wine-5.0/include/dmusbuff.h Examining data/wine-5.0/include/dmusicc.h Examining data/wine-5.0/include/dmusicf.h Examining data/wine-5.0/include/dmusici.h Examining data/wine-5.0/include/dmusics.h Examining data/wine-5.0/include/dpaddr.h Examining data/wine-5.0/include/dplay.h Examining data/wine-5.0/include/dplay8.h Examining data/wine-5.0/include/dplobby.h Examining data/wine-5.0/include/dplobby8.h Examining data/wine-5.0/include/dpnathlp.h Examining data/wine-5.0/include/dsconf.h Examining data/wine-5.0/include/dsgetdc.h Examining data/wine-5.0/include/dshow.h Examining data/wine-5.0/include/dsound.h Examining data/wine-5.0/include/dsrole.h Examining data/wine-5.0/include/dvdmedia.h Examining data/wine-5.0/include/dvoice.h Examining data/wine-5.0/include/dwmapi.h Examining data/wine-5.0/include/dxdiag.h Examining data/wine-5.0/include/dxerr8.h Examining data/wine-5.0/include/dxerr9.h Examining data/wine-5.0/include/dxfile.h Examining data/wine-5.0/include/dxva.h Examining data/wine-5.0/include/errorrep.h Examining data/wine-5.0/include/errors.h Examining data/wine-5.0/include/evcode.h Examining data/wine-5.0/include/evntprov.h Examining data/wine-5.0/include/excpt.h Examining data/wine-5.0/include/exdispid.h Examining data/wine-5.0/include/fci.h Examining data/wine-5.0/include/fdi.h Examining data/wine-5.0/include/fileapi.h Examining data/wine-5.0/include/fltdefs.h Examining data/wine-5.0/include/fontsub.h Examining data/wine-5.0/include/gdiplus.h Examining data/wine-5.0/include/gdipluscolor.h Examining data/wine-5.0/include/gdipluscolormatrix.h Examining data/wine-5.0/include/gdipluseffects.h Examining data/wine-5.0/include/gdiplusenums.h Examining data/wine-5.0/include/gdiplusflat.h Examining data/wine-5.0/include/gdiplusgpstubs.h Examining data/wine-5.0/include/gdiplusimaging.h Examining data/wine-5.0/include/gdiplusinit.h Examining data/wine-5.0/include/gdiplusmem.h Examining data/wine-5.0/include/gdiplusmetaheader.h Examining data/wine-5.0/include/gdipluspixelformats.h Examining data/wine-5.0/include/gdiplustypes.h Examining data/wine-5.0/include/guiddef.h Examining data/wine-5.0/include/hidusage.h Examining data/wine-5.0/include/highlevelmonitorconfigurationapi.h Examining data/wine-5.0/include/hlguids.h Examining data/wine-5.0/include/htmlhelp.h Examining data/wine-5.0/include/http.h Examining data/wine-5.0/include/httprequestid.h Examining data/wine-5.0/include/i_cryptasn1tls.h Examining data/wine-5.0/include/icm.h Examining data/wine-5.0/include/icmpapi.h Examining data/wine-5.0/include/idispids.h Examining data/wine-5.0/include/ifdef.h Examining data/wine-5.0/include/ifmib.h Examining data/wine-5.0/include/imagehlp.h Examining data/wine-5.0/include/ime.h Examining data/wine-5.0/include/imm.h Examining data/wine-5.0/include/in6addr.h Examining data/wine-5.0/include/inaddr.h Examining data/wine-5.0/include/initguid.h Examining data/wine-5.0/include/interactioncontext.h Examining data/wine-5.0/include/intshcut.h Examining data/wine-5.0/include/ip2string.h Examining data/wine-5.0/include/ipexport.h Examining data/wine-5.0/include/iphlpapi.h Examining data/wine-5.0/include/ipifcons.h Examining data/wine-5.0/include/ipmib.h Examining data/wine-5.0/include/iprtrmib.h Examining data/wine-5.0/include/iptypes.h Examining data/wine-5.0/include/isguids.h Examining data/wine-5.0/include/knownfolders.h Examining data/wine-5.0/include/ks.h Examining data/wine-5.0/include/ksguid.h Examining data/wine-5.0/include/ksmedia.h Examining data/wine-5.0/include/ksuuids.h Examining data/wine-5.0/include/libloaderapi.h Examining data/wine-5.0/include/lm.h Examining data/wine-5.0/include/lmaccess.h Examining data/wine-5.0/include/lmapibuf.h Examining data/wine-5.0/include/lmat.h Examining data/wine-5.0/include/lmbrowsr.h Examining data/wine-5.0/include/lmcons.h Examining data/wine-5.0/include/lmerr.h Examining data/wine-5.0/include/lmjoin.h Examining data/wine-5.0/include/lmmsg.h Examining data/wine-5.0/include/lmserver.h Examining data/wine-5.0/include/lmshare.h Examining data/wine-5.0/include/lmstats.h Examining data/wine-5.0/include/lmuse.h Examining data/wine-5.0/include/lmuseflg.h Examining data/wine-5.0/include/lmwksta.h Examining data/wine-5.0/include/loadperf.h Examining data/wine-5.0/include/lowlevelmonitorconfigurationapi.h Examining data/wine-5.0/include/lzexpand.h Examining data/wine-5.0/include/mapi.h Examining data/wine-5.0/include/mapicode.h Examining data/wine-5.0/include/mapidefs.h Examining data/wine-5.0/include/mapiform.h Examining data/wine-5.0/include/mapiguid.h Examining data/wine-5.0/include/mapitags.h Examining data/wine-5.0/include/mapiutil.h Examining data/wine-5.0/include/mapival.h Examining data/wine-5.0/include/mapix.h Examining data/wine-5.0/include/mciavi.h Examining data/wine-5.0/include/mcx.h Examining data/wine-5.0/include/mediaerr.h Examining data/wine-5.0/include/mfapi.h Examining data/wine-5.0/include/mferror.h Examining data/wine-5.0/include/midles.h Examining data/wine-5.0/include/minmax.h Examining data/wine-5.0/include/mmddk.h Examining data/wine-5.0/include/mmreg.h Examining data/wine-5.0/include/mmsystem.h Examining data/wine-5.0/include/mprapi.h Examining data/wine-5.0/include/mprerror.h Examining data/wine-5.0/include/msacm.h Examining data/wine-5.0/include/msacmdlg.h Examining data/wine-5.0/include/msacmdrv.h Examining data/wine-5.0/include/msasn1.h Examining data/wine-5.0/include/mscat.h Examining data/wine-5.0/include/msdaguid.h Examining data/wine-5.0/include/mshtmcid.h Examining data/wine-5.0/include/mshtmdid.h Examining data/wine-5.0/include/msi.h Examining data/wine-5.0/include/msidefs.h Examining data/wine-5.0/include/msiquery.h Examining data/wine-5.0/include/mssip.h Examining data/wine-5.0/include/msstkppg.h Examining data/wine-5.0/include/mstcpip.h Examining data/wine-5.0/include/msvcrt/assert.h Examining data/wine-5.0/include/msvcrt/conio.h Examining data/wine-5.0/include/msvcrt/corecrt.h Examining data/wine-5.0/include/msvcrt/crtdbg.h Examining data/wine-5.0/include/msvcrt/crtdefs.h Examining data/wine-5.0/include/msvcrt/ctype.h Examining data/wine-5.0/include/msvcrt/direct.h Examining data/wine-5.0/include/msvcrt/dirent.h Examining data/wine-5.0/include/msvcrt/dos.h Examining data/wine-5.0/include/msvcrt/eh.h Examining data/wine-5.0/include/msvcrt/errno.h Examining data/wine-5.0/include/msvcrt/fcntl.h Examining data/wine-5.0/include/msvcrt/float.h Examining data/wine-5.0/include/msvcrt/fpieee.h Examining data/wine-5.0/include/msvcrt/inttypes.h Examining data/wine-5.0/include/msvcrt/io.h Examining data/wine-5.0/include/msvcrt/limits.h Examining data/wine-5.0/include/msvcrt/locale.h Examining data/wine-5.0/include/msvcrt/malloc.h Examining data/wine-5.0/include/msvcrt/math.h Examining data/wine-5.0/include/msvcrt/mbctype.h Examining data/wine-5.0/include/msvcrt/mbstring.h Examining data/wine-5.0/include/msvcrt/memory.h Examining data/wine-5.0/include/msvcrt/process.h Examining data/wine-5.0/include/msvcrt/search.h Examining data/wine-5.0/include/msvcrt/setjmp.h Examining data/wine-5.0/include/msvcrt/share.h Examining data/wine-5.0/include/msvcrt/signal.h Examining data/wine-5.0/include/msvcrt/stddef.h Examining data/wine-5.0/include/msvcrt/stdint.h Examining data/wine-5.0/include/msvcrt/stdio.h Examining data/wine-5.0/include/msvcrt/stdlib.h Examining data/wine-5.0/include/msvcrt/string.h Examining data/wine-5.0/include/msvcrt/sys/locking.h Examining data/wine-5.0/include/msvcrt/sys/stat.h Examining data/wine-5.0/include/msvcrt/sys/timeb.h Examining data/wine-5.0/include/msvcrt/sys/types.h Examining data/wine-5.0/include/msvcrt/sys/unistd.h Examining data/wine-5.0/include/msvcrt/sys/utime.h Examining data/wine-5.0/include/msvcrt/time.h Examining data/wine-5.0/include/msvcrt/uchar.h Examining data/wine-5.0/include/msvcrt/unistd.h Examining data/wine-5.0/include/msvcrt/wchar.h Examining data/wine-5.0/include/msvcrt/wctype.h Examining data/wine-5.0/include/mswsock.h Examining data/wine-5.0/include/msxml2did.h Examining data/wine-5.0/include/msxml6did.h Examining data/wine-5.0/include/msxmldid.h Examining data/wine-5.0/include/mtxdm.h Examining data/wine-5.0/include/multimon.h Examining data/wine-5.0/include/nb30.h Examining data/wine-5.0/include/ncrypt.h Examining data/wine-5.0/include/ndrtypes.h Examining data/wine-5.0/include/netioapi.h Examining data/wine-5.0/include/newdev.h Examining data/wine-5.0/include/nldef.h Examining data/wine-5.0/include/npapi.h Examining data/wine-5.0/include/nserror.h Examining data/wine-5.0/include/nspapi.h Examining data/wine-5.0/include/ntddcdrm.h Examining data/wine-5.0/include/ntddmou.h Examining data/wine-5.0/include/ntddndis.h Examining data/wine-5.0/include/ntddscsi.h Examining data/wine-5.0/include/ntddstor.h Examining data/wine-5.0/include/ntddvdeo.h Examining data/wine-5.0/include/ntdef.h Examining data/wine-5.0/include/ntdsapi.h Examining data/wine-5.0/include/ntlsa.h Examining data/wine-5.0/include/ntquery.h Examining data/wine-5.0/include/ntsecapi.h Examining data/wine-5.0/include/ntsecpkg.h Examining data/wine-5.0/include/ntstatus.h Examining data/wine-5.0/include/objbase.h Examining data/wine-5.0/include/objsel.h Examining data/wine-5.0/include/odbcinst.h Examining data/wine-5.0/include/ole2.h Examining data/wine-5.0/include/ole2ver.h Examining data/wine-5.0/include/oleauto.h Examining data/wine-5.0/include/olectl.h Examining data/wine-5.0/include/oledberr.h Examining data/wine-5.0/include/oledlg.h Examining data/wine-5.0/include/patchapi.h Examining data/wine-5.0/include/pathcch.h Examining data/wine-5.0/include/pdh.h Examining data/wine-5.0/include/pdhmsg.h Examining data/wine-5.0/include/perflib.h Examining data/wine-5.0/include/physicalmonitorenumerationapi.h Examining data/wine-5.0/include/pktdef.h Examining data/wine-5.0/include/poppack.h Examining data/wine-5.0/include/powrprof.h Examining data/wine-5.0/include/prntvpt.h Examining data/wine-5.0/include/profinfo.h Examining data/wine-5.0/include/propkey.h Examining data/wine-5.0/include/propkeydef.h Examining data/wine-5.0/include/propvarutil.h Examining data/wine-5.0/include/prsht.h Examining data/wine-5.0/include/psapi.h Examining data/wine-5.0/include/pshpack1.h Examining data/wine-5.0/include/pshpack2.h Examining data/wine-5.0/include/pshpack4.h Examining data/wine-5.0/include/pshpack8.h Examining data/wine-5.0/include/qos2.h Examining data/wine-5.0/include/ras.h Examining data/wine-5.0/include/rasdlg.h Examining data/wine-5.0/include/raserror.h Examining data/wine-5.0/include/reason.h Examining data/wine-5.0/include/regstr.h Examining data/wine-5.0/include/restartmanager.h Examining data/wine-5.0/include/richedit.h Examining data/wine-5.0/include/rmxfguid.h Examining data/wine-5.0/include/roapi.h Examining data/wine-5.0/include/roerrorapi.h Examining data/wine-5.0/include/rpc.h Examining data/wine-5.0/include/rpcasync.h Examining data/wine-5.0/include/rpcdce.h Examining data/wine-5.0/include/rpcdcep.h Examining data/wine-5.0/include/rpcndr.h Examining data/wine-5.0/include/rpcnterr.h Examining data/wine-5.0/include/rpcproxy.h Examining data/wine-5.0/include/rpcsal.h Examining data/wine-5.0/include/rtutils.h Examining data/wine-5.0/include/sal.h Examining data/wine-5.0/include/scarderr.h Examining data/wine-5.0/include/schannel.h Examining data/wine-5.0/include/schemadef.h Examining data/wine-5.0/include/schnlsp.h Examining data/wine-5.0/include/sddl.h Examining data/wine-5.0/include/secext.h Examining data/wine-5.0/include/security.h Examining data/wine-5.0/include/sensapi.h Examining data/wine-5.0/include/setupapi.h Examining data/wine-5.0/include/sfc.h Examining data/wine-5.0/include/shdispid.h Examining data/wine-5.0/include/shellapi.h Examining data/wine-5.0/include/shellscalingapi.h Examining data/wine-5.0/include/shlguid.h Examining data/wine-5.0/include/shlobj.h Examining data/wine-5.0/include/shlwapi.h Examining data/wine-5.0/include/sipbase.h Examining data/wine-5.0/include/slerror.h Examining data/wine-5.0/include/slpublic.h Examining data/wine-5.0/include/snmp.h Examining data/wine-5.0/include/softpub.h Examining data/wine-5.0/include/sperror.h Examining data/wine-5.0/include/sql.h Examining data/wine-5.0/include/sqlext.h Examining data/wine-5.0/include/sqltypes.h Examining data/wine-5.0/include/sqlucode.h Examining data/wine-5.0/include/srrestoreptapi.h Examining data/wine-5.0/include/sspi.h Examining data/wine-5.0/include/stgprop.h Examining data/wine-5.0/include/sti.h Examining data/wine-5.0/include/storage.h Examining data/wine-5.0/include/strongname.h Examining data/wine-5.0/include/strsafe.h Examining data/wine-5.0/include/svrapi.h Examining data/wine-5.0/include/synchapi.h Examining data/wine-5.0/include/t2embapi.h Examining data/wine-5.0/include/tapi.h Examining data/wine-5.0/include/tchar.h Examining data/wine-5.0/include/tcpestats.h Examining data/wine-5.0/include/tcpmib.h Examining data/wine-5.0/include/textserv.h Examining data/wine-5.0/include/threadpoolapiset.h Examining data/wine-5.0/include/timezoneapi.h Examining data/wine-5.0/include/tlhelp32.h Examining data/wine-5.0/include/tmschema.h Examining data/wine-5.0/include/tpcshrd.h Examining data/wine-5.0/include/traffic.h Examining data/wine-5.0/include/twain.h Examining data/wine-5.0/include/udpmib.h Examining data/wine-5.0/include/uiautomation.h Examining data/wine-5.0/include/uiautomationcoreapi.h Examining data/wine-5.0/include/userenv.h Examining data/wine-5.0/include/usp10.h Examining data/wine-5.0/include/uuids.h Examining data/wine-5.0/include/uxtheme.h Examining data/wine-5.0/include/vdmdbg.h Examining data/wine-5.0/include/ver.h Examining data/wine-5.0/include/verrsrc.h Examining data/wine-5.0/include/vfw.h Examining data/wine-5.0/include/vfwmsgs.h Examining data/wine-5.0/include/virtdisk.h Examining data/wine-5.0/include/vsstyle.h Examining data/wine-5.0/include/vssym32.h Examining data/wine-5.0/include/wct.h Examining data/wine-5.0/include/webservices.h Examining data/wine-5.0/include/werapi.h Examining data/wine-5.0/include/wfext.h Examining data/wine-5.0/include/wia.h Examining data/wine-5.0/include/wiadef.h Examining data/wine-5.0/include/wimgapi.h Examining data/wine-5.0/include/winbase.h Examining data/wine-5.0/include/wincon.h Examining data/wine-5.0/include/wincred.h Examining data/wine-5.0/include/wincrypt.h Examining data/wine-5.0/include/windef.h Examining data/wine-5.0/include/windns.h Examining data/wine-5.0/include/windows.h Examining data/wine-5.0/include/windowsx.h Examining data/wine-5.0/include/wine/asm.h Examining data/wine-5.0/include/wine/debug.h Examining data/wine-5.0/include/wine/dplaysp.h Examining data/wine-5.0/include/wine/exception.h Examining data/wine-5.0/include/wine/gdi_driver.h Examining data/wine-5.0/include/wine/glu.h Examining data/wine-5.0/include/wine/heap.h Examining data/wine-5.0/include/wine/hid.h Examining data/wine-5.0/include/wine/http.h Examining data/wine-5.0/include/wine/library.h Examining data/wine-5.0/include/wine/list.h Examining data/wine-5.0/include/wine/mmsystem16.h Examining data/wine-5.0/include/wine/mscvpdb.h Examining data/wine-5.0/include/wine/port.h Examining data/wine-5.0/include/wine/rbtree.h Examining data/wine-5.0/include/wine/server.h Examining data/wine-5.0/include/wine/strmbase.h Examining data/wine-5.0/include/wine/test.h Examining data/wine-5.0/include/wine/unicode.h Examining data/wine-5.0/include/wine/vulkan.h Examining data/wine-5.0/include/wine/vulkan_driver.h Examining data/wine-5.0/include/wine/winaspi.h Examining data/wine-5.0/include/wine/winbase16.h Examining data/wine-5.0/include/wine/windef16.h Examining data/wine-5.0/include/wine/wined3d.h Examining data/wine-5.0/include/wine/wingdi16.h Examining data/wine-5.0/include/wine/winnet16.h Examining data/wine-5.0/include/wine/winuser16.h Examining data/wine-5.0/include/wine/wpp.h Examining data/wine-5.0/include/winerror.h Examining data/wine-5.0/include/winevt.h Examining data/wine-5.0/include/wingdi.h Examining data/wine-5.0/include/winhttp.h Examining data/wine-5.0/include/wininet.h Examining data/wine-5.0/include/winineti.h Examining data/wine-5.0/include/winioctl.h Examining data/wine-5.0/include/winldap.h Examining data/wine-5.0/include/winnetwk.h Examining data/wine-5.0/include/winnls.h Examining data/wine-5.0/include/winnls32.h Examining data/wine-5.0/include/winnt.h Examining data/wine-5.0/include/winperf.h Examining data/wine-5.0/include/winreg.h Examining data/wine-5.0/include/winresrc.h Examining data/wine-5.0/include/winsafer.h Examining data/wine-5.0/include/winscard.h Examining data/wine-5.0/include/winsmcrd.h Examining data/wine-5.0/include/winsnmp.h Examining data/wine-5.0/include/winsock.h Examining data/wine-5.0/include/winsock2.h Examining data/wine-5.0/include/winspool.h Examining data/wine-5.0/include/winstring.h Examining data/wine-5.0/include/winsvc.h Examining data/wine-5.0/include/wintab.h Examining data/wine-5.0/include/wintabx.h Examining data/wine-5.0/include/winternl.h Examining data/wine-5.0/include/wintrust.h Examining data/wine-5.0/include/winuser.h Examining data/wine-5.0/include/winver.h Examining data/wine-5.0/include/wlanapi.h Examining data/wine-5.0/include/wmistr.h Examining data/wine-5.0/include/wmium.h Examining data/wine-5.0/include/wmpids.h Examining data/wine-5.0/include/wmsdk.h Examining data/wine-5.0/include/wnaspi32.h Examining data/wine-5.0/include/wownt32.h Examining data/wine-5.0/include/ws2def.h Examining data/wine-5.0/include/ws2ipdef.h Examining data/wine-5.0/include/ws2spi.h Examining data/wine-5.0/include/ws2tcpip.h Examining data/wine-5.0/include/wsdapi.h Examining data/wine-5.0/include/wsdtypes.h Examining data/wine-5.0/include/wsdutil.h Examining data/wine-5.0/include/wsdxmldom.h Examining data/wine-5.0/include/wshisotp.h Examining data/wine-5.0/include/wsipx.h Examining data/wine-5.0/include/wsnwlink.h Examining data/wine-5.0/include/wtsapi32.h Examining data/wine-5.0/include/x3daudio.h Examining data/wine-5.0/include/xapofx.h Examining data/wine-5.0/include/xcmc.h Examining data/wine-5.0/include/xinput.h Examining data/wine-5.0/include/xmldom.h Examining data/wine-5.0/include/xmldomdid.h Examining data/wine-5.0/include/xmldsodid.h Examining data/wine-5.0/include/zmouse.h Examining data/wine-5.0/include/evntrace.h Examining data/wine-5.0/libs/port/c_037.c Examining data/wine-5.0/libs/port/c_10000.c Examining data/wine-5.0/libs/port/c_10001.c Examining data/wine-5.0/libs/port/c_10002.c Examining data/wine-5.0/libs/port/c_10003.c Examining data/wine-5.0/libs/port/c_10004.c Examining data/wine-5.0/libs/port/c_10005.c Examining data/wine-5.0/libs/port/c_10006.c Examining data/wine-5.0/libs/port/c_10007.c Examining data/wine-5.0/libs/port/c_10008.c Examining data/wine-5.0/libs/port/c_10010.c Examining data/wine-5.0/libs/port/c_10017.c Examining data/wine-5.0/libs/port/c_10021.c Examining data/wine-5.0/libs/port/c_10029.c Examining data/wine-5.0/libs/port/c_1006.c Examining data/wine-5.0/libs/port/c_10079.c Examining data/wine-5.0/libs/port/c_10081.c Examining data/wine-5.0/libs/port/c_10082.c Examining data/wine-5.0/libs/port/c_1026.c Examining data/wine-5.0/libs/port/c_1250.c Examining data/wine-5.0/libs/port/c_1251.c Examining data/wine-5.0/libs/port/c_1252.c Examining data/wine-5.0/libs/port/c_1253.c Examining data/wine-5.0/libs/port/c_1254.c Examining data/wine-5.0/libs/port/c_1255.c Examining data/wine-5.0/libs/port/c_1256.c Examining data/wine-5.0/libs/port/c_1257.c Examining data/wine-5.0/libs/port/c_1258.c Examining data/wine-5.0/libs/port/c_1361.c Examining data/wine-5.0/libs/port/c_20127.c Examining data/wine-5.0/libs/port/c_20866.c Examining data/wine-5.0/libs/port/c_20932.c Examining data/wine-5.0/libs/port/c_21866.c Examining data/wine-5.0/libs/port/c_28591.c Examining data/wine-5.0/libs/port/c_28592.c Examining data/wine-5.0/libs/port/c_28593.c Examining data/wine-5.0/libs/port/c_28594.c Examining data/wine-5.0/libs/port/c_28595.c Examining data/wine-5.0/libs/port/c_28596.c Examining data/wine-5.0/libs/port/c_28597.c Examining data/wine-5.0/libs/port/c_28598.c Examining data/wine-5.0/libs/port/c_28599.c Examining data/wine-5.0/libs/port/c_28600.c Examining data/wine-5.0/libs/port/c_28601.c Examining data/wine-5.0/libs/port/c_28603.c Examining data/wine-5.0/libs/port/c_28604.c Examining data/wine-5.0/libs/port/c_28605.c Examining data/wine-5.0/libs/port/c_28606.c Examining data/wine-5.0/libs/port/c_424.c Examining data/wine-5.0/libs/port/c_437.c Examining data/wine-5.0/libs/port/c_500.c Examining data/wine-5.0/libs/port/c_737.c Examining data/wine-5.0/libs/port/c_775.c Examining data/wine-5.0/libs/port/c_850.c Examining data/wine-5.0/libs/port/c_852.c Examining data/wine-5.0/libs/port/c_855.c Examining data/wine-5.0/libs/port/c_856.c Examining data/wine-5.0/libs/port/c_857.c Examining data/wine-5.0/libs/port/c_860.c Examining data/wine-5.0/libs/port/c_861.c Examining data/wine-5.0/libs/port/c_862.c Examining data/wine-5.0/libs/port/c_863.c Examining data/wine-5.0/libs/port/c_864.c Examining data/wine-5.0/libs/port/c_865.c Examining data/wine-5.0/libs/port/c_866.c Examining data/wine-5.0/libs/port/c_869.c Examining data/wine-5.0/libs/port/c_874.c Examining data/wine-5.0/libs/port/c_875.c Examining data/wine-5.0/libs/port/c_878.c Examining data/wine-5.0/libs/port/c_932.c Examining data/wine-5.0/libs/port/c_936.c Examining data/wine-5.0/libs/port/c_949.c Examining data/wine-5.0/libs/port/c_950.c Examining data/wine-5.0/libs/port/cpsymbol.c Examining data/wine-5.0/libs/port/ffs.c Examining data/wine-5.0/libs/port/fold.c Examining data/wine-5.0/libs/port/fstatvfs.c Examining data/wine-5.0/libs/port/getopt.c Examining data/wine-5.0/libs/port/interlocked.c Examining data/wine-5.0/libs/port/isfinite.c Examining data/wine-5.0/libs/port/isinf.c Examining data/wine-5.0/libs/port/isnan.c Examining data/wine-5.0/libs/port/lstat.c Examining data/wine-5.0/libs/port/mbtowc.c Examining data/wine-5.0/libs/port/mkstemps.c Examining data/wine-5.0/libs/port/normalize.c Examining data/wine-5.0/libs/port/poll.c Examining data/wine-5.0/libs/port/pread.c Examining data/wine-5.0/libs/port/pwrite.c Examining data/wine-5.0/libs/port/readlink.c Examining data/wine-5.0/libs/port/rint.c Examining data/wine-5.0/libs/port/sortkey.c Examining data/wine-5.0/libs/port/spawn.c Examining data/wine-5.0/libs/port/statvfs.c Examining data/wine-5.0/libs/port/string.c Examining data/wine-5.0/libs/port/strnlen.c Examining data/wine-5.0/libs/port/stubs.c Examining data/wine-5.0/libs/port/symlink.c Examining data/wine-5.0/libs/port/usleep.c Examining data/wine-5.0/libs/port/utf8.c Examining data/wine-5.0/libs/port/wctomb.c Examining data/wine-5.0/libs/port/cptable.c Examining data/wine-5.0/libs/wine/debug.c Examining data/wine-5.0/libs/wine/ldt.c Examining data/wine-5.0/libs/wine/loader.c Examining data/wine-5.0/libs/wine/mmap.c Examining data/wine-5.0/libs/wine/port.c Examining data/wine-5.0/libs/wine/config.c Examining data/wine-5.0/libs/wpp/preproc.c Examining data/wine-5.0/libs/wpp/wpp.c Examining data/wine-5.0/libs/wpp/wpp_private.h Examining data/wine-5.0/loader/main.c Examining data/wine-5.0/loader/main.h Examining data/wine-5.0/loader/preloader.c Examining data/wine-5.0/loader/preloader_mac.c Examining data/wine-5.0/programs/arp/main.c Examining data/wine-5.0/programs/aspnet_regiis/main.c Examining data/wine-5.0/programs/attrib/attrib.c Examining data/wine-5.0/programs/attrib/attrib.h Examining data/wine-5.0/programs/cabarc/cabarc.c Examining data/wine-5.0/programs/cacls/cacls_main.c Examining data/wine-5.0/programs/chcp.com/main.c Examining data/wine-5.0/programs/clock/clock_res.h Examining data/wine-5.0/programs/clock/main.c Examining data/wine-5.0/programs/clock/main.h Examining data/wine-5.0/programs/clock/winclock.c Examining data/wine-5.0/programs/clock/winclock.h Examining data/wine-5.0/programs/cmd/batch.c Examining data/wine-5.0/programs/cmd/builtins.c Examining data/wine-5.0/programs/cmd/directory.c Examining data/wine-5.0/programs/cmd/tests/batch.c Examining data/wine-5.0/programs/cmd/wcmd.h Examining data/wine-5.0/programs/cmd/wcmdmain.c Examining data/wine-5.0/programs/conhost/conhost.c Examining data/wine-5.0/programs/control/control.c Examining data/wine-5.0/programs/dism/dism.c Examining data/wine-5.0/programs/dpnsvr/main.c Examining data/wine-5.0/programs/dxdiag/dxdiag_private.h Examining data/wine-5.0/programs/dxdiag/information.c Examining data/wine-5.0/programs/dxdiag/main.c Examining data/wine-5.0/programs/dxdiag/output.c Examining data/wine-5.0/programs/eject/eject.c Examining data/wine-5.0/programs/expand/expand.c Examining data/wine-5.0/programs/explorer/appbar.c Examining data/wine-5.0/programs/explorer/desktop.c Examining data/wine-5.0/programs/explorer/explorer.c Examining data/wine-5.0/programs/explorer/explorer_private.h Examining data/wine-5.0/programs/explorer/resource.h Examining data/wine-5.0/programs/explorer/startmenu.c Examining data/wine-5.0/programs/explorer/systray.c Examining data/wine-5.0/programs/extrac32/extrac32.c Examining data/wine-5.0/programs/fc/fc.c Examining data/wine-5.0/programs/find/find.c Examining data/wine-5.0/programs/find/resources.h Examining data/wine-5.0/programs/find/tests/find.c Examining data/wine-5.0/programs/findstr/main.c Examining data/wine-5.0/programs/fsutil/main.c Examining data/wine-5.0/programs/hh/main.c Examining data/wine-5.0/programs/hostname/hostname.c Examining data/wine-5.0/programs/hostname/hostname.h Examining data/wine-5.0/programs/icacls/icacls_main.c Examining data/wine-5.0/programs/icinfo/icinfo.c Examining data/wine-5.0/programs/iexplore/main.c Examining data/wine-5.0/programs/ipconfig/ipconfig.c Examining data/wine-5.0/programs/ipconfig/ipconfig.h Examining data/wine-5.0/programs/lodctr/lodctr_main.c Examining data/wine-5.0/programs/mofcomp/mofcomp.c Examining data/wine-5.0/programs/mshta/main.c Examining data/wine-5.0/programs/msidb/main.c Examining data/wine-5.0/programs/msiexec/msiexec.c Examining data/wine-5.0/programs/msiexec/service.c Examining data/wine-5.0/programs/msinfo32/main.c Examining data/wine-5.0/programs/msinfo32/resource.h Examining data/wine-5.0/programs/net/net.c Examining data/wine-5.0/programs/net/resources.h Examining data/wine-5.0/programs/netsh/netsh.c Examining data/wine-5.0/programs/netstat/netstat.c Examining data/wine-5.0/programs/netstat/netstat.h Examining data/wine-5.0/programs/ngen/ngen_main.c Examining data/wine-5.0/programs/notepad/dialog.c Examining data/wine-5.0/programs/notepad/dialog.h Examining data/wine-5.0/programs/notepad/main.c Examining data/wine-5.0/programs/notepad/main.h Examining data/wine-5.0/programs/notepad/notepad_res.h Examining data/wine-5.0/programs/oleview/details.c Examining data/wine-5.0/programs/oleview/interface.c Examining data/wine-5.0/programs/oleview/main.h Examining data/wine-5.0/programs/oleview/oleview.c Examining data/wine-5.0/programs/oleview/pane.c Examining data/wine-5.0/programs/oleview/resource.h Examining data/wine-5.0/programs/oleview/tree.c Examining data/wine-5.0/programs/oleview/typelib.c Examining data/wine-5.0/programs/ping/ping_main.c Examining data/wine-5.0/programs/plugplay/main.c Examining data/wine-5.0/programs/powershell/main.c Examining data/wine-5.0/programs/presentationfontcache/main.c Examining data/wine-5.0/programs/progman/dialog.c Examining data/wine-5.0/programs/progman/group.c Examining data/wine-5.0/programs/progman/grpfile.c Examining data/wine-5.0/programs/progman/main.c Examining data/wine-5.0/programs/progman/progman.h Examining data/wine-5.0/programs/progman/program.c Examining data/wine-5.0/programs/progman/string.c Examining data/wine-5.0/programs/reg/export.c Examining data/wine-5.0/programs/reg/import.c Examining data/wine-5.0/programs/reg/reg.c Examining data/wine-5.0/programs/reg/reg.h Examining data/wine-5.0/programs/reg/resource.h Examining data/wine-5.0/programs/reg/tests/reg.c Examining data/wine-5.0/programs/regasm/main.c Examining data/wine-5.0/programs/regedit/about.c Examining data/wine-5.0/programs/regedit/childwnd.c Examining data/wine-5.0/programs/regedit/edit.c Examining data/wine-5.0/programs/regedit/framewnd.c Examining data/wine-5.0/programs/regedit/hexedit.c Examining data/wine-5.0/programs/regedit/listview.c Examining data/wine-5.0/programs/regedit/main.c Examining data/wine-5.0/programs/regedit/main.h Examining data/wine-5.0/programs/regedit/regedit.c Examining data/wine-5.0/programs/regedit/regproc.c Examining data/wine-5.0/programs/regedit/resource.h Examining data/wine-5.0/programs/regedit/tests/regedit.c Examining data/wine-5.0/programs/regedit/treeview.c Examining data/wine-5.0/programs/regini/main.c Examining data/wine-5.0/programs/regsvcs/main.c Examining data/wine-5.0/programs/regsvr32/regsvr32.c Examining data/wine-5.0/programs/regsvr32/regsvr32.h Examining data/wine-5.0/programs/rpcss/epmp.c Examining data/wine-5.0/programs/rpcss/irotp.c Examining data/wine-5.0/programs/rpcss/rpcss_main.c Examining data/wine-5.0/programs/rundll.exe16/rundll.c Examining data/wine-5.0/programs/rundll32/rundll32.c Examining data/wine-5.0/programs/sc/sc.c Examining data/wine-5.0/programs/schtasks/schtasks.c Examining data/wine-5.0/programs/schtasks/tests/schtasks.c Examining data/wine-5.0/programs/sdbinst/main.c Examining data/wine-5.0/programs/secedit/main.c Examining data/wine-5.0/programs/servicemodelreg/main.c Examining data/wine-5.0/programs/services/rpc.c Examining data/wine-5.0/programs/services/services.c Examining data/wine-5.0/programs/services/services.h Examining data/wine-5.0/programs/services/tests/service.c Examining data/wine-5.0/programs/services/utils.c Examining data/wine-5.0/programs/shutdown/main.c Examining data/wine-5.0/programs/spoolsv/main.c Examining data/wine-5.0/programs/start/resources.h Examining data/wine-5.0/programs/start/start.c Examining data/wine-5.0/programs/subst/main.c Examining data/wine-5.0/programs/svchost/svchost.c Examining data/wine-5.0/programs/systeminfo/main.c Examining data/wine-5.0/programs/taskkill/taskkill.c Examining data/wine-5.0/programs/taskkill/taskkill.h Examining data/wine-5.0/programs/tasklist/tasklist.c Examining data/wine-5.0/programs/taskmgr/about.c Examining data/wine-5.0/programs/taskmgr/affinity.c Examining data/wine-5.0/programs/taskmgr/applpage.c Examining data/wine-5.0/programs/taskmgr/column.c Examining data/wine-5.0/programs/taskmgr/column.h Examining data/wine-5.0/programs/taskmgr/dbgchnl.c Examining data/wine-5.0/programs/taskmgr/debug.c Examining data/wine-5.0/programs/taskmgr/endproc.c Examining data/wine-5.0/programs/taskmgr/graph.c Examining data/wine-5.0/programs/taskmgr/graphctl.c Examining data/wine-5.0/programs/taskmgr/graphctl.h Examining data/wine-5.0/programs/taskmgr/optnmenu.c Examining data/wine-5.0/programs/taskmgr/perfdata.c Examining data/wine-5.0/programs/taskmgr/perfdata.h Examining data/wine-5.0/programs/taskmgr/perfpage.c Examining data/wine-5.0/programs/taskmgr/priority.c Examining data/wine-5.0/programs/taskmgr/proclist.c Examining data/wine-5.0/programs/taskmgr/procpage.c Examining data/wine-5.0/programs/taskmgr/resource.h Examining data/wine-5.0/programs/taskmgr/run.c Examining data/wine-5.0/programs/taskmgr/taskmgr.c Examining data/wine-5.0/programs/taskmgr/taskmgr.h Examining data/wine-5.0/programs/taskmgr/trayicon.c Examining data/wine-5.0/programs/termsv/main.c Examining data/wine-5.0/programs/uninstaller/main.c Examining data/wine-5.0/programs/uninstaller/resource.h Examining data/wine-5.0/programs/unlodctr/unlodctr_main.c Examining data/wine-5.0/programs/view/resource.h Examining data/wine-5.0/programs/view/view.c Examining data/wine-5.0/programs/wevtutil/main.c Examining data/wine-5.0/programs/wineboot/resource.h Examining data/wine-5.0/programs/wineboot/shutdown.c Examining data/wine-5.0/programs/wineboot/wineboot.c Examining data/wine-5.0/programs/winebrowser/main.c Examining data/wine-5.0/programs/winecfg/about.c Examining data/wine-5.0/programs/winecfg/appdefaults.c Examining data/wine-5.0/programs/winecfg/audio.c Examining data/wine-5.0/programs/winecfg/drive.c Examining data/wine-5.0/programs/winecfg/drivedetect.c Examining data/wine-5.0/programs/winecfg/driveui.c Examining data/wine-5.0/programs/winecfg/libraries.c Examining data/wine-5.0/programs/winecfg/main.c Examining data/wine-5.0/programs/winecfg/resource.h Examining data/wine-5.0/programs/winecfg/theme.c Examining data/wine-5.0/programs/winecfg/winecfg.c Examining data/wine-5.0/programs/winecfg/winecfg.h Examining data/wine-5.0/programs/winecfg/x11drvdlg.c Examining data/wine-5.0/programs/wineconsole/curses.c Examining data/wine-5.0/programs/wineconsole/dialog.c Examining data/wine-5.0/programs/wineconsole/registry.c Examining data/wine-5.0/programs/wineconsole/user.c Examining data/wine-5.0/programs/wineconsole/winecon_private.h Examining data/wine-5.0/programs/wineconsole/winecon_user.h Examining data/wine-5.0/programs/wineconsole/wineconsole.c Examining data/wine-5.0/programs/wineconsole/wineconsole_res.h Examining data/wine-5.0/programs/winedbg/be_arm.c Examining data/wine-5.0/programs/winedbg/be_arm64.c Examining data/wine-5.0/programs/winedbg/be_cpu.h Examining data/wine-5.0/programs/winedbg/be_i386.c Examining data/wine-5.0/programs/winedbg/be_ppc.c Examining data/wine-5.0/programs/winedbg/be_x86_64.c Examining data/wine-5.0/programs/winedbg/break.c Examining data/wine-5.0/programs/winedbg/crashdlg.c Examining data/wine-5.0/programs/winedbg/db_disasm.c Examining data/wine-5.0/programs/winedbg/db_disasm64.c Examining data/wine-5.0/programs/winedbg/debugger.h Examining data/wine-5.0/programs/winedbg/display.c Examining data/wine-5.0/programs/winedbg/expr.c Examining data/wine-5.0/programs/winedbg/expr.h Examining data/wine-5.0/programs/winedbg/gdbproxy.c Examining data/wine-5.0/programs/winedbg/info.c Examining data/wine-5.0/programs/winedbg/intvar.h Examining data/wine-5.0/programs/winedbg/memory.c Examining data/wine-5.0/programs/winedbg/resource.h Examining data/wine-5.0/programs/winedbg/source.c Examining data/wine-5.0/programs/winedbg/stack.c Examining data/wine-5.0/programs/winedbg/symbol.c Examining data/wine-5.0/programs/winedbg/tgt_active.c Examining data/wine-5.0/programs/winedbg/tgt_minidump.c Examining data/wine-5.0/programs/winedbg/tgt_module.c Examining data/wine-5.0/programs/winedbg/types.c Examining data/wine-5.0/programs/winedbg/winedbg.c Examining data/wine-5.0/programs/winedevice/device.c Examining data/wine-5.0/programs/winefile/resource.h Examining data/wine-5.0/programs/winefile/winefile.c Examining data/wine-5.0/programs/winefile/winefile.h Examining data/wine-5.0/programs/winemenubuilder/winemenubuilder.c Examining data/wine-5.0/programs/winemine/dialog.c Examining data/wine-5.0/programs/winemine/main.c Examining data/wine-5.0/programs/winemine/main.h Examining data/wine-5.0/programs/winemine/resource.h Examining data/wine-5.0/programs/winemsibuilder/main.c Examining data/wine-5.0/programs/winepath/winepath.c Examining data/wine-5.0/programs/winetest/gui.c Examining data/wine-5.0/programs/winetest/main.c Examining data/wine-5.0/programs/winetest/resource.h Examining data/wine-5.0/programs/winetest/send.c Examining data/wine-5.0/programs/winetest/util.c Examining data/wine-5.0/programs/winetest/winetest.h Examining data/wine-5.0/programs/winevdm/winevdm.c Examining data/wine-5.0/programs/winhelp.exe16/winhelp.c Examining data/wine-5.0/programs/winhlp32/callback.c Examining data/wine-5.0/programs/winhlp32/hlpfile.c Examining data/wine-5.0/programs/winhlp32/macro.c Examining data/wine-5.0/programs/winhlp32/macro.h Examining data/wine-5.0/programs/winhlp32/string.c Examining data/wine-5.0/programs/winhlp32/winhelp.c Examining data/wine-5.0/programs/winhlp32/winhelp.h Examining data/wine-5.0/programs/winhlp32/winhelp_res.h Examining data/wine-5.0/programs/winhlp32/hlpfile.h Examining data/wine-5.0/programs/winmgmt/main.c Examining data/wine-5.0/programs/winoldap.mod16/winoldap.c Examining data/wine-5.0/programs/winver/winver.c Examining data/wine-5.0/programs/wmic/main.c Examining data/wine-5.0/programs/wmic/wmic.h Examining data/wine-5.0/programs/wmplayer/main.c Examining data/wine-5.0/programs/wordpad/olecallback.c Examining data/wine-5.0/programs/wordpad/print.c Examining data/wine-5.0/programs/wordpad/registry.c Examining data/wine-5.0/programs/wordpad/wordpad.c Examining data/wine-5.0/programs/wordpad/wordpad.h Examining data/wine-5.0/programs/write/resources.h Examining data/wine-5.0/programs/write/write.c Examining data/wine-5.0/programs/wscript/arguments.c Examining data/wine-5.0/programs/wscript/host.c Examining data/wine-5.0/programs/wscript/ihost_dispid.h Examining data/wine-5.0/programs/wscript/main.c Examining data/wine-5.0/programs/wscript/tests/run.c Examining data/wine-5.0/programs/wscript/wscript.h Examining data/wine-5.0/programs/wuauserv/main.c Examining data/wine-5.0/programs/wusa/main.c Examining data/wine-5.0/programs/wusa/manifest.c Examining data/wine-5.0/programs/wusa/wusa.h Examining data/wine-5.0/programs/xcopy/tests/xcopy.c Examining data/wine-5.0/programs/xcopy/xcopy.c Examining data/wine-5.0/programs/xcopy/xcopy.h Examining data/wine-5.0/server/async.c Examining data/wine-5.0/server/atom.c Examining data/wine-5.0/server/change.c Examining data/wine-5.0/server/class.c Examining data/wine-5.0/server/clipboard.c Examining data/wine-5.0/server/completion.c Examining data/wine-5.0/server/console.c Examining data/wine-5.0/server/debugger.c Examining data/wine-5.0/server/device.c Examining data/wine-5.0/server/directory.c Examining data/wine-5.0/server/event.c Examining data/wine-5.0/server/fd.c Examining data/wine-5.0/server/file.c Examining data/wine-5.0/server/file.h Examining data/wine-5.0/server/handle.c Examining data/wine-5.0/server/handle.h Examining data/wine-5.0/server/hook.c Examining data/wine-5.0/server/mach.c Examining data/wine-5.0/server/mailslot.c Examining data/wine-5.0/server/main.c Examining data/wine-5.0/server/mapping.c Examining data/wine-5.0/server/mutex.c Examining data/wine-5.0/server/named_pipe.c Examining data/wine-5.0/server/object.c Examining data/wine-5.0/server/object.h Examining data/wine-5.0/server/process.c Examining data/wine-5.0/server/process.h Examining data/wine-5.0/server/procfs.c Examining data/wine-5.0/server/ptrace.c Examining data/wine-5.0/server/queue.c Examining data/wine-5.0/server/region.c Examining data/wine-5.0/server/registry.c Examining data/wine-5.0/server/security.h Examining data/wine-5.0/server/semaphore.c Examining data/wine-5.0/server/serial.c Examining data/wine-5.0/server/signal.c Examining data/wine-5.0/server/snapshot.c Examining data/wine-5.0/server/sock.c Examining data/wine-5.0/server/symlink.c Examining data/wine-5.0/server/thread.c Examining data/wine-5.0/server/thread.h Examining data/wine-5.0/server/timer.c Examining data/wine-5.0/server/token.c Examining data/wine-5.0/server/unicode.c Examining data/wine-5.0/server/unicode.h Examining data/wine-5.0/server/user.c Examining data/wine-5.0/server/user.h Examining data/wine-5.0/server/window.c Examining data/wine-5.0/server/winstation.c Examining data/wine-5.0/server/request.h Examining data/wine-5.0/server/trace.c Examining data/wine-5.0/server/request.c Examining data/wine-5.0/tools/make_xftmpl.c Examining data/wine-5.0/tools/sfnt2fon/sfnt2fon.c Examining data/wine-5.0/tools/widl/client.c Examining data/wine-5.0/tools/widl/expr.c Examining data/wine-5.0/tools/widl/expr.h Examining data/wine-5.0/tools/widl/hash.c Examining data/wine-5.0/tools/widl/hash.h Examining data/wine-5.0/tools/widl/header.c Examining data/wine-5.0/tools/widl/header.h Examining data/wine-5.0/tools/widl/parser.h Examining data/wine-5.0/tools/widl/proxy.c Examining data/wine-5.0/tools/widl/register.c Examining data/wine-5.0/tools/widl/server.c Examining data/wine-5.0/tools/widl/typegen.c Examining data/wine-5.0/tools/widl/typegen.h Examining data/wine-5.0/tools/widl/typelib.c Examining data/wine-5.0/tools/widl/typelib.h Examining data/wine-5.0/tools/widl/typelib_struct.h Examining data/wine-5.0/tools/widl/typetree.c Examining data/wine-5.0/tools/widl/typetree.h Examining data/wine-5.0/tools/widl/utils.c Examining data/wine-5.0/tools/widl/utils.h Examining data/wine-5.0/tools/widl/widl.c Examining data/wine-5.0/tools/widl/widl.h Examining data/wine-5.0/tools/widl/widltypes.h Examining data/wine-5.0/tools/widl/write_msft.c Examining data/wine-5.0/tools/winebuild/build.h Examining data/wine-5.0/tools/winebuild/main.c Examining data/wine-5.0/tools/winebuild/parser.c Examining data/wine-5.0/tools/winebuild/relay.c Examining data/wine-5.0/tools/winebuild/res16.c Examining data/wine-5.0/tools/winebuild/res32.c Examining data/wine-5.0/tools/winebuild/spec16.c Examining data/wine-5.0/tools/winebuild/spec32.c Examining data/wine-5.0/tools/winebuild/utils.c Examining data/wine-5.0/tools/winebuild/import.c Examining data/wine-5.0/tools/winedump/debug.c Examining data/wine-5.0/tools/winedump/dos.c Examining data/wine-5.0/tools/winedump/dump.c Examining data/wine-5.0/tools/winedump/emf.c Examining data/wine-5.0/tools/winedump/font.c Examining data/wine-5.0/tools/winedump/le.c Examining data/wine-5.0/tools/winedump/lib.c Examining data/wine-5.0/tools/winedump/lnk.c Examining data/wine-5.0/tools/winedump/main.c Examining data/wine-5.0/tools/winedump/minidump.c Examining data/wine-5.0/tools/winedump/misc.c Examining data/wine-5.0/tools/winedump/msmangle.c Examining data/wine-5.0/tools/winedump/ne.c Examining data/wine-5.0/tools/winedump/output.c Examining data/wine-5.0/tools/winedump/pdb.c Examining data/wine-5.0/tools/winedump/pe.c Examining data/wine-5.0/tools/winedump/search.c Examining data/wine-5.0/tools/winedump/symbol.c Examining data/wine-5.0/tools/winedump/tlb.c Examining data/wine-5.0/tools/winedump/winedump.h Examining data/wine-5.0/tools/winedump/msc.c Examining data/wine-5.0/tools/winegcc/utils.c Examining data/wine-5.0/tools/winegcc/utils.h Examining data/wine-5.0/tools/winegcc/winegcc.c Examining data/wine-5.0/tools/wmc/lang.c Examining data/wine-5.0/tools/wmc/lang.h Examining data/wine-5.0/tools/wmc/mcl.c Examining data/wine-5.0/tools/wmc/po.c Examining data/wine-5.0/tools/wmc/utils.c Examining data/wine-5.0/tools/wmc/utils.h Examining data/wine-5.0/tools/wmc/wmc.c Examining data/wine-5.0/tools/wmc/wmc.h Examining data/wine-5.0/tools/wmc/wmctypes.h Examining data/wine-5.0/tools/wmc/write.c Examining data/wine-5.0/tools/wmc/write.h Examining data/wine-5.0/tools/wrc/dumpres.c Examining data/wine-5.0/tools/wrc/dumpres.h Examining data/wine-5.0/tools/wrc/genres.c Examining data/wine-5.0/tools/wrc/genres.h Examining data/wine-5.0/tools/wrc/newstruc.c Examining data/wine-5.0/tools/wrc/newstruc.h Examining data/wine-5.0/tools/wrc/parser.h Examining data/wine-5.0/tools/wrc/po.c Examining data/wine-5.0/tools/wrc/readres.c Examining data/wine-5.0/tools/wrc/readres.h Examining data/wine-5.0/tools/wrc/translation.c Examining data/wine-5.0/tools/wrc/utils.c Examining data/wine-5.0/tools/wrc/utils.h Examining data/wine-5.0/tools/wrc/wrc.c Examining data/wine-5.0/tools/wrc/wrc.h Examining data/wine-5.0/tools/wrc/wrctypes.h Examining data/wine-5.0/tools/wrc/writeres.c Examining data/wine-5.0/tools/makedep.c FINAL RESULTS: data/wine-5.0/dlls/advapi32/tests/security.c:1273:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). ret = SetSecurityDescriptorDacl(SecurityDescriptor, FALSE, NULL, FALSE); data/wine-5.0/dlls/advapi32/tests/security.c:1273:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). ret = SetSecurityDescriptorDacl(SecurityDescriptor, FALSE, NULL, FALSE); data/wine-5.0/dlls/advapi32/tests/security.c:1402:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). ret = SetSecurityDescriptorDacl(SecurityDescriptor, TRUE, NULL, FALSE); data/wine-5.0/dlls/advapi32/tests/security.c:1402:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). ret = SetSecurityDescriptorDacl(SecurityDescriptor, TRUE, NULL, FALSE); data/wine-5.0/dlls/advapi32/tests/security.c:4426:5: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). SetSecurityDescriptorDacl(&desc, TRUE, NULL, FALSE); data/wine-5.0/dlls/advapi32/tests/security.c:4426:5: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). SetSecurityDescriptorDacl(&desc, TRUE, NULL, FALSE); data/wine-5.0/dlls/iphlpapi/ipstats.c:1991:28: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. if ((len = readlink( link, name, sizeof(name) - 1 )) > 0) name[len] = 0; data/wine-5.0/dlls/kernel32/path.c:583:13: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod( dest_unix.Buffer, fstat.st_mode ); data/wine-5.0/dlls/kernel32/tests/sync.c:490:5: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). SetSecurityDescriptorDacl(&sd, TRUE, NULL, FALSE); data/wine-5.0/dlls/kernel32/tests/sync.c:490:5: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). SetSecurityDescriptorDacl(&sd, TRUE, NULL, FALSE); data/wine-5.0/dlls/mountmgr.sys/device.c:163:15: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. ret = readlink( path, buffer, size ); data/wine-5.0/dlls/shlwapi/thread.c:80:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). if (SetSecurityDescriptorDacl(lpSec, TRUE, NULL, FALSE)) data/wine-5.0/dlls/shlwapi/thread.c:80:11: [5] (misc) SetSecurityDescriptorDacl: Never create NULL ACLs; an attacker can set it to Everyone (Deny All Access), which would even forbid administrator access (CWE-732). if (SetSecurityDescriptorDacl(lpSec, TRUE, NULL, FALSE)) data/wine-5.0/dlls/winebus.sys/bus_sdl.c:953:5: [5] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). Risk is high, it appears that the size is given as bytes, but the function requires size as characters. MultiByteToWideChar(CP_ACP, 0, guid_str, -1, serial, sizeof(guid_str)); data/wine-5.0/include/msvcrt/io.h:150:19: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. static inline int chmod(const char* path, int mode) { return _chmod(path, mode); } data/wine-5.0/include/msvcrt/stdio.h:175:16: [5] (buffer) gets: Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead. char* __cdecl gets(char*); data/wine-5.0/include/tchar.h:77:9: [5] (buffer) _getts: Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead. #define _getts WINE_tchar_routine(gets, gets, getws) data/wine-5.0/include/tchar.h:77:42: [5] (buffer) gets: Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead. #define _getts WINE_tchar_routine(gets, gets, getws) data/wine-5.0/include/tchar.h:77:59: [5] (buffer) gets: Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead. #define _getts WINE_tchar_routine(gets, gets, getws) data/wine-5.0/include/tchar.h:108:42: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. #define _tchmod WINE_tchar_routine(chmod, _chmod, _wchmod) data/wine-5.0/include/wine/port.h:321:5: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int readlink( const char *path, char *buf, size_t size ); data/wine-5.0/libs/port/readlink.c:27:5: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int readlink( const char *path, char *buf, size_t size ) data/wine-5.0/programs/winecfg/theme.c:771:32: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int cLen = readlink(pszUnixPath, asfiInfo[i].szLinkTarget, FILENAME_MAX-1); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3010:17: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(location, 0755); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3172:17: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(location, 0755); data/wine-5.0/server/change.c:1020:13: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. r = readlink( link, buffer, n ); data/wine-5.0/server/request.c:987:5: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod( server_socket_name, 0600 ); /* make sure no other user can connect */ data/wine-5.0/tools/winegcc/utils.c:208:5: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(name, mode); data/wine-5.0/dlls/advapi32/cred.c:655:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(key_name, prefix); data/wine-5.0/dlls/advapi32/crypt.c:53:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/advapi32/crypt.c:85:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(keyname, KEYSTR); data/wine-5.0/dlls/advapi32/crypt.c:86:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(keyname + strlenW(KEYSTR), pProvName); data/wine-5.0/dlls/advapi32/crypt.c:114:10: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). user ? strcpyW(keyname, USERSTR) : strcpyW(keyname, MACHINESTR); data/wine-5.0/dlls/advapi32/crypt.c:114:38: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). user ? strcpyW(keyname, USERSTR) : strcpyW(keyname, MACHINESTR); data/wine-5.0/dlls/advapi32/crypt.c:453:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(provname, pszProvider); data/wine-5.0/dlls/advapi32/lsa.c:156:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ACCESS_MASK access, data/wine-5.0/dlls/advapi32/lsa.c:160:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, domain); data/wine-5.0/dlls/advapi32/lsa.c:676:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ACCESS_MASK access, data/wine-5.0/dlls/advapi32/lsa.c:679:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("(%p,%p,0x%08x,%p) stub\n", policy, name, access, handle); data/wine-5.0/dlls/advapi32/registry.c:95:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD options, REGSAM access, SECURITY_ATTRIBUTES *sa, data/wine-5.0/dlls/advapi32/registry.c:99:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. debugstr_w(class), options, access, sa, retkey, dispos, transaction, reserved2 ); data/wine-5.0/dlls/advapi32/registry.c:108:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD options, REGSAM access, SECURITY_ATTRIBUTES *sa, data/wine-5.0/dlls/advapi32/registry.c:112:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. debugstr_a(class), options, access, sa, retkey, dispos, transaction, reserved2 ); data/wine-5.0/dlls/advapi32/security.c:394:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline DWORD get_security_file( LPCWSTR full_file_name, DWORD access, HANDLE *file ) data/wine-5.0/dlls/advapi32/security.c:408:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateFile( file, access|SYNCHRONIZE, &attr, &io, NULL, FILE_FLAG_BACKUP_SEMANTICS, data/wine-5.0/dlls/advapi32/security.c:416:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline DWORD get_security_service( LPWSTR full_service_name, DWORD access, HANDLE *service ) data/wine-5.0/dlls/advapi32/security.c:421:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. err = SERV_OpenSCManagerW( NULL, NULL, access, (SC_HANDLE *)&manager ); data/wine-5.0/dlls/advapi32/security.c:424:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. err = SERV_OpenServiceW( manager, full_service_name, access, (SC_HANDLE *)service ); data/wine-5.0/dlls/advapi32/security.c:431:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline DWORD get_security_regkey( LPWSTR full_key_name, DWORD access, HANDLE *key ) data/wine-5.0/dlls/advapi32/security.c:452:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW( hParent, p+1, 0, access, (HKEY *)key ); data/wine-5.0/dlls/advapi32/security.c:984:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpName, WellKnownPrivNames[lpLuid->LowPart]); data/wine-5.0/dlls/advapi32/security.c:1032:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. IN LPCSTR system, data/wine-5.0/dlls/advapi32/security.c:1048:24: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. systemW = SERV_dup(system); data/wine-5.0/dlls/advapi32/security.c:1114:13: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. IN LPCWSTR system, data/wine-5.0/dlls/advapi32/security.c:1130:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. debugstr_w(system),debugstr_sid(sid), data/wine-5.0/dlls/advapi32/security.c:1135:33: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!ADVAPI_IsLocalComputer(system)) { data/wine-5.0/dlls/advapi32/security.c:1240:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(account, ac); data/wine-5.0/dlls/advapi32/security.c:1244:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(domain, dm); data/wine-5.0/dlls/advapi32/security.c:1357:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. IN LPCSTR system, data/wine-5.0/dlls/advapi32/security.c:1370:50: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. RtlCreateUnicodeStringFromAsciiz(&lpSystemW, system); data/wine-5.0/dlls/advapi32/security.c:1441:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ReferencedDomainName, domainName); data/wine-5.0/dlls/advapi32/security.c:1487:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ReferencedDomainName, domainName); data/wine-5.0/dlls/advapi32/security.c:1599:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ReferencedDomainName, ACCOUNT_SIDS[i].domain ); data/wine-5.0/dlls/advapi32/security.c:2659:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WRITE_OWNER; data/wine-5.0/dlls/advapi32/security.c:2661:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WRITE_DAC; data/wine-5.0/dlls/advapi32/security.c:2663:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/dlls/advapi32/security.c:2668:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_service( pObjectName, access, &handle ))) data/wine-5.0/dlls/advapi32/security.c:2675:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_regkey( pObjectName, access, &handle ))) data/wine-5.0/dlls/advapi32/security.c:2683:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= READ_CONTROL; data/wine-5.0/dlls/advapi32/security.c:2684:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_file( pObjectName, access, &handle ))) data/wine-5.0/dlls/advapi32/security.c:4116:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= READ_CONTROL; data/wine-5.0/dlls/advapi32/security.c:4118:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/dlls/advapi32/security.c:4123:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_service( name, access, &handle ))) data/wine-5.0/dlls/advapi32/security.c:4130:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_regkey( name, access, &handle ))) data/wine-5.0/dlls/advapi32/security.c:4137:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(err = get_security_file( name, access, &handle ))) data/wine-5.0/dlls/advapi32/service.c:750:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(info->name, servent[i].lpServiceName); data/wine-5.0/dlls/advapi32/tests/crypt.c:720:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). user ? strcpy(keyname, userstr) : strcpy(keyname, machinestr); data/wine-5.0/dlls/advapi32/tests/crypt.c:720:37: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). user ? strcpy(keyname, userstr) : strcpy(keyname, machinestr); data/wine-5.0/dlls/advapi32/tests/crypt.c:1138:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. START_TEST(crypt) data/wine-5.0/dlls/advapi32/tests/eventlog.c:1086:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(p, eventsources[i - 1]); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1089:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(p, eventlogname); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1106:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(eventlogfile, sysdir); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1107:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, "\\config\\"); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1108:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, eventlogname); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1109:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, ".evt"); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1114:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(eventlogfile, sysdir); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1115:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, "\\winevt\\Logs\\"); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1116:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, eventlogname); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1117:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(eventlogfile, ".evtx"); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1137:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(winesvc, eventlogsvc); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1138:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(winesvc, "\\"); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1139:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(winesvc, eventlogname); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1209:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char *)properties + properties->LogFileNameOffset, filepath); data/wine-5.0/dlls/advapi32/tests/eventlog.c:1249:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char *)properties + properties->LogFileNameOffset, filepath2); data/wine-5.0/dlls/advapi32/tests/registry.c:864:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sTestpath1); data/wine-5.0/dlls/advapi32/tests/registry.c:961:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPLICIT_ACCESSA access; data/wine-5.0/dlls/advapi32/tests/registry.c:1170:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessPermissions = GENERIC_ALL | STANDARD_RIGHTS_ALL; data/wine-5.0/dlls/advapi32/tests/registry.c:1171:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessMode = SET_ACCESS; data/wine-5.0/dlls/advapi32/tests/registry.c:1172:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfInheritance = SUB_CONTAINERS_AND_OBJECTS_INHERIT; data/wine-5.0/dlls/advapi32/tests/registry.c:1173:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.pMultipleTrustee = NULL; data/wine-5.0/dlls/advapi32/tests/registry.c:1174:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE; data/wine-5.0/dlls/advapi32/tests/registry.c:1175:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeForm = TRUSTEE_IS_SID; data/wine-5.0/dlls/advapi32/tests/registry.c:1176:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeType = TRUSTEE_IS_WELL_KNOWN_GROUP; data/wine-5.0/dlls/advapi32/tests/registry.c:1177:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.ptstrName = (char *)world_sid; data/wine-5.0/dlls/advapi32/tests/registry.c:1179:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = SetEntriesInAclA(1, &access, NULL, &key_acl); data/wine-5.0/dlls/advapi32/tests/registry.c:1240:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPLICIT_ACCESSA access; data/wine-5.0/dlls/advapi32/tests/registry.c:1338:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessPermissions = GENERIC_ALL | STANDARD_RIGHTS_ALL; data/wine-5.0/dlls/advapi32/tests/registry.c:1339:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessMode = SET_ACCESS; data/wine-5.0/dlls/advapi32/tests/registry.c:1340:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfInheritance = SUB_CONTAINERS_AND_OBJECTS_INHERIT; data/wine-5.0/dlls/advapi32/tests/registry.c:1341:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.pMultipleTrustee = NULL; data/wine-5.0/dlls/advapi32/tests/registry.c:1342:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE; data/wine-5.0/dlls/advapi32/tests/registry.c:1343:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeForm = TRUSTEE_IS_SID; data/wine-5.0/dlls/advapi32/tests/registry.c:1344:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeType = TRUSTEE_IS_WELL_KNOWN_GROUP; data/wine-5.0/dlls/advapi32/tests/registry.c:1345:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.ptstrName = (char *)world_sid; data/wine-5.0/dlls/advapi32/tests/registry.c:1347:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. dwRet = SetEntriesInAclA(1, &access, NULL, &key_acl); data/wine-5.0/dlls/advapi32/tests/registry.c:1577:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(netwName, "\\\\"); data/wine-5.0/dlls/advapi32/tests/registry.c:1578:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(netwName+2, compName, MAX_COMPUTERNAME_LENGTH + 1); data/wine-5.0/dlls/advapi32/tests/registry.c:1912:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expectbuffer, subkey_class); data/wine-5.0/dlls/advapi32/tests/registry.c:1935:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expectbuffer, subkey_class); data/wine-5.0/dlls/advapi32/tests/registry.c:1946:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expectbuffer, subkey_class); data/wine-5.0/dlls/advapi32/tests/registry.c:1957:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(expectbufferW, subkey_classW); data/wine-5.0/dlls/advapi32/tests/registry.c:1968:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(expectbufferW, subkey_classW); data/wine-5.0/dlls/advapi32/tests/registry.c:3838:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(with_env_var, &buf[1]); data/wine-5.0/dlls/advapi32/tests/security.c:808:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcat (strcpy (path, wintmpdir), "rary"); data/wine-5.0/dlls/advapi32/tests/security.c:814:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcat (strcpy (file, path), "\\ess"); data/wine-5.0/dlls/advapi32/tests/security.c:1628:11: [4] (access) ImpersonateLoggedOnUser: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateLoggedOnUser(Token); data/wine-5.0/dlls/advapi32/tests/security.c:2826:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static void test_granted_access(HANDLE handle, ACCESS_MASK access, data/wine-5.0/dlls/advapi32/tests/security.c:2842:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok_(__FILE__, line)(obj_info.GrantedAccess == access || data/wine-5.0/dlls/advapi32/tests/security.c:2844:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "or 0x%08x, instead of 0x%08x\n", access, alt, obj_info.GrantedAccess); data/wine-5.0/dlls/advapi32/tests/security.c:2846:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok_(__FILE__, line)(obj_info.GrantedAccess == access, "Granted access should " data/wine-5.0/dlls/advapi32/tests/security.c:2847:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "be 0x%08x, instead of 0x%08x\n", access, obj_info.GrantedAccess); data/wine-5.0/dlls/advapi32/tests/security.c:3013:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s tests/security.c test", myARGV[0]); data/wine-5.0/dlls/advapi32/tests/security.c:3635:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/advapi32/tests/security.c:3655:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3656:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3681:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3682:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3719:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3720:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3754:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3755:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:5417:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5445:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == MUTANT_ALL_ACCESS, "expected MUTANT_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5455:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5474:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5502:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == EVENT_ALL_ACCESS, "expected EVENT_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5512:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5531:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5559:84: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == SEMAPHORE_ALL_ACCESS, "expected SEMAPHORE_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5569:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5582:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5602:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/advapi32/tests/security.c:5623:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == creation_access[i].access, data/wine-5.0/dlls/advapi32/tests/security.c:5625:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. creation_access[i].open_mode, creation_access[i].access, access); data/wine-5.0/dlls/advapi32/tests/security.c:5625:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. creation_access[i].open_mode, creation_access[i].access, access); data/wine-5.0/dlls/advapi32/tests/security.c:5642:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == FILE_ALL_ACCESS, "expected FILE_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5652:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5667:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == FILE_ALL_ACCESS, "expected FILE_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5677:90: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5687:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access, bytes; data/wine-5.0/dlls/advapi32/tests/security.c:5713:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == FILE_ALL_ACCESS, "expected FILE_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5723:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5735:114: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == (FILE_READ_ATTRIBUTES | SYNCHRONIZE), "expected FILE_READ_ATTRIBUTES | SYNCHRONIZE, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5751:128: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == (FILE_GENERIC_WRITE | FILE_READ_ATTRIBUTES), "expected FILE_GENERIC_WRITE | FILE_READ_ATTRIBUTES, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5769:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == FILE_ALL_ACCESS, "expected FILE_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5779:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5791:114: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == (FILE_READ_ATTRIBUTES | SYNCHRONIZE), "expected FILE_READ_ATTRIBUTES | SYNCHRONIZE, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5800:128: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == (FILE_GENERIC_WRITE | FILE_READ_ATTRIBUTES), "expected FILE_GENERIC_WRITE | FILE_READ_ATTRIBUTES, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5809:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5880:96: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == prot_map[i].mapped, "%d: expected %#x, got %#x\n", i, prot_map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5899:133: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "expected STANDARD_RIGHTS_REQUIRED | SECTION_QUERY | SECTION_MAP_READ | SECTION_MAP_WRITE | SECTION_MAP_EXECUTE, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5911:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5932:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i, access, map[i].mapped); data/wine-5.0/dlls/advapi32/tests/security.c:5941:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:5960:119: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == THREAD_ALL_ACCESS_NT4 || access == THREAD_ALL_ACCESS_VISTA, "expected THREAD_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:5977:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5984:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5988:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:5991:90: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6005:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "expected THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:6014:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD ret, i, access; data/wine-5.0/dlls/advapi32/tests/security.c:6042:122: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == PROCESS_ALL_ACCESS_NT4 || access == PROCESS_ALL_ACCESS_VISTA, "expected PROCESS_ALL_ACCESS, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:6056:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6063:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6067:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6071:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6074:90: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(access == map[i].mapped, "%d: expected %#x, got %#x\n", i, map[i].mapped, access); data/wine-5.0/dlls/advapi32/tests/security.c:6088:91: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "expected PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION, got %#x\n", access); data/wine-5.0/dlls/advapi32/tests/security.c:7189:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s tests/security.c test_token_sd", myARGV[0]); data/wine-5.0/dlls/advapi32/tests/security.c:7292:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPLICIT_ACCESSW access; data/wine-5.0/dlls/advapi32/tests/security.c:7341:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE; data/wine-5.0/dlls/advapi32/tests/security.c:7342:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.pMultipleTrustee = NULL; data/wine-5.0/dlls/advapi32/tests/security.c:7344:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessPermissions = KEY_WRITE; data/wine-5.0/dlls/advapi32/tests/security.c:7345:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessMode = GRANT_ACCESS; data/wine-5.0/dlls/advapi32/tests/security.c:7346:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfInheritance = NO_INHERITANCE; data/wine-5.0/dlls/advapi32/tests/security.c:7347:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeType = TRUSTEE_IS_WELL_KNOWN_GROUP; data/wine-5.0/dlls/advapi32/tests/security.c:7348:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeForm = TRUSTEE_IS_SID; data/wine-5.0/dlls/advapi32/tests/security.c:7349:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.ptstrName = everyone_sid; data/wine-5.0/dlls/advapi32/tests/security.c:7350:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = pSetEntriesInAclW(1, &access, old_acl, &new_acl); data/wine-5.0/dlls/advapi32/tests/security.c:7368:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeType = TRUSTEE_IS_UNKNOWN; data/wine-5.0/dlls/advapi32/tests/security.c:7369:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = pSetEntriesInAclW(1, &access, old_acl, &new_acl); data/wine-5.0/dlls/advapi32/tests/security.c:7387:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeForm = TRUSTEE_IS_NAME; data/wine-5.0/dlls/advapi32/tests/security.c:7388:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.ptstrName = (LPWSTR)wszCurrentUser; data/wine-5.0/dlls/advapi32/tests/security.c:7389:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = pSetEntriesInAclW(1, &access, old_acl, &new_acl); data/wine-5.0/dlls/advapi32/tests/security.c:7406:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.grfAccessMode = REVOKE_ACCESS; data/wine-5.0/dlls/advapi32/tests/security.c:7407:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.TrusteeForm = TRUSTEE_IS_SID; data/wine-5.0/dlls/advapi32/tests/security.c:7408:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.Trustee.ptstrName = users_sid; data/wine-5.0/dlls/advapi32/tests/security.c:7409:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = pSetEntriesInAclW(1, &access, old_acl, &new_acl); data/wine-5.0/dlls/advapi32/tests/service.c:211:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(account, "%s\\%s", domain, username); data/wine-5.0/dlls/advapi32/tests/service.c:213:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(account, ".\\%s", username); data/wine-5.0/dlls/advapi32/tests/service.c:502:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( displaynameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:520:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( displaynameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:538:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( displaynameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:556:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( displaynameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:783:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( servicenameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:801:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( servicenameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:819:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( servicenameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:837:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( servicenameW, abcW ); data/wine-5.0/dlls/advapi32/tests/service.c:2532:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "\"%s\" service exit", selfname); data/wine-5.0/dlls/advapi32/tests/service.c:2572:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s service serve", selfname); data/wine-5.0/dlls/advapi32/wmi.c:110:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ULONG WINAPI WmiOpenBlock(GUID *guid, ULONG access, WMIHANDLE *handle) data/wine-5.0/dlls/advapi32/wmi.c:112:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("%s %u %p: stub\n", debugstr_guid(guid), access, handle); data/wine-5.0/dlls/advpack/advpack.c:169:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, pszWorkingDir, MAX_PATH); data/wine-5.0/dlls/advpack/advpack.c:496:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cmdline_copy, cmdlineW.Buffer); data/wine-5.0/dlls/advpack/files.c:138:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szIniPath, lpcszBackupDir); data/wine-5.0/dlls/advpack/files.c:142:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szIniPath, backslash); data/wine-5.0/dlls/advpack/files.c:143:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szIniPath, lpcszBaseName); data/wine-5.0/dlls/advpack/files.c:144:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szIniPath, ini); data/wine-5.0/dlls/advpack/files.c:275:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szRootPath, lpszSourceDir, ROOT_LENGTH); data/wine-5.0/dlls/advpack/files.c:283:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szDestFilename, lpszDestFile); data/wine-5.0/dlls/advpack/files.c:289:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szDestFilename, lpszSourceFile); data/wine-5.0/dlls/advpack/files.c:348:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fname + fname_len, asterisk); data/wine-5.0/dlls/advpack/files.c:359:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fname + fname_len, w32fd.cFileName); data/wine-5.0/dlls/advpack/files.c:444:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fname, pszFileOrDirName); data/wine-5.0/dlls/advpack/files.c:501:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cmdline_copy, cmdline); data/wine-5.0/dlls/advpack/files.c:566:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szConvertedList, first, dwLen - 1); data/wine-5.0/dlls/advpack/files.c:720:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, ExpandDir); data/wine-5.0/dlls/advpack/files.c:1078:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFile, lpszFilename, MAX_PATH); data/wine-5.0/dlls/advpack/install.c:412:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, backslash); data/wine-5.0/dlls/advpack/install.c:413:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, inf_filename); data/wine-5.0/dlls/advpack/install.c:424:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, inf_dir); data/wine-5.0/dlls/advpack/install.c:435:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(info->working_dir, ptr, len); data/wine-5.0/dlls/advpack/install.c:462:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->inf_filename, ptr); data/wine-5.0/dlls/advpack/install.c:480:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->install_sec, ptr); data/wine-5.0/dlls/advpack/install.c:491:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->inf_path, info->working_dir); data/wine-5.0/dlls/advpack/install.c:492:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(info->inf_path, backslash); data/wine-5.0/dlls/advpack/install.c:493:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(info->inf_path, info->inf_filename); data/wine-5.0/dlls/advpack/install.c:763:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cmdline_copy, cmdline); data/wine-5.0/dlls/advpack/install.c:860:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cmdline_copy, cmdline); data/wine-5.0/dlls/advpack/install.c:881:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cabinfo.szSrcPath, cabinfo.pszInf); data/wine-5.0/dlls/advpack/install.c:883:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cabinfo.szSrcPath, cabinfo.pszCab); data/wine-5.0/dlls/advpack/reg.c:183:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(mod_path, quote); data/wine-5.0/dlls/advpack/reg.c:192:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sys_mod_path + 1, escaped_SystemRoot); data/wine-5.0/dlls/advpack/reg.c:193:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sys_mod_path, mod_path + 1 + lstrlenW(sys_root)); data/wine-5.0/dlls/advpack/reg.c:198:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sys_mod_path, mod_path); data/wine-5.0/dlls/advpack/reg.c:244:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmp_value + 1, pstTable->pse[i].pszValue); data/wine-5.0/dlls/advpack/reg.c:245:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp_value, quote); data/wine-5.0/dlls/advpack/tests/advpack.c:62:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(PROG_FILES, PROG_FILES_ROOT + 3); /* skip C:\ */ data/wine-5.0/dlls/advpack/tests/advpack.c:63:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(APP_PATH, PROG_FILES_ROOT); data/wine-5.0/dlls/advpack/tests/advpack.c:64:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(APP_PATH, TEST_STRING1); data/wine-5.0/dlls/advpack/tests/advpack.c:154:19: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). hr = pDelNode(lstrcatA(currDir, "\\DelNodeTestFile1"), 0); data/wine-5.0/dlls/advpack/tests/advpack.c:160:19: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). hr = pDelNode(lstrcatA(currDir, "\\DelNodeTestDir"), 0); data/wine-5.0/dlls/advpack/tests/advpack.c:170:19: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). hr = pDelNode(lstrcatA(currDir, "\\DelNodeTestDir"), 0); data/wine-5.0/dlls/advpack/tests/advpack.c:188:19: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). hr = pDelNode(lstrcatA(currDir, "\\DelNodeTestDir"), 0); data/wine-5.0/dlls/advpack/tests/advpack.c:197:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(*str, data, valist); data/wine-5.0/dlls/advpack/tests/advpack.c:470:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(drive, PROG_FILES_ROOT); data/wine-5.0/dlls/advpack/tests/advpack.c:577:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szDispName, "displayname"); data/wine-5.0/dlls/advpack/tests/advpack.c:578:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szLocale, "locale"); data/wine-5.0/dlls/advpack/tests/advpack.c:579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szStub, "stub"); data/wine-5.0/dlls/advpack/tests/advpack.c:580:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szVersion, "1,1,1,1"); data/wine-5.0/dlls/advpack/tests/advpack.c:581:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szCompID, "compid"); data/wine-5.0/dlls/advpack/tests/advpack.c:602:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szGUID, "guid"); data/wine-5.0/dlls/advpack/tests/advpack.c:624:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szVersion, "2,1,1,1"); data/wine-5.0/dlls/advpack/tests/advpack.c:641:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(peruser.szVersion, "3,1,1,1"); data/wine-5.0/dlls/advpack/tests/advpack.c:673:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_file,"test.inf"); data/wine-5.0/dlls/advpack/tests/files.c:107:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:108:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\backup\\basename.INI"); data/wine-5.0/dlls/advpack/tests/files.c:117:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:118:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\backup\\.INI"); data/wine-5.0/dlls/advpack/tests/files.c:125:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:126:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\basename.INI"); data/wine-5.0/dlls/advpack/tests/files.c:133:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "c:\\basename.INI"); data/wine-5.0/dlls/advpack/tests/files.c:146:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:147:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\backup\\basename.INI"); data/wine-5.0/dlls/advpack/tests/files.c:165:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\basename.INI", windir); data/wine-5.0/dlls/advpack/tests/files.c:294:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszTempName, tempname); data/wine-5.0/dlls/advpack/tests/files.c:335:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:336:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/advpack/tests/files.c:337:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/advpack/tests/files.c:351:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCabPath, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:352:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pCabParams->szCabPath, "\\"); data/wine-5.0/dlls/advpack/tests/files.c:353:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCab, "extract.cab"); data/wine-5.0/dlls/advpack/tests/files.c:392:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destFolder, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:393:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(destFolder, "\\"); data/wine-5.0/dlls/advpack/tests/files.c:394:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(destFolder, "dest"); data/wine-5.0/dlls/advpack/tests/files.c:507:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destFolder, CURR_DIR); data/wine-5.0/dlls/advpack/tests/files.c:508:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(destFolder, "\\"); data/wine-5.0/dlls/advpack/tests/files.c:509:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(destFolder, "dest"); data/wine-5.0/dlls/advpack/tests/files.c:557:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/advpack/tests/install.c:127:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/advpack/tests/install.c:128:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\one\\test.inf"); data/wine-5.0/dlls/advpack/tests/install.c:129:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dir, CURR_DIR); data/wine-5.0/dlls/advpack/tests/install.c:130:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dir, "\\one"); data/wine-5.0/dlls/advpack/tests/install.c:209:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cmdline, CURR_DIR); data/wine-5.0/dlls/advpack/tests/install.c:210:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, "\\"); data/wine-5.0/dlls/advpack/tests/install.c:211:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, "one\\test.inf,DefaultInstall,,4"); data/wine-5.0/dlls/advpack/tests/install.c:238:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cmdline, CURR_DIR); data/wine-5.0/dlls/advpack/tests/install.c:239:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, "\\"); data/wine-5.0/dlls/advpack/tests/install.c:240:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, "test.inf,DefaultInstall,c:imacab.cab,4"); data/wine-5.0/dlls/advpack/tests/install.c:245:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cmdline, "\""); data/wine-5.0/dlls/advpack/tests/install.c:246:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, CURR_DIR); data/wine-5.0/dlls/advpack/tests/install.c:247:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cmdline, "\\test.inf\",\"DefaultInstall\",\"c:,imacab.cab\",\"4\""); data/wine-5.0/dlls/advpack/tests/install.c:257:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cmdline, "test.inf,DefaultInstall,c:imacab.cab,4"); data/wine-5.0/dlls/advpack/tests/install.c:283:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/amstream/audiostream.c:814:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, sink_id); data/wine-5.0/dlls/amstream/audiostream.c:833:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*id, sink_id); data/wine-5.0/dlls/amstream/ddrawstream.c:747:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, sink_id); data/wine-5.0/dlls/amstream/ddrawstream.c:766:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*id, sink_id); data/wine-5.0/dlls/amstream/filter.c:392:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, filter->name); data/wine-5.0/dlls/amstream/filter.c:412:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(filter->name, name, ARRAY_SIZE(filter->name)); data/wine-5.0/dlls/amstream/tests/amstream.c:1353:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(graph_filter_name, name); data/wine-5.0/dlls/appwiz.cpl/addons.c:211:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, dir ); data/wine-5.0/dlls/appwiz.cpl/addons.c:215:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path + len, subdir ); data/wine-5.0/dlls/appwiz.cpl/addons.c:216:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, L"\\" ); data/wine-5.0/dlls/appwiz.cpl/addons.c:217:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, file_name ); data/wine-5.0/dlls/appwiz.cpl/addons.c:304:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dir_buf, package_dir ); data/wine-5.0/dlls/appwiz.cpl/addons.c:305:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir_buf, dotdotW ); data/wine-5.0/dlls/appwiz.cpl/addons.c:346:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( cache_dir, home_dir ); data/wine-5.0/dlls/appwiz.cpl/addons.c:347:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( cache_dir, cacheW ); data/wine-5.0/dlls/appwiz.cpl/addons.c:365:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, cache_dir ); data/wine-5.0/dlls/appwiz.cpl/addons.c:366:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, wineW ); data/wine-5.0/dlls/appwiz.cpl/addons.c:377:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + len, addon->file_name ); data/wine-5.0/dlls/appwiz.cpl/appwiz.c:303:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->regkey, subKeyName); data/wine-5.0/dlls/appwiz.cpl/appwiz.c:458:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( FilterBufferW, MAX_PATH, filters, filter_installs, 0, 0, data/wine-5.0/dlls/appwiz.cpl/appwiz.c:611:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(key, PathUninstallW); data/wine-5.0/dlls/appwiz.cpl/appwiz.c:612:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(key, BackSlashW); data/wine-5.0/dlls/appwiz.cpl/appwiz.c:613:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(key, iter->regkey); data/wine-5.0/dlls/atl/atl30.c:376:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(wci->m_szAutoName, ARRAY_SIZE(wci->m_szAutoName), szFormat, PtrToUint(wci)); data/wine-5.0/dlls/atl100/tests/atl.c:775:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, html_fileW); data/wine-5.0/dlls/atl100/tests/atl.c:793:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file_uri1W, fileW); data/wine-5.0/dlls/atl100/tests/atl.c:794:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(file_uri1W, pathW); data/wine-5.0/dlls/atl100/tests/atl.c:1031:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, html_fileW); data/wine-5.0/dlls/atl100/tests/atl.c:1052:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file_uri1W, fileW); data/wine-5.0/dlls/atl100/tests/atl.c:1053:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(file_uri1W, pathW); data/wine-5.0/dlls/avicap32/avicap32_main.c:139:10: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(name, (char *)caps.card, namesize); data/wine-5.0/dlls/avifil32/api.c:1062:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lp[i].szClsid, clsidW); data/wine-5.0/dlls/avifil32/api.c:1070:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lp[i].szExtensions, szValue + 1); data/wine-5.0/dlls/avifil32/api.c:1072:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lp[i].szExtensions, szValue); data/wine-5.0/dlls/avifil32/api.c:1076:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lp[0].szExtensions, szValue + 1); data/wine-5.0/dlls/avifil32/api.c:1078:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lp[0].szExtensions, szValue); data/wine-5.0/dlls/avifil32/api.c:1093:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFilter, szValue, cbFilter); data/wine-5.0/dlls/avifil32/api.c:1111:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFilter, lp[n].szExtensions, cbFilter); data/wine-5.0/dlls/avifil32/api.c:1296:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFormat, icinfo.szDescription); data/wine-5.0/dlls/avifil32/api.c:1303:6: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFormat, icinfo.szDescription); data/wine-5.0/dlls/avifil32/api.c:2161:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(asia.szName, szName, ARRAY_SIZE(asia.szName)); data/wine-5.0/dlls/avifil32/api.c:2186:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(asiw.szName, szName, ARRAY_SIZE(asiw.szName)); data/wine-5.0/dlls/avifil32/avifile.c:559:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->szFileName, pszFileName); data/wine-5.0/dlls/avifil32/avifile.c:627:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszFileName, This->szFileName); data/wine-5.0/dlls/avifil32/tests/api.c:368:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:460:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:483:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:519:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/wavfile.c:498:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->szFileName, pszFileName); data/wine-5.0/dlls/avifil32/wavfile.c:577:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszFileName, This->szFileName); data/wine-5.0/dlls/avifile.dll16/main.c:186:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( asi.szName, asi16->szName ); data/wine-5.0/dlls/avifile.dll16/main.c:229:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( asi16->szName, asi.szName ); data/wine-5.0/dlls/browseui/progressdlg.c:120:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, string); data/wine-5.0/dlls/cabinet/cabinet_main.c:163:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pNode->FileName, szFilename); data/wine-5.0/dlls/cabinet/cabinet_main.c:201:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szFullPath, pDestination->Destination); data/wine-5.0/dlls/cabinet/cabinet_main.c:202:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szFullPath, "\\"); data/wine-5.0/dlls/cabinet/cabinet_main.c:203:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szFullPath, pfdin->psz1); data/wine-5.0/dlls/cabinet/cabinet_main.c:208:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szDirectory, szFullPath, dwSize); data/wine-5.0/dlls/cabinet/cabinet_main.c:221:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pDestination->CurrentFile, szFullPath); data/wine-5.0/dlls/cabinet/cabinet_main.c:362:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(str, szCabName); data/wine-5.0/dlls/cabinet/cabinet_main.c:374:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, end ); data/wine-5.0/dlls/cabinet/fci.c:284:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( file->name, filename ); data/wine-5.0/dlls/cabinet/fci.c:570:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( (char *)(cffile + 1), file->name, CB_MAX_FILENAME ); data/wine-5.0/dlls/cabinet/fci.c:697:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, fci->szPrevCab ); data/wine-5.0/dlls/cabinet/fci.c:699:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, fci->szPrevDisk ); data/wine-5.0/dlls/cabinet/fci.c:705:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, fci->pccab->szCab ); data/wine-5.0/dlls/cabinet/fci.c:707:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, fci->pccab->szDisk ); data/wine-5.0/dlls/cabinet/fci.c:713:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( filename, fci->ccab.szCabPath ); data/wine-5.0/dlls/cabinet/fci.c:714:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( filename, fci->ccab.szCab ); data/wine-5.0/dlls/cabinet/fdi.c:2025:15: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(userpath, pszCabPath); data/wine-5.0/dlls/cabinet/fdi.c:2052:15: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fullpath, userpath); data/wine-5.0/dlls/cabinet/fdi.c:2057:15: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(fullpath, cab->mii.nextname); data/wine-5.0/dlls/cabinet/fdi.c:2467:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fullpath, pszCabPath); data/wine-5.0/dlls/cabinet/fdi.c:2469:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(fullpath, pszCabinet); data/wine-5.0/dlls/cabinet/tests/extract.c:236:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszTempName, tempname); data/wine-5.0/dlls/cabinet/tests/extract.c:277:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/cabinet/tests/extract.c:278:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/cabinet/tests/extract.c:279:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/cabinet/tests/extract.c:293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCabPath, CURR_DIR); data/wine-5.0/dlls/cabinet/tests/extract.c:294:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pCabParams->szCabPath, "\\"); data/wine-5.0/dlls/cabinet/tests/extract.c:295:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCab, "extract.cab"); data/wine-5.0/dlls/cabinet/tests/extract.c:378:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, "dest"); data/wine-5.0/dlls/cabinet/tests/extract.c:409:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, "dest"); data/wine-5.0/dlls/cabinet/tests/extract.c:608:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, "dest"); data/wine-5.0/dlls/cabinet/tests/extract.c:641:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, "dest"); data/wine-5.0/dlls/cabinet/tests/extract.c:679:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(session.Destination, "dest"); data/wine-5.0/dlls/cabinet/tests/fdi.c:549:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszTempName, tempname); data/wine-5.0/dlls/cabinet/tests/fdi.c:593:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/cabinet/tests/fdi.c:594:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/cabinet/tests/fdi.c:595:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/cabinet/tests/fdi.c:609:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCabPath, CURR_DIR); data/wine-5.0/dlls/cabinet/tests/fdi.c:610:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pCabParams->szCabPath, "\\"); data/wine-5.0/dlls/cabinet/tests/fdi.c:611:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCab, "extract.cab"); data/wine-5.0/dlls/cabinet/tests/fdi.c:883:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/cabinet/tests/fdi.c:903:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/comctl32/combo.c:1335:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buf, lpBuffer, count ); data/wine-5.0/dlls/comctl32/comboex.c:226:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(neew->szText, wstr, CBEMAXSTRLEN); data/wine-5.0/dlls/comctl32/comboex.c:249:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ndbw.szText, wstr, CBEMAXSTRLEN); data/wine-5.0/dlls/comctl32/comboex.c:352:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(cit->pszText, item->pszText, cit->cchTextMax); data/wine-5.0/dlls/comctl32/comboex.c:498:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, str); data/wine-5.0/dlls/comctl32/comboex.c:641:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (item->pszText, cit->pszText); data/wine-5.0/dlls/comctl32/comboex.c:771:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(item->pszText, cit->pszText); data/wine-5.0/dlls/comctl32/comctl32undoc.c:748:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mp->extview.lpszSubKey, infoW->lpszSubKey); data/wine-5.0/dlls/comctl32/datetime.c:1575:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dst, buf); data/wine-5.0/dlls/comctl32/edit.c:2476:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(es->text + s, es->text + e); data/wine-5.0/dlls/comctl32/edit.c:2504:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(es->text + e, es->text + e + strl); data/wine-5.0/dlls/comctl32/edit.c:2524:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(es->text + s + strl - 1, es->text + s + strl); data/wine-5.0/dlls/comctl32/edit.c:2880:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(utext, es->undo_text); data/wine-5.0/dlls/comctl32/edit.c:3197:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dst, es->text, count); data/wine-5.0/dlls/comctl32/edit.c:4207:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, str); data/wine-5.0/dlls/comctl32/edit.c:4247:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buf, es->cue_banner_text, size); data/wine-5.0/dlls/comctl32/ipaddress.c:85:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ip, field); data/wine-5.0/dlls/comctl32/ipaddress.c:88:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ip, zero); data/wine-5.0/dlls/comctl32/ipaddress.c:90:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ip, dot); data/wine-5.0/dlls/comctl32/ipaddress.c:239:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logFont.lfFaceName, logSysFont.lfFaceName); data/wine-5.0/dlls/comctl32/listbox.c:865:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, str); data/wine-5.0/dlls/comctl32/listbox.c:1700:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_str, str); data/wine-5.0/dlls/comctl32/listbox.c:1890:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer + 1, entry.cAlternateFileName ); data/wine-5.0/dlls/comctl32/listbox.c:1892:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer + 1, entry.cFileName ); data/wine-5.0/dlls/comctl32/listbox.c:1893:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, bracketW); data/wine-5.0/dlls/comctl32/listbox.c:1905:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, entry.cAlternateFileName ); data/wine-5.0/dlls/comctl32/listbox.c:1907:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, entry.cFileName ); data/wine-5.0/dlls/comctl32/listview.c:474:14: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (isSrcW) lstrcpynW(dest, src, max); data/wine-5.0/dlls/comctl32/listview.c:478:7: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpynA((LPSTR)dest, (LPCSTR)src, max); data/wine-5.0/dlls/comctl32/listview.c:986:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)ret_text, (char*)pdi->item.pszText); data/wine-5.0/dlls/comctl32/listview.c:990:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret_text, pdi->item.pszText); data/wine-5.0/dlls/comctl32/listview.c:1019:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)pdi->item.pszText, (LPSTR)buffer); data/wine-5.0/dlls/comctl32/propsheet.c:181:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, str); data/wine-5.0/dlls/comctl32/propsheet.c:197:39: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define add_flag(a) if (dwFlags & a) {strcat(string, #a );strcat(string," ");} data/wine-5.0/dlls/comctl32/propsheet.c:2988:43: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). ppsp->u.pszTemplate = (LPWSTR)strcpy( template, lpPropSheetPage->u.pszTemplate ); data/wine-5.0/dlls/comctl32/rebar.c:317:6: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, band_stylename[i]); data/wine-5.0/dlls/comctl32/rebar.c:334:6: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, band_maskname[i]); data/wine-5.0/dlls/comctl32/status.c:491:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (buf, part->text); data/wine-5.0/dlls/comctl32/status.c:538:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (tip, buf, size); data/wine-5.0/dlls/comctl32/status.c:560:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tip, buf, size); data/wine-5.0/dlls/comctl32/status.c:740:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (ntext, text); data/wine-5.0/dlls/comctl32/status.c:932:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (infoPtr->parts[0].text, (LPCWSTR)lpCreate->lpszName); data/wine-5.0/dlls/comctl32/status.c:986:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (buf, infoPtr->parts[0].text); data/wine-5.0/dlls/comctl32/status.c:1070:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (part->text, (LPCWSTR)text); data/wine-5.0/dlls/comctl32/string.c:184:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (ptr, lpSrc); data/wine-5.0/dlls/comctl32/string.c:241:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (ptr, lpSrc); data/wine-5.0/dlls/comctl32/syslink.c:137:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(Item->Text, Text, textlen + 1); data/wine-5.0/dlls/comctl32/syslink.c:337:33: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(Last->u.Link.szID, lpID, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:349:33: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(Last->u.Link.szUrl, lpUrl, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:415:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(Last->u.Link.szID, lpID, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:427:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(Last->u.Link.szUrl, lpUrl, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:1022:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szId, Item->szID, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:1037:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szUrl, Item->szUrl, nc + 1); data/wine-5.0/dlls/comctl32/syslink.c:1116:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Item->szID, di->u.Link.szID); data/wine-5.0/dlls/comctl32/syslink.c:1128:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Item->szUrl, di->u.Link.szUrl); data/wine-5.0/dlls/comctl32/syslink.c:1188:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(HitTest->item.szID, Current->u.Link.szID); data/wine-5.0/dlls/comctl32/syslink.c:1196:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(HitTest->item.szUrl, Current->u.Link.szUrl); data/wine-5.0/dlls/comctl32/syslink.c:1258:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nml.item.szID, Link->u.Link.szID); data/wine-5.0/dlls/comctl32/syslink.c:1266:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nml.item.szUrl, Link->u.Link.szUrl); data/wine-5.0/dlls/comctl32/tests/button.c:1107:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1130:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1145:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1165:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1188:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1200:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer_w, deadbeef_w); data/wine-5.0/dlls/comctl32/tests/button.c:1943:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/comctl32/tests/datetime.c:747:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/comctl32/tests/edit.c:1679:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, facename); data/wine-5.0/dlls/comctl32/tests/edit.c:2971:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/comctl32/tests/edit.c:2992:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/comctl32/tests/edit.c:3006:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/comctl32/tests/edit.c:3032:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, str2W); data/wine-5.0/dlls/comctl32/tests/edit.c:3046:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/comctl32/tests/edit.c:3056:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/comctl32/tests/edit.c:3104:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, str); data/wine-5.0/dlls/comctl32/tests/edit.c:3127:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, str2); data/wine-5.0/dlls/comctl32/tests/edit.c:3276:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(getcuetestW, testcmp1W); data/wine-5.0/dlls/comctl32/tests/edit.c:3290:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(getcuetestW, testcmp1W); data/wine-5.0/dlls/comctl32/tests/edit.c:3322:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(getcuetestW, testcmp1W); data/wine-5.0/dlls/comctl32/tests/imagelist.c:886:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "bmp_%s.bmp", comment); data/wine-5.0/dlls/comctl32/tests/listbox.c:1088:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1094:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1108:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1150:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1168:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1207:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1241:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1252:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1269:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1317:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1345:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1389:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1409:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1432:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/comctl32/tests/listbox.c:1457:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1627:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1663:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1711:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1752:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1780:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1811:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/comctl32/tests/listbox.c:1876:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/comctl32/tests/listbox.c:1893:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempBuffer, itemBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1945:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/comctl32/tests/listbox.c:1962:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempBuffer, itemBuffer); data/wine-5.0/dlls/comctl32/tests/misc.c:113:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dest, desttest); data/wine-5.0/dlls/comctl32/tests/misc.c:133:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dest, desttest); data/wine-5.0/dlls/comctl32/tests/monthcal.c:1569:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(logfont.lfFaceName, "Arial"); data/wine-5.0/dlls/comctl32/tests/pager.c:274:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret, str); data/wine-5.0/dlls/comctl32/tests/rebar.c:484:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, lpszText); data/wine-5.0/dlls/comctl32/tests/status.c:420:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(charArray, "apple"); data/wine-5.0/dlls/comctl32/tests/tab.c:1488:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(logfont.lfFaceName, "Arial"); data/wine-5.0/dlls/comctl32/tests/tooltips.c:303:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ttnmdi->lpszText, testcallbackA); data/wine-5.0/dlls/comctl32/tests/tooltips.c:432:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bufA, testtipA); data/wine-5.0/dlls/comctl32/tests/tooltips.c:521:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bufA, testtip2A); data/wine-5.0/dlls/comctl32/tests/tooltips.c:765:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bufA, longtextA); data/wine-5.0/dlls/comctl32/tests/treeview.c:919:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szBuffer, "Testing123", nBufferSize); data/wine-5.0/dlls/comctl32/tests/treeview.c:929:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szBuffer, "Root", nBufferSize); data/wine-5.0/dlls/comctl32/tests/treeview.c:1289:21: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(disp->item.pszText, TEST_CALLBACK_TEXT, disp->item.cchTextMax); data/wine-5.0/dlls/comctl32/tests/treeview.c:1332:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(disp->item.pszText, g_endedit_overwrite_contents); data/wine-5.0/dlls/comctl32/tests/treeview.c:2728:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, tvitem.pszText); data/wine-5.0/dlls/comctl32/toolbar.c:2438:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(btnInfo->text, nmtb.pszText); data/wine-5.0/dlls/comctl32/toolbar.c:2442:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(btnInfo->text, data/wine-5.0/dlls/comctl32/toolbar.c:3439:24: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (lpStr) lstrcpyW (lpStr, lpText); data/wine-5.0/dlls/comctl32/tooltips.c:494:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (buffer, toolPtr->lpszText, INFOTIPSIZE); data/wine-5.0/dlls/comctl32/tooltips.c:965:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (ti->lpszText, toolPtr->lpszText); data/wine-5.0/dlls/comctl32/tooltips.c:1092:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (toolPtr->lpszText, ti->lpszText); data/wine-5.0/dlls/comctl32/tooltips.c:1169:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (toolPtr->lpszText, text); data/wine-5.0/dlls/comctl32/treeview.c:765:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(item->pszText, callback.item.pszText); data/wine-5.0/dlls/comctl32/treeview.c:1146:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(item->pszText, tvItem->pszText, len); data/wine-5.0/dlls/comctl32/treeview.c:2156:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tvItem->pszText, item->pszText, tvItem->cchTextMax); data/wine-5.0/dlls/comctl32/treeview.c:4054:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(editedItem->pszText, newText); data/wine-5.0/dlls/comdlg32/filedlg.c:314:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(nameW, ARRAY_SIZE(nameW), placeW, i); data/wine-5.0/dlls/comdlg32/filedlg.c:468:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(info->filename, ofn->lpstrFile, ofn->nMaxFile); data/wine-5.0/dlls/comdlg32/filedlg.c:643:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpstrPathAndFile, lpstrFile); data/wine-5.0/dlls/comdlg32/filedlg.c:649:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpstrPathAndFile+2, lpstrFile); data/wine-5.0/dlls/comdlg32/filedlg.c:651:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpstrPathAndFile, lpstrFile); data/wine-5.0/dlls/comdlg32/filedlg.c:656:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpstrPathAndFile, lpstrTemp); data/wine-5.0/dlls/comdlg32/filedlg.c:696:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*lpstrFileList, lpstrEdit); data/wine-5.0/dlls/comdlg32/filedlg.c:1012:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (result) lstrcpynW( result, buffer, size ); data/wine-5.0/dlls/comdlg32/filedlg.c:1050:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW((LPWSTR)lParam, lpstrPath, (int)wParam); data/wine-5.0/dlls/comdlg32/filedlg.c:1675:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->filename,nameBit); data/wine-5.0/dlls/comdlg32/filedlg.c:1683:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->initdir, tmpBuf); data/wine-5.0/dlls/comdlg32/filedlg.c:1705:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmpBuf, fodInfos->initdir); data/wine-5.0/dlls/comdlg32/filedlg.c:1711:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpBuf, szwStar); data/wine-5.0/dlls/comdlg32/filedlg.c:1718:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->initdir, tmpBuf2); data/wine-5.0/dlls/comdlg32/filedlg.c:1747:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->filename, nameBit); data/wine-5.0/dlls/comdlg32/filedlg.c:1753:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->initdir, tmpBuf); data/wine-5.0/dlls/comdlg32/filedlg.c:2182:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmp, lpstrTemp); data/wine-5.0/dlls/comdlg32/filedlg.c:2183:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp, nl); data/wine-5.0/dlls/comdlg32/filedlg.c:2184:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp, lpstrNotFound); data/wine-5.0/dlls/comdlg32/filedlg.c:2185:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp, nl); data/wine-5.0/dlls/comdlg32/filedlg.c:2186:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp, lpstrMsg); data/wine-5.0/dlls/comdlg32/filedlg.c:2209:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ofn->lpstrFile, lpstrPathSpec); data/wine-5.0/dlls/comdlg32/filedlg.c:2303:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stored_path, value_data + lstrlenW(value_data) + 1); data/wine-5.0/dlls/comdlg32/filedlg.c:2361:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(final, module_name); data/wine-5.0/dlls/comdlg32/filedlg.c:2472:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpwstrTemp, lpszTemp); data/wine-5.0/dlls/comdlg32/filedlg.c:2662:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( fodInfos->ShellInfos.lpstrCurrentFilter, lpszTemp); data/wine-5.0/dlls/comdlg32/filedlg.c:2737:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filterExt, lpstrFilter); data/wine-5.0/dlls/comdlg32/filedlg.c:2754:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filterExt, filterSearchIndex); data/wine-5.0/dlls/comdlg32/filedlg.c:2767:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filterExt, fodInfos->defext); data/wine-5.0/dlls/comdlg32/filedlg.c:2773:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpstrPathAndFile, szwDot); data/wine-5.0/dlls/comdlg32/filedlg.c:2775:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpstrPathAndFile, filterExt); data/wine-5.0/dlls/comdlg32/filedlg.c:2842:16: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ofn->lpstrFile, lpstrPathAndFile, ofn->nMaxFile); data/wine-5.0/dlls/comdlg32/filedlg.c:2894:8: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ofn->lpstrFileTitle, lpstrFileTitle, ofn->nMaxFileTitle); data/wine-5.0/dlls/comdlg32/filedlg.c:3092:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpstrExt,lpstrPos); data/wine-5.0/dlls/comdlg32/filedlg.c:3124:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpstrExt,lpstrPos); data/wine-5.0/dlls/comdlg32/filedlg.c:3173:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->ShellInfos.lpstrCurrentFilter,lpstrFilter); data/wine-5.0/dlls/comdlg32/filedlg.c:3214:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fodInfos->ShellInfos.lpstrCurrentFilter,lpstrFilter); data/wine-5.0/dlls/comdlg32/filedlg.c:3860:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, src->u.pOleStr, len); data/wine-5.0/dlls/comdlg32/filedlg.c:4372:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpTitle, &lpFile[i]); data/wine-5.0/dlls/comdlg32/filedlg31.c:111:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, cp+1); data/wine-5.0/dlls/comdlg32/filedlg31.c:115:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, cp+1); data/wine-5.0/dlls/comdlg32/filedlg31.c:188:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, FD31_GetFileType(ofn->lpstrCustomFilter, data/wine-5.0/dlls/comdlg32/filedlg31.c:213:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, FILE_star); data/wine-5.0/dlls/comdlg32/filedlg31.c:347:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpstr2+lenstr2, tmpstr, BUFFILE-lenstr2); data/wine-5.0/dlls/comdlg32/filedlg31.c:351:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ofnW->lpstrFile, tmpstr2, ofnW->nMaxFile); data/wine-5.0/dlls/comdlg32/filedlg31.c:424:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( tmpstr, pstr ); data/wine-5.0/dlls/comdlg32/filedlg31.c:430:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmpstr,tmpstr+1); data/wine-5.0/dlls/comdlg32/filedlg31.c:432:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpstr, FILE_bslash); data/wine-5.0/dlls/comdlg32/filedlg31.c:497:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpstr2, pBeginFileName + 1, BUFFILE); data/wine-5.0/dlls/comdlg32/filedlg31.c:502:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmpstr2, path); data/wine-5.0/dlls/comdlg32/filedlg31.c:518:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, FILE_bslash); data/wine-5.0/dlls/comdlg32/filedlg31.c:534:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpstr2, pBeginFileName + 1, ARRAY_SIZE(tmpstr2)); data/wine-5.0/dlls/comdlg32/filedlg31.c:540:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, tmpstr2); data/wine-5.0/dlls/comdlg32/filedlg31.c:565:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(filename, path, ARRAY_SIZE(filename)); data/wine-5.0/dlls/comdlg32/filedlg31.c:1025:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpstr, FD31_GetFileType(ofn->lpstrCustomFilter, data/wine-5.0/dlls/comdlg32/filedlg31.c:1042:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpstr, ofn->lpstrInitialDir, 511); data/wine-5.0/dlls/comdlg32/filedlgbrowser.c:84:37: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define add_flag(a) if (flags & a) {strcat(str, #a );strcat(str," ");} data/wine-5.0/dlls/comdlg32/filedlgbrowser.c:158:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, src->u.pOleStr, len); data/wine-5.0/dlls/comdlg32/finddlg.c:112:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pData->user_fr.fra->lpstrFindWhat, pData->fr.lpstrFindWhat); data/wine-5.0/dlls/comdlg32/finddlg.c:148:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pData->user_fr.fra->lpstrFindWhat, pData->fr.lpstrFindWhat); data/wine-5.0/dlls/comdlg32/finddlg.c:149:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pData->user_fr.fra->lpstrReplaceWith, pData->fr.lpstrReplaceWith); data/wine-5.0/dlls/comdlg32/fontdlg.c:425:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), fontsizefmtW, h); data/wine-5.0/dlls/comdlg32/fontdlg.c:1031:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpxx->lfFaceName, str, ARRAY_SIZE(lpxx->lfFaceName)); data/wine-5.0/dlls/comdlg32/itemdlg.c:370:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*str, This->set_filename); data/wine-5.0/dlls/comdlg32/itemdlg.c:451:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cur_point, file); data/wine-5.0/dlls/comdlg32/itemdlg.c:471:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, spec); data/wine-5.0/dlls/comdlg32/itemdlg.c:570:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extbuf, dotW); data/wine-5.0/dlls/comdlg32/itemdlg.c:571:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(extbuf, This->default_ext); data/wine-5.0/dlls/comdlg32/itemdlg.c:579:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(canon_filename, newext); data/wine-5.0/dlls/comdlg32/itemdlg.c:589:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(canon_filename, dotW); data/wine-5.0/dlls/comdlg32/itemdlg.c:590:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(canon_filename, This->default_ext); data/wine-5.0/dlls/comdlg32/itemdlg.c:803:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(label_copy, label); data/wine-5.0/dlls/comdlg32/itemdlg.c:2062:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lfw_marlett.lfFaceName, marlett); data/wine-5.0/dlls/comdlg32/itemdlg.c:2204:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, filename); data/wine-5.0/dlls/comdlg32/itemdlg.c:2209:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, ext); data/wine-5.0/dlls/comdlg32/printdlg.c:501:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pTempPtr, DeviceDriverName); data/wine-5.0/dlls/comdlg32/printdlg.c:505:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pTempPtr, DeviceName); data/wine-5.0/dlls/comdlg32/printdlg.c:509:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pTempPtr, OutputPort); data/wine-5.0/dlls/comdlg32/printdlg.c:548:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pTempPtr, DeviceDriverName); data/wine-5.0/dlls/comdlg32/printdlg.c:552:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pTempPtr, DeviceName); data/wine-5.0/dlls/comdlg32/printdlg.c:556:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pTempPtr, OutputPort); data/wine-5.0/dlls/comdlg32/printdlg.c:1016:6: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(StatusMsg,ResourceString); data/wine-5.0/dlls/comdlg32/printdlg.c:1024:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(StatusMsg,ResourceString); data/wine-5.0/dlls/comdlg32/printdlg.c:1053:6: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(StatusMsg,ResourceString); data/wine-5.0/dlls/comdlg32/printdlg.c:1061:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(StatusMsg,ResourceString); data/wine-5.0/dlls/comdlg32/printdlg.c:2256:10: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(flagstr, pflag->name); data/wine-5.0/dlls/comdlg32/printdlg.c:2407:10: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(flagstr, pflag->name); data/wine-5.0/dlls/comdlg32/printdlg.c:2645:11: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. DWORD system; data/wine-5.0/dlls/comdlg32/printdlg.c:2647:29: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. (LPWSTR)&system, sizeof(system)); data/wine-5.0/dlls/comdlg32/printdlg.c:2647:44: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. (LPWSTR)&system, sizeof(system)); data/wine-5.0/dlls/comdlg32/printdlg.c:2844:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, drv); data/wine-5.0/dlls/comdlg32/printdlg.c:2848:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, devname); data/wine-5.0/dlls/comdlg32/printdlg.c:2852:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, port); data/wine-5.0/dlls/comdlg32/printdlg.c:3788:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(flagstr, pflag->name); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:642:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( filename, tmpfilename); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:899:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(SYSDIR, szInitialDir); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:988:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename_buf, test_full_path); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:999:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename_buf, test_file_name); data/wine-5.0/dlls/commdlg.dll16/fontdlg.c:99:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lf32.lfFaceName, font16->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/commdlg.dll16/fontdlg.c:128:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( font16->lfFaceName, lf32.lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/compobj.dll16/compobj.c:674:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf,"%s\\CLSID",progid); data/wine-5.0/dlls/compobj.dll16/compobj.c:696:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( str, format, id->Data1, id->Data2, id->Data3, data/wine-5.0/dlls/compobj.dll16/compobj.c:743:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf_key, "CLSID\\%s\\InprocServer", idstr); data/wine-5.0/dlls/comsvcs/main.c:929:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(moniker->progid, progid); data/wine-5.0/dlls/credui/credui_main.c:393:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(message, ARRAY_SIZE(message), format, params->pszTargetName); data/wine-5.0/dlls/credui/credui_main.c:418:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(title, ARRAY_SIZE(title), format, params->pszTargetName); data/wine-5.0/dlls/credui/credui_main.c:581:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(username, credentials[i]->UserName); data/wine-5.0/dlls/credui/credui_main.c:780:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszUser, p + 1); data/wine-5.0/dlls/credui/credui_main.c:794:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszDomain, p + 1); data/wine-5.0/dlls/credui/credui_main.c:803:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszUser, pszUserName); data/wine-5.0/dlls/crypt32/base64.c:30:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/base64.c:354:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, sep); data/wine-5.0/dlls/crypt32/base64.c:398:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, sep); data/wine-5.0/dlls/crypt32/base64.c:452:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, header); data/wine-5.0/dlls/crypt32/base64.c:454:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, sep); data/wine-5.0/dlls/crypt32/base64.c:461:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, trailer); data/wine-5.0/dlls/crypt32/base64.c:463:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, sep); data/wine-5.0/dlls/crypt32/cert.c:39:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/cert.c:617:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(to->pwszContainerName, from->pwszContainerName); data/wine-5.0/dlls/crypt32/cert.c:625:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(to->pwszProvName, from->pwszProvName); data/wine-5.0/dlls/crypt32/cert.c:1046:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(keyProvInfo->pwszContainerName, containerW); data/wine-5.0/dlls/crypt32/cert.c:3028:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nextOID, usage->rgpszUsageIdentifier[i]); data/wine-5.0/dlls/crypt32/cert.c:3113:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nextOID, usage->rgpszUsageIdentifier[i]); data/wine-5.0/dlls/crypt32/cert.c:3117:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nextOID, pszUsageIdentifier); data/wine-5.0/dlls/crypt32/cert.c:3142:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(usage->rgpszUsageIdentifier[0], pszUsageIdentifier); data/wine-5.0/dlls/crypt32/cert.c:3297:33: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(validUsages.rgpszUsageIdentifier[j], data/wine-5.0/dlls/crypt32/cert.c:3380:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(nextOID, validUsages.rgpszUsageIdentifier[i]); data/wine-5.0/dlls/crypt32/chain.c:31:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/collectionstore.c:25:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/crl.c:30:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/ctl.c:29:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/decode.c:59:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DECLARE_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/decode.c:6314:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(0x%08x, %s, %p, %d, 0x%08x, %p, %p, %p)\n", data/wine-5.0/dlls/crypt32/decode.c:6342:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("OID %s not found or unimplemented, looking for DLL\n", data/wine-5.0/dlls/crypt32/decode.c:6381:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("returning %d\n", ret); data/wine-5.0/dlls/crypt32/decode.c:6389:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(%p)\n", pPFX); data/wine-5.0/dlls/crypt32/encode.c:53:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DECLARE_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/encode.c:4663:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(0x%08x, %s, %p, %p, %p)\n", dwCertEncodingType, data/wine-5.0/dlls/crypt32/encode.c:4676:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("OID %s not found or unimplemented, looking for DLL\n", data/wine-5.0/dlls/crypt32/encode.c:4692:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("returning %d\n", ret); data/wine-5.0/dlls/crypt32/encode.c:4704:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(0x%08x, %s, %p, 0x%08x, %p, %p, %p)\n", dwCertEncodingType, data/wine-5.0/dlls/crypt32/encode.c:4725:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("OID %s not found or unimplemented, looking for DLL\n", data/wine-5.0/dlls/crypt32/encode.c:4757:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("returning %d\n", ret); data/wine-5.0/dlls/crypt32/encode.c:4780:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(%08lx, %d, %08x, %s, %08x, %p, %p, %d)\n", hCryptProv, data/wine-5.0/dlls/crypt32/encode.c:4839:37: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pInfo->Algorithm.pszObjId, pszPublicKeyObjId); data/wine-5.0/dlls/crypt32/encode.c:4891:29: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pInfo->Algorithm.pszObjId, data/wine-5.0/dlls/crypt32/encode.c:4929:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(%08lx, %d, %08x, %s, %08x, %p, %p, %d)\n", hCryptProv, data/wine-5.0/dlls/crypt32/encode.c:4978:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(%08lx, %08x, %p, %08x, %08x, %p, %p)\n", hCryptProv, data/wine-5.0/dlls/crypt32/encode.c:5039:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. TRACE_(crypt)("(%08lx, %08x, %p, %08x, %08x, %p, %p)\n", hCryptProv, data/wine-5.0/dlls/crypt32/encode.c:5059:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. FIXME_(crypt)("(%d, %p, %08x, %p, %p): stub\n", dwCertEncodingType, pInfo, data/wine-5.0/dlls/crypt32/filestore.c:27:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/filestore.c:297:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, create; data/wine-5.0/dlls/crypt32/filestore.c:316:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= GENERIC_WRITE; data/wine-5.0/dlls/crypt32/filestore.c:323:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file = CreateFileW(fileName, access, FILE_SHARE_READ, NULL, create, data/wine-5.0/dlls/crypt32/filestore.c:351:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file = CreateFileW(fileName, access, FILE_SHARE_READ, NULL, data/wine-5.0/dlls/crypt32/main.c:33:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/message.c:26:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/msg.c:33:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/msg.c:762:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out->pszObjId, in->pszObjId); data/wine-5.0/dlls/crypt32/msg.c:1399:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(msg->innerOID, pszInnerContentObjID); data/wine-5.0/dlls/crypt32/msg.c:1518:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out->pszObjId, in->pszObjId); data/wine-5.0/dlls/crypt32/msg.c:2185:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(copy->pszObjId, id->pszObjId); data/wine-5.0/dlls/crypt32/msg.c:2621:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out->pszObjId, in->pszObjId); data/wine-5.0/dlls/crypt32/msg.c:2643:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out->rgAttr[i].pszObjId, in->rgAttr[i].pszObjId); data/wine-5.0/dlls/crypt32/object.c:33:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/object.c:934:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, commaSpace); data/wine-5.0/dlls/crypt32/object.c:938:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, map[i].str); data/wine-5.0/dlls/crypt32/object.c:998:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, infoNotAvailable); data/wine-5.0/dlls/crypt32/object.c:1143:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, subjectTypeHeader); data/wine-5.0/dlls/crypt32/object.c:1145:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, subjectType); data/wine-5.0/dlls/crypt32/object.c:1147:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1149:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, pathLengthHeader); data/wine-5.0/dlls/crypt32/object.c:1151:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, pathLength); data/wine-5.0/dlls/crypt32/object.c:1183:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, buf); data/wine-5.0/dlls/crypt32/object.c:1333:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:1337:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, buf); data/wine-5.0/dlls/crypt32/object.c:1344:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, entry->u.pwszURL); data/wine-5.0/dlls/crypt32/object.c:1349:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, colonCrlf); data/wine-5.0/dlls/crypt32/object.c:1361:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, ipAddrBuf); data/wine-5.0/dlls/crypt32/object.c:1363:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, crlf); data/wine-5.0/dlls/crypt32/object.c:1369:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:1373:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, mask); data/wine-5.0/dlls/crypt32/object.c:1375:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, maskBuf); data/wine-5.0/dlls/crypt32/object.c:1378:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, ipAddrBuf); data/wine-5.0/dlls/crypt32/object.c:1439:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1505:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, buf); data/wine-5.0/dlls/crypt32/object.c:1508:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1616:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1633:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1694:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pbFormat, infoNotAvailable); data/wine-5.0/dlls/crypt32/object.c:1791:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, accessDescrNum); data/wine-5.0/dlls/crypt32/object.c:1794:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, aia); data/wine-5.0/dlls/crypt32/object.c:1796:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, headingSep); data/wine-5.0/dlls/crypt32/object.c:1800:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:1803:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, accessMethod); data/wine-5.0/dlls/crypt32/object.c:1808:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, ocsp); data/wine-5.0/dlls/crypt32/object.c:1814:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, caIssuers); data/wine-5.0/dlls/crypt32/object.c:1819:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, unknown); data/wine-5.0/dlls/crypt32/object.c:1828:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, accessMethodSep); data/wine-5.0/dlls/crypt32/object.c:1832:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:1835:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, accessLocation); data/wine-5.0/dlls/crypt32/object.c:1837:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, locationSep); data/wine-5.0/dlls/crypt32/object.c:1851:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, accessMethodSep); data/wine-5.0/dlls/crypt32/object.c:1935:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, reason_map[i].reason); data/wine-5.0/dlls/crypt32/object.c:1939:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:1944:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, bits); data/wine-5.0/dlls/crypt32/object.c:2078:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pbFormat, infoNotAvailable); data/wine-5.0/dlls/crypt32/object.c:2102:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, distPointNum); data/wine-5.0/dlls/crypt32/object.c:2105:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, crlDistPoint); data/wine-5.0/dlls/crypt32/object.c:2107:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, headingSep); data/wine-5.0/dlls/crypt32/object.c:2111:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:2119:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, distPointName); data/wine-5.0/dlls/crypt32/object.c:2121:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, nameSep); data/wine-5.0/dlls/crypt32/object.c:2125:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:2127:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, indent); data/wine-5.0/dlls/crypt32/object.c:2133:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, fullName); data/wine-5.0/dlls/crypt32/object.c:2138:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, rdnName); data/wine-5.0/dlls/crypt32/object.c:2141:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, nameSep); data/wine-5.0/dlls/crypt32/object.c:2153:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, reason); data/wine-5.0/dlls/crypt32/object.c:2164:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, issuer); data/wine-5.0/dlls/crypt32/object.c:2166:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, nameSep); data/wine-5.0/dlls/crypt32/object.c:2256:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, info->pwszName); data/wine-5.0/dlls/crypt32/object.c:2261:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, unknown); data/wine-5.0/dlls/crypt32/object.c:2272:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:2329:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, infoNotAvailable); data/wine-5.0/dlls/crypt32/object.c:2460:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, financialCriteria); data/wine-5.0/dlls/crypt32/object.c:2464:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, available); data/wine-5.0/dlls/crypt32/object.c:2466:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, sep); data/wine-5.0/dlls/crypt32/object.c:2468:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, meetsCriteria); data/wine-5.0/dlls/crypt32/object.c:2471:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, yes); data/wine-5.0/dlls/crypt32/object.c:2473:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, no); data/wine-5.0/dlls/crypt32/object.c:2477:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, notAvailable); data/wine-5.0/dlls/crypt32/object.c:2514:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str, (LPWSTR)value->Value.pbData); data/wine-5.0/dlls/crypt32/oid.c:39:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/oid.c:140:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ret->name, pszFuncName); data/wine-5.0/dlls/crypt32/oid.c:186:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szKey, szEncodingTypeFmt, data/wine-5.0/dlls/crypt32/oid.c:269:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(oid, rgFuncEntry[i].pszOID); data/wine-5.0/dlls/crypt32/oid.c:729:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(key_name, "%s!%u", info->pszOID, info->dwGroupId); data/wine-5.0/dlls/crypt32/oid.c:774:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(key_name, "%s!%u", info->pszOID, info->dwGroupId); data/wine-5.0/dlls/crypt32/oid.c:1605:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char *)info->info.pszOID, key_name); data/wine-5.0/dlls/crypt32/pfx.c:37:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/pfx.c:108:19: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (TRACE_ON( crypt )) data/wine-5.0/dlls/crypt32/proplist.c:27:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/protectdata.c:47:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/protectdata.c:130:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(report+strlen(report),"%s%02x", r ? "," : "", *p++); data/wine-5.0/dlls/crypt32/protectdata.c:561:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)blob->pbData, str); data/wine-5.0/dlls/crypt32/provstore.c:28:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/regstore.c:28:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/rootstore.c:47:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/rootstore.c:91:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char *)buffer->data + strlen((char *)buffer->data), line); data/wine-5.0/dlls/crypt32/rootstore.c:191:20: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. pos += sprintf(buf + pos, "\n\t%s", messages[i].text); data/wine-5.0/dlls/crypt32/serialize.c:30:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/sip.c:36:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/sip.c:87:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( szFullKey, szOID ); data/wine-5.0/dlls/crypt32/sip.c:88:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( szFullKey, szKey ); data/wine-5.0/dlls/crypt32/sip.c:166:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( szFullKey, szOID ); data/wine-5.0/dlls/crypt32/sip.c:167:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( szFullKey, szKey ); data/wine-5.0/dlls/crypt32/sip.c:435:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szFullKey, szOID); data/wine-5.0/dlls/crypt32/sip.c:436:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFullKey, szIsMyFile); data/wine-5.0/dlls/crypt32/sip.c:473:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szFullKey, szOID); data/wine-5.0/dlls/crypt32/sip.c:474:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFullKey, szIsMyFile2); data/wine-5.0/dlls/crypt32/sip.c:529:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szFullKey, szOID); data/wine-5.0/dlls/crypt32/sip.c:530:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFullKey, function); data/wine-5.0/dlls/crypt32/store.c:42:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/str.c:31:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/crypt32/tests/base64.c:382:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, header); data/wine-5.0/dlls/crypt32/tests/base64.c:385:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, toDecode); data/wine-5.0/dlls/crypt32/tests/base64.c:387:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, trailer); data/wine-5.0/dlls/crypt32/tests/base64.c:414:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, garbage); data/wine-5.0/dlls/crypt32/tests/base64.c:416:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, header); data/wine-5.0/dlls/crypt32/tests/base64.c:417:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, toDecode); data/wine-5.0/dlls/crypt32/tests/base64.c:419:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, trailer); data/wine-5.0/dlls/crypt32/tests/cert.c:413:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD propID, numProps, access, size; data/wine-5.0/dlls/crypt32/tests/cert.c:469:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. size = sizeof(access); data/wine-5.0/dlls/crypt32/tests/cert.c:471:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. CERT_ACCESS_STATE_PROP_ID, &access, &size); data/wine-5.0/dlls/crypt32/tests/cert.c:474:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!(access & CERT_ACCESS_STATE_WRITE_PERSIST_FLAG), data/wine-5.0/dlls/crypt32/tests/cert.c:3859:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ms_def_prov_w, MS_DEF_PROV_W); data/wine-5.0/dlls/crypt32/tests/crl.c:869:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD propID, numProps, access, size; data/wine-5.0/dlls/crypt32/tests/crl.c:921:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. &access, &size); data/wine-5.0/dlls/crypt32/tests/crl.c:923:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!(access & CERT_ACCESS_STATE_WRITE_PERSIST_FLAG), data/wine-5.0/dlls/crypt32/tests/ctl.c:236:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD propID, numProps, access, size; data/wine-5.0/dlls/crypt32/tests/ctl.c:261:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = CertGetCTLContextProperty(ctl, CERT_ACCESS_STATE_PROP_ID, &access, data/wine-5.0/dlls/crypt32/tests/ctl.c:266:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!(access & CERT_ACCESS_STATE_WRITE_PERSIST_FLAG), data/wine-5.0/dlls/crypt32/tests/oid.c:416:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, fmt, 0, func); data/wine-5.0/dlls/crypt32/tests/sip.c:189:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(regeditPath, regeditExe); data/wine-5.0/dlls/crypt32/tests/store.c:1070:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subKeyName, certificates); data/wine-5.0/dlls/crypt32/tests/store.c:1127:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subKeyName, certificates); data/wine-5.0/dlls/crypt32/tests/store.c:1182:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subKeyName, certificates); data/wine-5.0/dlls/crypt32/tests/store.c:1374:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keyName, CERT_LOCAL_MACHINE_SYSTEM_STORE_REGPATH); data/wine-5.0/dlls/crypt32/tests/store.c:1375:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keyName, baskslashW); data/wine-5.0/dlls/crypt32/tests/store.c:1376:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keyName, MyW); data/wine-5.0/dlls/cryptdlg/main.c:501:28: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ptr += swprintf(ptr, 4, fmt, pbEncoded[i]); data/wine-5.0/dlls/cryptdlg/main.c:503:28: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ptr += swprintf(ptr, 3, endFmt, pbEncoded[i]); data/wine-5.0/dlls/cryptdlg/main.c:545:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:547:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:549:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:556:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, (LPWSTR)cpsValue->Value.pbData); data/wine-5.0/dlls/cryptdlg/main.c:562:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:632:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:634:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:636:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:649:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, headingSep); data/wine-5.0/dlls/cryptdlg/main.c:657:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:659:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:661:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:663:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:681:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:691:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:693:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:695:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:697:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:707:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(noticeNumStr, ARRAY_SIZE(noticeNumStr), numFmt, k + 1); data/wine-5.0/dlls/cryptdlg/main.c:711:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, noticeNumStr); data/wine-5.0/dlls/cryptdlg/main.c:717:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:729:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:731:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:733:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:746:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, notice->pszDisplayText); data/wine-5.0/dlls/cryptdlg/main.c:752:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:838:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(policyNum, ARRAY_SIZE(policyNum), numFmt, i + 1); data/wine-5.0/dlls/cryptdlg/main.c:842:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, policyNum); data/wine-5.0/dlls/cryptdlg/main.c:857:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, headingSep); data/wine-5.0/dlls/cryptdlg/main.c:865:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:885:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:899:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:909:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, policyNum); data/wine-5.0/dlls/cryptdlg/main.c:915:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(policyQualifierNum, ARRAY_SIZE(policyQualifierNum), numFmt, j + 1); data/wine-5.0/dlls/cryptdlg/main.c:919:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, policyQualifierNum); data/wine-5.0/dlls/cryptdlg/main.c:935:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, headingSep); data/wine-5.0/dlls/cryptdlg/main.c:943:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:945:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:989:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, sep); data/wine-5.0/dlls/cryptdlg/main.c:997:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:999:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, indent); data/wine-5.0/dlls/cryptdlg/main.c:1012:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, headingSep); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:181:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nextUrl, data/wine-5.0/dlls/cryptnet/cryptnet_main.c:290:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nextUrl, data/wine-5.0/dlls/cryptnet/cryptnet_main.c:733:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cacheFileName, info->lpszLocalFileName); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:1018:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path, components.lpszUrlPath, data/wine-5.0/dlls/cryptnet/cryptnet_main.c:1028:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path + 2, components.lpszUrlPath, data/wine-5.0/dlls/cryptnet/cryptnet_main.c:1039:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path + 2, components.lpszUrlPath, data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:308:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, temp); data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:335:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(url, "file://%s", tmpfile); data/wine-5.0/dlls/cryptui/main.c:704:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, info->pszOID); data/wine-5.0/dlls/cryptui/main.c:914:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, info->pwszName); data/wine-5.0/dlls/cryptui/main.c:927:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, commaSpace); data/wine-5.0/dlls/cryptui/main.c:1395:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(storeInfo->u.name, pvSystemStore); data/wine-5.0/dlls/cryptui/main.c:2007:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(copy, ptr, linebreak - ptr + 1); data/wine-5.0/dlls/cryptui/main.c:2250:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, qualifierValue->pszDisplayText); data/wine-5.0/dlls/cryptui/main.c:2589:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, 12, fmt, cert->pCertInfo->dwVersion); data/wine-5.0/dlls/cryptui/main.c:2604:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ptr, 4, fmt, ((BYTE *)pb)[i]); data/wine-5.0/dlls/cryptui/main.c:2899:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ptr, 4, fmt, ext->Value.pbData[j]); data/wine-5.0/dlls/cryptui/main.c:3150:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(oidCopy, oid); data/wine-5.0/dlls/cryptui/main.c:4951:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, import_filters[i].filter); data/wine-5.0/dlls/cryptui/main.c:5017:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, error); data/wine-5.0/dlls/cryptui/main.c:5019:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, fileName); data/wine-5.0/dlls/cryptui/main.c:5023:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, msgBuf); data/wine-5.0/dlls/cryptui/main.c:6068:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fileName, extension); data/wine-5.0/dlls/cryptui/main.c:6135:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, error); data/wine-5.0/dlls/cryptui/main.c:6137:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, fileName); data/wine-5.0/dlls/cryptui/main.c:6141:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, msgBuf); data/wine-5.0/dlls/cryptui/main.c:6212:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, filterStr); data/wine-5.0/dlls/cryptui/main.c:6217:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, filter_all); data/wine-5.0/dlls/d3d11/device.c:3813:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, REFIID iid, void **resource) data/wine-5.0/dlls/d3d11/device.c:3815:98: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("iface %p, name %s, access %#x, iid %s, resource %p stub!\n", iface, debugstr_w(name), access, data/wine-5.0/dlls/d3d11/utils.c:779:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/dlls/d3d11/utils.c:783:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d11/utils.c:785:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_R; data/wine-5.0/dlls/d3d11/utils.c:789:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access; data/wine-5.0/dlls/d3d8/buffer.c:241:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/buffer.c:312:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d8/buffer.c:316:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/d3d8/buffer.c:324:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (SUCCEEDED(hr) && !(desc.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/d3d8/buffer.c:572:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/buffer.c:634:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d8/buffer.c:638:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/d3d8/buffer.c:651:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (SUCCEEDED(hr) && !(desc.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/d3d8/d3d8_private.h:302:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline D3DPOOL d3dpool_from_wined3daccess(unsigned int access, unsigned int usage) data/wine-5.0/dlls/d3d8/d3d8_private.h:304:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. switch (access & (WINED3D_RESOURCE_ACCESS_GPU | WINED3D_RESOURCE_ACCESS_CPU)) data/wine-5.0/dlls/d3d8/d3d8_private.h:327:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/dlls/d3d8/d3d8_private.h:345:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= map_access_from_usage(usage); data/wine-5.0/dlls/d3d8/d3d8_private.h:346:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access; data/wine-5.0/dlls/d3d8/device.c:842:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/d3d8/device.c:1182:95: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. enum wined3d_multisample_type multisample_type, unsigned int bind_flags, unsigned int access, data/wine-5.0/dlls/d3d8/device.c:1192:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. device, format, multisample_type, bind_flags, access, width, height, surface); data/wine-5.0/dlls/d3d8/device.c:1200:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access = access; data/wine-5.0/dlls/d3d8/device.c:1242:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d8/device.c:1245:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. multisample_type, WINED3D_BIND_RENDER_TARGET, access, width, height, surface); data/wine-5.0/dlls/d3d8/device.c:1281:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WINED3D_MULTISAMPLE_NONE, 0, access, width, height, surface); data/wine-5.0/dlls/d3d8/surface.c:194:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/texture.c:256:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/texture.c:603:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/texture.c:948:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d8/volume.c:128:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/buffer.c:242:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/buffer.c:319:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d9/buffer.c:323:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/d3d9/buffer.c:331:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (SUCCEEDED(hr) && !(desc.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/d3d9/buffer.c:577:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/buffer.c:645:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d9/buffer.c:649:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/d3d9/buffer.c:662:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (SUCCEEDED(hr) && !(desc.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/d3d9/d3d9_private.h:315:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline D3DPOOL d3dpool_from_wined3daccess(unsigned int access, unsigned int usage) data/wine-5.0/dlls/d3d9/d3d9_private.h:317:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. switch (access & (WINED3D_RESOURCE_ACCESS_GPU | WINED3D_RESOURCE_ACCESS_CPU)) data/wine-5.0/dlls/d3d9/d3d9_private.h:340:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/dlls/d3d9/d3d9_private.h:358:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= map_access_from_usage(usage); data/wine-5.0/dlls/d3d9/d3d9_private.h:359:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access; data/wine-5.0/dlls/d3d9/device.c:904:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/d3d9/device.c:1432:101: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int multisample_quality, unsigned int usage, unsigned int bind_flags, unsigned int access, data/wine-5.0/dlls/d3d9/device.c:1443:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. bind_flags, access, width, height, user_mem, surface); data/wine-5.0/dlls/d3d9/device.c:1451:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc.access = access; data/wine-5.0/dlls/d3d9/device.c:1529:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d9/device.c:1532:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. multisample_quality, 0, WINED3D_BIND_RENDER_TARGET, access, width, height, NULL, surface); data/wine-5.0/dlls/d3d9/device.c:1715:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (dst_desc.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/d3d9/device.c:1720:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (src_desc.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/d3d9/device.c:1805:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/d3d9/device.c:1808:91: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WARN("Colour fills are not allowed on surfaces with resource access %#x.\n", desc.access); data/wine-5.0/dlls/d3d9/device.c:1841:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int usage, access; data/wine-5.0/dlls/d3d9/device.c:1882:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WINED3D_MULTISAMPLE_NONE, 0, usage, 0, access, width, height, user_mem, surface); data/wine-5.0/dlls/d3d9/device.c:4172:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/d3d9/device.c:4176:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WINED3D_BIND_RENDER_TARGET, access, width, height, NULL, surface); data/wine-5.0/dlls/d3d9/surface.c:226:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/texture.c:369:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/texture.c:776:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/texture.c:1153:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3d9/volume.c:129:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->Pool = d3dpool_from_wined3daccess(wined3d_desc.access, wined3d_desc.usage); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:102:14: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. rc = vsnprintf(wpp_messages + wpp_messages_size, data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h:283:54: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINTF_ATTR(fmt,args) __attribute__((format (printf,fmt,args))) data/wine-5.0/dlls/d3dcompiler_43/preproc.c:443:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/dlls/d3dcompiler_43/utils.c:737:14: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. rc = vsnprintf(msg->string + msg->size, data/wine-5.0/dlls/d3dcompiler_43/wpp_private.h:212:66: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV ppy_error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/dlls/d3dcompiler_43/wpp_private.h:213:68: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV ppy_warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/dlls/d3dcompiler_43/wpp_private.h:214:103: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void WINAPIV pp_internal_error(const char *file, int line, const char *s, ...) __attribute__((format (printf, 3, 4))); data/wine-5.0/dlls/d3dcompiler_43/wpp_private.h:243:77: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void WINAPIV pp_writestring(const char *format, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/dlls/d3dx10_43/async.c:324:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(object->u.file.path, filename); data/wine-5.0/dlls/d3dx10_43/tests/d3dx10.c:661:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, test_filename); data/wine-5.0/dlls/d3dx11_43/async.c:323:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(object->u.file.path, filename); data/wine-5.0/dlls/d3dx11_43/tests/d3dx11.c:80:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, test_filename); data/wine-5.0/dlls/d3dx9_36/effect.c:881:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*param_data, string); data/wine-5.0/dlls/d3dx9_36/effect.c:6486:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(skip_constants_buffer, skip_constants_string); data/wine-5.0/dlls/d3dx9_36/font.c:244:26: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(facename != NULL) lstrcpyA(desc.FaceName, facename); data/wine-5.0/dlls/d3dx9_36/font.c:266:26: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(facename != NULL) lstrcpyW(desc.FaceName, facename); data/wine-5.0/dlls/d3dx9_36/mesh.c:2671:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, filename_in); data/wine-5.0/dlls/d3dx9_36/mesh.c:3416:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(defaults->pParamName, material_effects[j].param_name); data/wine-5.0/dlls/d3dx9_36/mesh.c:3428:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(defaults->pParamName, texture_paramname); data/wine-5.0/dlls/d3dx9_36/mesh.c:3432:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(defaults->pValue, material_ptr->pTextureFilename); data/wine-5.0/dlls/d3dx9_36/mesh.c:3634:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(strings_out_ptr, mesh_data.materials[i].pTextureFilename); data/wine-5.0/dlls/d3dx9_36/mesh.c:4477:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out_ptr->pTextureFilename, in_ptr->pTextureFilename); data/wine-5.0/dlls/d3dx9_36/shader.c:261:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathname + (p - parent_name), filename); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:38:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:39:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:49:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out_path, path); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:61:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:62:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:70:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:71:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, name); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:79:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:80:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, name); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:182:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:183:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:193:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out_path, path); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:205:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:206:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:214:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:215:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, name); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:223:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, temp_path); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:224:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, name); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7800:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename_w, effect_path_w); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7801:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename_w, effect1_filename_w); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7815:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename_w, effect_path_w); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7816:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename_w, effect2_filename_w); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7838:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename_w, effect2_filename_w); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1799:14: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy(ret, p); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4236:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(name, "text ('%s', %f, %f)", text, deviation, extrusion); data/wine-5.0/dlls/d3dxof/parsing.c:484:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ret = sscanf(tmp, CLSIDFMT, &class_id.Data1, tab, tab+1, tab+2, tab+3, tab+4, tab+5, tab+6, tab+7, tab+8, tab+9); data/wine-5.0/dlls/d3dxof/parsing.c:534:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)buf->value, tmp); data/wine-5.0/dlls/d3dxof/parsing.c:634:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)buf->value, tmp); data/wine-5.0/dlls/d3dxof/parsing.c:803:11: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(strguid, CLSIDFMT, class_id.Data1, class_id.Data2, class_id.Data3, class_id.Data4[0], data/wine-5.0/dlls/d3dxof/parsing.c:930:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cur_template->children[cur_template->nb_children], (char*)buf->value); data/wine-5.0/dlls/d3dxof/parsing.c:992:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cur_member->name, (char*)buf->value); data/wine-5.0/dlls/d3dxof/parsing.c:1081:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf->pdxf->xtemplates[buf->pdxf->nb_xtemplates].name, (char*)buf->value); data/wine-5.0/dlls/d3dxof/parsing.c:1255:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)buf->cur_pstrings, (char*)buf->value); data/wine-5.0/dlls/d3dxof/parsing.c:1410:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf->pxo->name, (char*)buf->value); data/wine-5.0/dlls/dbgeng/dbgeng.c:3482:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= PROCESS_SUSPEND_RESUME; data/wine-5.0/dlls/dbgeng/dbgeng.c:3484:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. target->handle = OpenProcess(access, FALSE, target->pid); data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:242:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_name, "%s dbgeng target %s %s", argv[0], event_name, event_target_ready_name); data/wine-5.0/dlls/dbghelp/dbghelp.c:180:24: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). pcs->search_path = lstrcpyW(HeapAlloc(GetProcessHeap(), 0, data/wine-5.0/dlls/dbghelp/dbghelp.c:216:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szSearchPath, pcs->search_path, SearchPathLength); data/wine-5.0/dlls/dbghelp/dbghelp.c:252:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmp, name, ARRAY_SIZE(tmp)); data/wine-5.0/dlls/dbghelp/dbghelp.c:327:28: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). pcs->search_path = lstrcpyW(HeapAlloc(GetProcessHeap(), 0, data/wine-5.0/dlls/dbghelp/dwarf.c:984:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(last, name); data/wine-5.0/dlls/dbghelp/dwarf.c:2248:12: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmp, compile_dir); data/wine-5.0/dlls/dbghelp/dwarf.c:2250:12: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&tmp[baselen], rel); data/wine-5.0/dlls/dbghelp/elf_module.c:993:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(p, loaded_file); data/wine-5.0/dlls/dbghelp/elf_module.c:1424:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, filename); data/wine-5.0/dlls/dbghelp/elf_module.c:1502:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fn, s); data/wine-5.0/dlls/dbghelp/elf_module.c:1699:47: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (main_name && !bufstrW[0]) strcpyW(bufstrW, main_name); data/wine-5.0/dlls/dbghelp/elf_module.c:1733:47: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (main_name && !bufstrW[0]) strcpyW(bufstrW, main_name); data/wine-5.0/dlls/dbghelp/macho_module.c:345:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tmp, "__", sizeof(tmp)); data/wine-5.0/dlls/dbghelp/macho_module.c:346:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tmp + 2, sectname + 1, sizeof(tmp) - 2); data/wine-5.0/dlls/dbghelp/macho_module.c:1193:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path, module->module.LoadedImageName); data/wine-5.0/dlls/dbghelp/macho_module.c:1201:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path + strlenW(module->module.LoadedImageName), dot_dwarf); data/wine-5.0/dlls/dbghelp/macho_module.c:1227:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path + item_path_len, dsym_subpath); data/wine-5.0/dlls/dbghelp/macho_module.c:1505:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, filename); data/wine-5.0/dlls/dbghelp/macho_module.c:1549:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fn, s); data/wine-5.0/dlls/dbghelp/macho_module.c:1726:43: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (main_name && !bufstrW[0]) strcpyW(bufstrW, main_name); data/wine-5.0/dlls/dbghelp/minidump.c:221:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dc->modules[dc->num_modules].name, name, data/wine-5.0/dlls/dbghelp/minidump.c:532:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ms->Buffer, dc->modules[i].name); data/wine-5.0/dlls/dbghelp/module.c:99:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, wineW ); data/wine-5.0/dlls/dbghelp/module.c:125:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(out, S_WineLoaderW, size); data/wine-5.0/dlls/dbghelp/module.c:130:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(&out[len - l - 3], S_ElfW); data/wine-5.0/dlls/dbghelp/module.c:161:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, wineW ); data/wine-5.0/dlls/dbghelp/module.c:217:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(module->module.LoadedImageName, name, ARRAY_SIZE(module->module.LoadedImageName)); data/wine-5.0/dlls/dbghelp/module.c:672:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(module->module.ImageName, wImageName, ARRAY_SIZE(module->module.ImageName)); data/wine-5.0/dlls/dbghelp/module.c:1005:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(miw.ModuleName, miw64.ModuleName); data/wine-5.0/dlls/dbghelp/module.c:1006:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(miw.ImageName, miw64.ImageName); data/wine-5.0/dlls/dbghelp/module.c:1007:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(miw.LoadedImageName, miw64.LoadedImageName); data/wine-5.0/dlls/dbghelp/msc.c:2973:35: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define PEV_ERROR1(pev, msg, pmt) snprintf((pev)->error, sizeof((pev)->error), (msg), (pmt)) data/wine-5.0/dlls/dbghelp/msc.c:3035:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(elt, *at); data/wine-5.0/dlls/dbghelp/path.c:234:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer + pos, S_AllW); data/wine-5.0/dlls/dbghelp/path.c:244:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer + pos, fd.cFileName); data/wine-5.0/dlls/dbghelp/path.c:265:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, root); data/wine-5.0/dlls/dbghelp/path.c:298:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, root); data/wine-5.0/dlls/dbghelp/path.c:392:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, full_path); data/wine-5.0/dlls/dbghelp/path.c:407:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(tmp, searchPath); data/wine-5.0/dlls/dbghelp/path.c:412:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, tmp); data/wine-5.0/dlls/dbghelp/path.c:616:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(mf->filename, buffer); data/wine-5.0/dlls/dbghelp/path.c:651:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, full_pathW ); data/wine-5.0/dlls/dbghelp/path.c:679:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, searchPath); data/wine-5.0/dlls/dbghelp/path.c:688:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, mf.filename ); data/wine-5.0/dlls/dbghelp/pe_module.c:750:20: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else if (name) strcpyW(loaded_name, name); data/wine-5.0/dlls/dbghelp/source.c:81:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmp, base); data/wine-5.0/dlls/dbghelp/source.c:83:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&tmp[bsz], name); data/wine-5.0/dlls/dbghelp/stabs.c:189:42: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). include_defs[num_include_def].name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(file) + 1), file); data/wine-5.0/dlls/dbghelp/stabs.c:653:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tmp, symt_get_name(adt)); data/wine-5.0/dlls/dbghelp/stabs.c:1261:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*buf+buf_len, str); data/wine-5.0/dlls/dbghelp/stabs.c:1597:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(srcpath, ptr); data/wine-5.0/dlls/dbghelp/storage.c:128:52: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ret = pool_alloc(pool, strlen(str) + 1))) strcpy(ret, str); data/wine-5.0/dlls/dbghelp/symbol.c:1308:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(Symbol->Name, si->Name, len); data/wine-5.0/dlls/dbghelp/symbol.c:1336:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(Symbol->Name, si->Name, len); data/wine-5.0/dlls/dbghelp/symbol.c:1427:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(Symbol->Name, si->Name, len); data/wine-5.0/dlls/dbghelp/symbol.c:1449:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(Symbol->Name, si->Name, len); data/wine-5.0/dlls/dbghelp/symbol.c:2204:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(sci.FileName, file); data/wine-5.0/dlls/ddraw/surface.c:6230:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (wined3d_desc.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/ddraw/tests/d3d.c:640:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ctx->callback_description_strings[ctx->count], DeviceDescription); data/wine-5.0/dlls/ddraw/tests/d3d.c:642:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ctx->callback_name_strings[ctx->count], DeviceName); data/wine-5.0/dlls/devenum/createdevenum.c:129:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/createdevenum.c:131:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/createdevenum.c:132:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, name); data/wine-5.0/dlls/devenum/createdevenum.c:457:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszRegKey, clsidW); data/wine-5.0/dlls/devenum/createdevenum.c:458:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszRegKey, backslashW); data/wine-5.0/dlls/devenum/createdevenum.c:459:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszRegKey, wszFilterSubkeyName); data/wine-5.0/dlls/devenum/createdevenum.c:530:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, directsoundW); data/wine-5.0/dlls/devenum/createdevenum.c:531:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, desc); data/wine-5.0/dlls/devenum/createdevenum.c:913:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszRegKey, wszActiveMovieKey); data/wine-5.0/dlls/devenum/mediacatenum.c:349:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rpb->path, clsidW); data/wine-5.0/dlls/devenum/mediacatenum.c:350:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, backslashW); data/wine-5.0/dlls/devenum/mediacatenum.c:354:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, instanceW); data/wine-5.0/dlls/devenum/mediacatenum.c:355:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, backslashW); data/wine-5.0/dlls/devenum/mediacatenum.c:357:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, mon->name); data/wine-5.0/dlls/devenum/mediacatenum.c:361:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rpb->path, wszActiveMovieKey); data/wine-5.0/dlls/devenum/mediacatenum.c:365:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, backslashW); data/wine-5.0/dlls/devenum/mediacatenum.c:367:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(rpb->path, mon->name); data/wine-5.0/dlls/devenum/mediacatenum.c:712:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/mediacatenum.c:713:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, dmoW); data/wine-5.0/dlls/devenum/mediacatenum.c:723:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/mediacatenum.c:725:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, swW); data/wine-5.0/dlls/devenum/mediacatenum.c:727:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/mediacatenum.c:732:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/mediacatenum.c:734:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, This->name); data/wine-5.0/dlls/devenum/mediacatenum.c:907:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pMoniker->name, buffer); data/wine-5.0/dlls/devenum/mediacatenum.c:927:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pMoniker->name, buffer); data/wine-5.0/dlls/devenum/mediacatenum.c:1029:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, clsidW); data/wine-5.0/dlls/devenum/mediacatenum.c:1030:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/mediacatenum.c:1032:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, instanceW); data/wine-5.0/dlls/devenum/mediacatenum.c:1036:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, wszActiveMovieKey); data/wine-5.0/dlls/devenum/parsedisplayname.c:120:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, name, CHARS_IN_GUID); data/wine-5.0/dlls/devenum/parsedisplayname.c:127:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, name + CHARS_IN_GUID - 1, CHARS_IN_GUID); data/wine-5.0/dlls/devenum/parsedisplayname.c:136:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, name, CHARS_IN_GUID); data/wine-5.0/dlls/devenum/parsedisplayname.c:149:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mon->name, name); data/wine-5.0/dlls/devenum/tests/devenum.c:351:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:352:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, swW); data/wine-5.0/dlls/devenum/tests/devenum.c:354:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, testW); data/wine-5.0/dlls/devenum/tests/devenum.c:385:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, clsidW); data/wine-5.0/dlls/devenum/tests/devenum.c:387:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, instanceW); data/wine-5.0/dlls/devenum/tests/devenum.c:388:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, testW); data/wine-5.0/dlls/devenum/tests/devenum.c:398:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:399:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, swW); data/wine-5.0/dlls/devenum/tests/devenum.c:400:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, testW+1); data/wine-5.0/dlls/devenum/tests/devenum.c:450:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:451:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:453:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, testW); data/wine-5.0/dlls/devenum/tests/devenum.c:503:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:504:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, dmoW); data/wine-5.0/dlls/devenum/tests/devenum.c:578:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:579:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:581:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:633:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, directsoundW); data/wine-5.0/dlls/devenum/tests/devenum.c:634:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, desc); data/wine-5.0/dlls/devenum/tests/devenum.c:638:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, defaultW); data/wine-5.0/dlls/devenum/tests/devenum.c:645:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:646:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:648:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:649:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, name); data/wine-5.0/dlls/devenum/tests/devenum.c:664:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:665:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:667:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:668:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, directsoundW); data/wine-5.0/dlls/devenum/tests/devenum.c:737:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:738:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:740:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:741:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, name); data/wine-5.0/dlls/devenum/tests/devenum.c:760:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:761:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:763:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:764:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, waveW); data/wine-5.0/dlls/devenum/tests/devenum.c:765:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, strchrW(endpoint, '}') + 2); data/wine-5.0/dlls/devenum/tests/devenum.c:823:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:824:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:826:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:827:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, caps.szPname); data/wine-5.0/dlls/devenum/tests/devenum.c:846:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:847:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:849:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:850:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, waveW); data/wine-5.0/dlls/devenum/tests/devenum.c:851:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, strchrW(endpoint, '}') + 2); data/wine-5.0/dlls/devenum/tests/devenum.c:914:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:915:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:917:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:918:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, name); data/wine-5.0/dlls/devenum/tests/devenum.c:984:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, deviceW); data/wine-5.0/dlls/devenum/tests/devenum.c:985:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, cmW); data/wine-5.0/dlls/devenum/tests/devenum.c:987:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/devenum/tests/devenum.c:988:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, name); data/wine-5.0/dlls/dhcpcsvc/dhcpcsvc.c:87:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( query->adapter, adapter ); data/wine-5.0/dlls/dinput/device.c:777:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(username, lpszUserName, MAX_PATH); data/wine-5.0/dlls/dinput/device.c:910:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(username, lpszUserName, MAX_PATH); data/wine-5.0/dlls/dinput/device.c:919:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dps.wsz, username, ARRAY_SIZE(dps.wsz)); data/wine-5.0/dlls/dinput/device.c:1328:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ps->wsz, device_player->username, ARRAY_SIZE(ps->wsz)); data/wine-5.0/dlls/dinput/device.c:1435:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(device_player->username, ps->wsz, ARRAY_SIZE(device_player->username)); data/wine-5.0/dlls/dinput/effect_linuxinput.c:882:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(info->tszName, _dump_dinput_GUID(rguid)); data/wine-5.0/dlls/dinput/joystick.c:659:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ps->wsz, didev.tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick.c:661:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ps->wsz, didev.tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick.c:717:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pdidi->tszProductName, This->name, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linux.c:142:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(sys_path, SYS_PATH_FORMAT, index, property); data/wine-5.0/dlls/dinput/joystick_linux.c:187:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(joydev.name, JOYDEVDRIVER); data/wine-5.0/dlls/dinput/joystick_linux.c:399:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpddi->tszInstanceName, joystick_devices[id].name); data/wine-5.0/dlls/dinput/joystick_linux.c:400:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpddi->tszProductName, joystick_devices[id].name); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:193:9: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buf, sizeof(buf), EVDEVPREFIX"%d", i); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:265:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(joydev.device, buf); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:271:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(joydev.name, buf); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:273:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(joydev.name, EVDEVDRIVER); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:401:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpddi->tszInstanceName, joydevs[id].name, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:402:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpddi->tszProductName, joydevs[id].name, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_osx.c:1122:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(newDevice->generic.name, name); data/wine-5.0/dlls/dinput/mouse.c:728:59: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (IsEqualGUID(&pdidoi->guidType, &GUID_XAxis)) strcpyW(pdidoi->tszName, x_axisW); data/wine-5.0/dlls/dinput/mouse.c:729:59: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else if (IsEqualGUID(&pdidoi->guidType, &GUID_YAxis)) strcpyW(pdidoi->tszName, y_axisW); data/wine-5.0/dlls/dinput/mouse.c:730:59: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else if (IsEqualGUID(&pdidoi->guidType, &GUID_ZAxis)) strcpyW(pdidoi->tszName, wheelW); data/wine-5.0/dlls/dinput/tests/joystick.c:872:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(oldstate, curstate); data/wine-5.0/dlls/dmband/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmband/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmband/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmcompos/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmcompos/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmcompos/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmime/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmime/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmime/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmloader/container.c:172:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (pwszAlias, pContainedObject->wszAlias, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmloader/debug.c:51:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. ptr += sprintf(ptr, "\n - dwFlags = %#x%s", pHeader->dwFlags, data/wine-5.0/dlls/dmloader/debug.c:65:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. ptr += sprintf(ptr, "\n - guidClassID = %s", debugstr_dmguid(&pHeader->guidClassID)); data/wine-5.0/dlls/dmloader/debug.c:66:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. ptr += sprintf(ptr, "\n - dwFlags = %#x%s", pHeader->dwFlags, data/wine-5.0/dlls/dmloader/debug.c:68:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. ptr += sprintf(ptr, "\n - ckid = %s", debugstr_fourcc (pHeader->ckid)); data/wine-5.0/dlls/dmloader/debug.c:69:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. ptr += sprintf(ptr, "\n - fccType = %s", debugstr_fourcc (pHeader->fccType)); data/wine-5.0/dlls/dmloader/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmloader/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmloader/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmloader/loader.c:86:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path, This->search_paths[index], MAX_PATH); data/wine-5.0/dlls/dmloader/loader.c:101:41: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pSrc->dwValidData & DMUS_OBJ_NAME) lstrcpyW (pDst->wszName, pSrc->wszName); data/wine-5.0/dlls/dmloader/loader.c:102:45: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pSrc->dwValidData & DMUS_OBJ_CATEGORY) lstrcpyW (pDst->wszCategory, pSrc->wszCategory); data/wine-5.0/dlls/dmloader/loader.c:103:45: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pSrc->dwValidData & DMUS_OBJ_FILENAME) lstrcpyW (pDst->wszFileName, pSrc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:325:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszFileName, pDesc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:331:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, pDesc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:414:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (GotDesc.wszFileName, pDesc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:476:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszFileName, pDesc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:482:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, pDesc->wszFileName); data/wine-5.0/dlls/dmloader/loader.c:616:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->search_paths[index], path, MAX_PATH); data/wine-5.0/dlls/dmloader/loader.c:647:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (p, pwzFileExtension); data/wine-5.0/dlls/dmloader/loader.c:662:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (Desc.wszFileName, FileData.cFileName); data/wine-5.0/dlls/dmloader/loaderstream.c:85:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (This->wzFileName, wzFile, MAX_PATH); data/wine-5.0/dlls/dmscript/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmscript/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmscript/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmstyle/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmstyle/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmstyle/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmstyle/style.c:186:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(name, motif->desc.wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmsynth/synth.c:601:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(obj->pCaps.wszDescription, L"Microsoft Synthesizer"); data/wine-5.0/dlls/dmusic/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmusic/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dmusic/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dmusic/dmusic.c:351:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(clock_info->wszDescription, name_system_clock); data/wine-5.0/dlls/dmusic/dmusic.c:360:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(clock_info->wszDescription, name_dsound_clock); data/wine-5.0/dlls/dmusic/dmusic.c:545:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(port->caps.wszDescription, caps_out.szPname); data/wine-5.0/dlls/dmusic/dmusic.c:546:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(port->caps.wszDescription, emulated); data/wine-5.0/dlls/dmusic/dmusic.c:557:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(port->caps.wszDescription, caps_out.szPname); data/wine-5.0/dlls/dmusic/dmusic.c:558:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(port->caps.wszDescription, emulated); data/wine-5.0/dlls/dmusic/dmusic.c:570:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(port->caps.wszDescription, caps_in.szPname); data/wine-5.0/dlls/dmusic/dmusic.c:571:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(port->caps.wszDescription, emulated); data/wine-5.0/dlls/dnsapi/dnsapi.h:33:14: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyA( dst, src ); data/wine-5.0/dlls/dnsapi/dnsapi.h:43:14: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) strcpy( dst, src ); data/wine-5.0/dlls/dnsapi/dnsapi.h:53:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyW( dst, src ); data/wine-5.0/dlls/dnsapi/query.c:169:14: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (str) strcpy( str, dname ); data/wine-5.0/dlls/dnsapi/query.c:795:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( buffer, name ); data/wine-5.0/dlls/dnsapi/query.c:814:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, name ); data/wine-5.0/dlls/dplayx/dplay.c:1426:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDst->u1.lpszShortNameA, lpSrc->u1.lpszShortNameA ); data/wine-5.0/dlls/dplayx/dplay.c:1432:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDst->u2.lpszLongNameA, lpSrc->u2.lpszLongNameA ); data/wine-5.0/dlls/dplayx/dplay.c:1441:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( lpDst->u1.lpszShortName, lpSrc->u1.lpszShortName ); data/wine-5.0/dlls/dplayx/dplay.c:1447:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( lpDst->u2.lpszLongName, lpSrc->u2.lpszLongName ); data/wine-5.0/dlls/dplayx/dplay.c:2701:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ((char*)lpName)+lpGData->name.dwSize, data/wine-5.0/dlls/dplayx/dplay.c:2711:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ((char*)lpName)+lpGData->name.dwSize, data/wine-5.0/dlls/dplayx/dplay.c:3028:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ((char*)lpName)+lpPList->lpPData->name.dwSize, data/wine-5.0/dlls/dplayx/dplay.c:3038:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ((char*)lpName)+lpPList->lpPData->name.dwSize, data/wine-5.0/dlls/dplayx/dplay.c:3929:7: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( (LPSTR)lpStartOfFreeSpace, data/wine-5.0/dlls/dplayx/dplay.c:3938:7: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( (LPSTR)lpStartOfFreeSpace, data/wine-5.0/dlls/dplayx/dplay.c:3947:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, data/wine-5.0/dlls/dplayx/dplay.c:3956:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, data/wine-5.0/dlls/dplayx/dplayx_global.c:558:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (LPSTR)lpStartOfFreeSpace, src->lpSessionDesc->u1.lpszSessionNameA ); data/wine-5.0/dlls/dplayx/dplayx_global.c:566:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (LPSTR)lpStartOfFreeSpace, src->lpSessionDesc->u2.lpszPasswordA ); data/wine-5.0/dlls/dplayx/dplayx_global.c:582:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (LPSTR)lpStartOfFreeSpace, src->lpPlayerName->u1.lpszShortNameA ); data/wine-5.0/dlls/dplayx/dplayx_global.c:590:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (LPSTR)lpStartOfFreeSpace, src->lpPlayerName->u2.lpszLongNameA ); data/wine-5.0/dlls/dplayx/dplayx_global.c:626:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, src->lpSessionDesc->u1.lpszSessionName ); data/wine-5.0/dlls/dplayx/dplayx_global.c:634:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, src->lpSessionDesc->u2.lpszPassword ); data/wine-5.0/dlls/dplayx/dplayx_global.c:650:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, src->lpPlayerName->u1.lpszShortName ); data/wine-5.0/dlls/dplayx/dplayx_global.c:658:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (LPWSTR)lpStartOfFreeSpace, src->lpPlayerName->u2.lpszLongName ); data/wine-5.0/dlls/dplayx/dplobby.c:1159:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpData->lpszCommandLine, returnBuffer ); data/wine-5.0/dlls/dplayx/dplobby.c:1173:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpData->lpszCurrentDirectory, returnBuffer ); data/wine-5.0/dlls/dplayx/dplobby.c:1187:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpData->lpszFileName, returnBuffer ); data/wine-5.0/dlls/dplayx/dplobby.c:1201:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpData->lpszPath, returnBuffer ); data/wine-5.0/dlls/dplayx/dplobby.c:1332:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( temp, enumData.lpszPath ); data/wine-5.0/dlls/dplayx/dplobby.c:1334:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( temp, enumData.lpszFileName ); data/wine-5.0/dlls/dplayx/dplobby.c:1337:69: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((appName = HeapAlloc( GetProcessHeap(), 0, strlen(temp)+1 ))) strcpy( appName, temp ); data/wine-5.0/dlls/dplayx/dplobby.c:1341:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( temp, enumData.lpszCommandLine ); data/wine-5.0/dlls/dplayx/dplobby.c:1344:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( enumData.lpszCommandLine, temp ); data/wine-5.0/dlls/dplayx/dplobby.c:1784:7: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lpAddress, lpElements->lpData, lpElements->dwDataSize ); data/wine-5.0/dlls/dplayx/dplobby.c:1798:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( lpAddress, lpElements->lpData, lpElements->dwDataSize ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:639:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( callbackData->szTrace2, temp ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2393:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2401:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2406:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2414:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2422:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2429:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2437:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2445:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2454:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2462:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2488:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2495:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2503:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2511:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2520:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2528:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2551:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpDataFake); data/wine-5.0/dlls/dplayx/tests/dplayx.c:2563:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpDataGet, lpData); data/wine-5.0/dlls/dplayx/tests/dplayx.c:3698:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( callbackData->szTrace2, data/wine-5.0/dlls/dplayx/tests/dplayx.c:4029:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( callbackData->szTrace2, data/wine-5.0/dlls/dplayx/tests/dplayx.c:6274:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDataGet, lpDataFake ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6283:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDataGet, lpDataFake ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6314:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDataGet, lpDataFake ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6323:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpDataGet, lpDataFake ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6794:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, separator); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6795:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, dplaysvrW); data/wine-5.0/dlls/dpnet/address.c:44:68: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ret = HeapAlloc( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/dlls/dpnet/address.c:435:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwszName, entry->name); data/wine-5.0/dlls/dpnet/dpnet_private.h:157:70: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (lstrlenW( src ) + 1) * sizeof(WCHAR) ))) lstrcpyW( dst, src ); data/wine-5.0/dlls/dpnet/peer.c:222:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info_buffer->pwszName, dp_adapterW); data/wine-5.0/dlls/dpnet/tests/server.c:265:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, separator); data/wine-5.0/dlls/dpnet/tests/server.c:266:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, dpnsvrW); data/wine-5.0/dlls/dsound/propset.c:364:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data1->ModuleW, dataW->Module, ARRAY_SIZE(data1->ModuleW)); data/wine-5.0/dlls/dsound/propset.c:365:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data1->DescriptionW, dataW->Description, ARRAY_SIZE(data1->DescriptionW)); data/wine-5.0/dlls/dsound/tests/capture.c:95:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(str, "%5dx%2dx%d %s", data/wine-5.0/dlls/dsound/tests/ds3d.c:148:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, flags[i].name); data/wine-5.0/dlls/dswave/dmobject.c:467:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszName, desc->wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dswave/dmobject.c:469:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszCategory, desc->wszCategory, DMUS_MAX_CATEGORY); data/wine-5.0/dlls/dswave/dmobject.c:471:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->desc.wszFileName, desc->wszFileName, DMUS_MAX_FILENAME); data/wine-5.0/dlls/dwrite/analyzer.c:1127:18: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(digits, arabicW); data/wine-5.0/dlls/dwrite/font.c:3393:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(nameW, ptr->nameW); data/wine-5.0/dlls/dwrite/font.c:3570:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(familyW, finalW); data/wine-5.0/dlls/dwrite/font.c:3614:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(stretchW, stretchnamesW[font->stretch]); data/wine-5.0/dlls/dwrite/font.c:3625:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(styleW, italicW); data/wine-5.0/dlls/dwrite/font.c:3627:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(styleW, obliqueW); data/wine-5.0/dlls/dwrite/font.c:3632:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(faceW, regular_ptr ? regular_ptr : regularW); data/wine-5.0/dlls/dwrite/font.c:3636:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(faceW, stretchW); data/wine-5.0/dlls/dwrite/font.c:5143:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path, refkey->name); data/wine-5.0/dlls/dwrite/font.c:5207:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(refkey->name, path); data/wine-5.0/dlls/dwrite/layout.c:2247:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(range->locale, layout->format.locale); data/wine-5.0/dlls/dwrite/layout.c:2530:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(dest->locale, value->u.locale); data/wine-5.0/dlls/dwrite/layout.c:2788:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ret, str); data/wine-5.0/dlls/dwrite/layout.c:4533:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, layout->format.family_name); data/wine-5.0/dlls/dwrite/layout.c:4589:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, layout->format.locale); data/wine-5.0/dlls/dwrite/layout.c:5653:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, format->format.family_name); data/wine-5.0/dlls/dwrite/layout.c:5710:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, format->format.locale); data/wine-5.0/dlls/dwrite/main.c:375:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, This->data[index].locale); data/wine-5.0/dlls/dwrite/main.c:410:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, This->data[index].string); data/wine-5.0/dlls/dwrite/opentype.c:1873:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(locale, enusW); data/wine-5.0/dlls/dwrite/opentype.c:1879:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(locale, enusW); data/wine-5.0/dlls/dwrite/opentype.c:1883:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(locale, enusW); data/wine-5.0/dlls/dwrite/opentype.c:2108:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lfname, nameW, LF_FACESIZE); data/wine-5.0/dlls/dwrite/tests/analyzer.c:503:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/analyzer.c:526:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filename); data/wine-5.0/dlls/dwrite/tests/font.c:493:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:554:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filename); data/wine-5.0/dlls/dwrite/tests/font.c:580:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nameW, familyW); data/wine-5.0/dlls/dwrite/tests/font.c:581:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(nameW, spaceW); data/wine-5.0/dlls/dwrite/tests/font.c:582:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(nameW, faceW); data/wine-5.0/dlls/dwrite/tests/font.c:1069:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1114:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1131:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1148:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, blahW); data/wine-5.0/dlls/dwrite/tests/font.c:1160:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaspW); data/wine-5.0/dlls/dwrite/tests/font.c:1186:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1555:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1701:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:1804:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:2158:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:2674:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(logfont->lfFaceName, nameW, ARRAY_SIZE(logfont->lfFaceName)); data/wine-5.0/dlls/dwrite/tests/font.c:4096:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:4192:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:4370:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:4389:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:4434:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/font.c:4581:10: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. BOOL system; data/wine-5.0/dlls/dwrite/tests/font.c:4605:66: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. IDWriteGdiInterop_ConvertFontToLOGFONT(interop, font, NULL, &system); data/wine-5.0/dlls/dwrite/tests/font.c:4610:75: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. hr = IDWriteGdiInterop_ConvertFontToLOGFONT(interop, NULL, &logfont, &system); data/wine-5.0/dlls/dwrite/tests/font.c:4612:9: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ok(!system, "got %d\n", system); data/wine-5.0/dlls/dwrite/tests/font.c:4612:29: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ok(!system, "got %d\n", system); data/wine-5.0/dlls/dwrite/tests/font.c:4650:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nameW, familynameW); data/wine-5.0/dlls/dwrite/tests/font.c:4651:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(nameW, spaceW); data/wine-5.0/dlls/dwrite/tests/font.c:4652:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(nameW, facenameW); data/wine-5.0/dlls/dwrite/tests/font.c:4668:83: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. hr = IDWriteGdiInterop_ConvertFontToLOGFONT(interop, font, &logfont, &system); data/wine-5.0/dlls/dwrite/tests/font.c:4670:16: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ok(system, "got %d\n", system); data/wine-5.0/dlls/dwrite/tests/font.c:4670:36: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ok(system, "got %d\n", system); data/wine-5.0/dlls/dwrite/tests/font.c:6443:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(logfont.lfFaceName, tahomaW); data/wine-5.0/dlls/dwrite/tests/layout.c:619:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry.locale, descr->localeName); data/wine-5.0/dlls/dwrite/tests/layout.c:660:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry.locale, underline->localeName); data/wine-5.0/dlls/dwrite/tests/layout.c:2544:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, strW); data/wine-5.0/dlls/dwrite/tests/layout.c:2546:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, strW); data/wine-5.0/dlls/dxdiagn/container.c:114:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pwszContainer, p->contName, cchContainer); data/wine-5.0/dlls/dxdiagn/container.c:161:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmp, pwszContainer, tmp_len); data/wine-5.0/dlls/dxdiagn/container.c:219:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pwszPropName, p->propName, cchPropName); data/wine-5.0/dlls/dxdiagn/provider.c:277:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret->contName, name); data/wine-5.0/dlls/dxdiagn/provider.c:300:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret->propName, name); data/wine-5.0/dlls/dxdiagn/provider.c:523:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(language_str, ARRAY_SIZE(language_str), languages_fmtW, system_lang, regional_setting, data/wine-5.0/dlls/dxdiagn/provider.c:534:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(language_str, ARRAY_SIZE(language_str), languages_fmtW, system_lang, data/wine-5.0/dlls/dxdiagn/provider.c:563:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(datetime_str, ARRAY_SIZE(datetime_str), datetime_fmtW, date_str, time_str); data/wine-5.0/dlls/dxdiagn/provider.c:572:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(datetime_str, ARRAY_SIZE(datetime_str), datetime_fmtW, date_str, time_str); data/wine-5.0/dlls/dxdiagn/provider.c:677:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(print_buf, ARRAY_SIZE(print_buf), processor_fmtW, data/wine-5.0/dlls/dxdiagn/provider.c:802:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(print_buf, ARRAY_SIZE(print_buf), physmem_fmtW, data/wine-5.0/dlls/dxdiagn/provider.c:821:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(print_buf, ARRAY_SIZE(print_buf), pagefile_fmtW, usedpage_mb, availpage_mb); data/wine-5.0/dlls/dxdiagn/provider.c:995:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), adapterid_fmtW, index); data/wine-5.0/dlls/dxdiagn/provider.c:1030:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), driverversion_fmtW, data/wine-5.0/dlls/dxdiagn/provider.c:1038:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), id_fmtW, adapter_info.VendorId); data/wine-5.0/dlls/dxdiagn/provider.c:1043:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), id_fmtW, adapter_info.DeviceId); data/wine-5.0/dlls/dxdiagn/provider.c:1048:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), subsysid_fmtW, adapter_info.SubSysId); data/wine-5.0/dlls/dxdiagn/provider.c:1053:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), id_fmtW, adapter_info.Revision); data/wine-5.0/dlls/dxdiagn/provider.c:1087:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), mode_fmtW, adapter_mode.Width, adapter_mode.Height, data/wine-5.0/dlls/dxdiagn/provider.c:1122:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), mem_fmt, available_mem / 1000000.0f); data/wine-5.0/dlls/dxdiagn/provider.c:1301:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), mem_fmt, tmp / 1000000.0f); data/wine-5.0/dlls/dxdiagn/provider.c:1445:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szFile, szFilePath); data/wine-5.0/dlls/dxdiagn/provider.c:1446:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFile, szSlashSep); data/wine-5.0/dlls/dxdiagn/provider.c:1447:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFile, szFileName); data/wine-5.0/dlls/dxdiagn/provider.c:1478:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szVersion_v, ARRAY_SIZE(szVersion_v), szVersionFormat, data/wine-5.0/dlls/dxdiagn/provider.c:1559:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szFileID, ARRAY_SIZE(szFileID), szFormat, i); data/wine-5.0/dlls/dxdiagn/provider.c:1634:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(bufferW, ARRAY_SIZE(bufferW), szVersionFormat, pRF->dwVersion); data/wine-5.0/dlls/dxdiagn/provider.c:1806:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(bufferW, ARRAY_SIZE(bufferW), szIdFormat, i); data/wine-5.0/dlls/dxdiagn/tests/container.c:383:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(dotbufferA, test_strings[i].format, containerbufA, childbufA); data/wine-5.0/dlls/dxgi/tests/dxgi.c:5608:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, output_desc.DeviceName); data/wine-5.0/dlls/explorerframe/nstc.c:604:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(item->pszText, display_name, MAX_PATH); data/wine-5.0/dlls/explorerframe/tests/nstc.c:828:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/explorerframe/tests/nstc.c:830:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, testdirW); data/wine-5.0/dlls/explorerframe/tests/nstc.c:834:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/explorerframe/tests/nstc.c:836:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, testdir2W); data/wine-5.0/dlls/explorerframe/tests/nstc.c:840:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/explorerframe/tests/nstc.c:842:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, test1W); data/wine-5.0/dlls/fusion/asmcache.c:67:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_path, path); data/wine-5.0/dlls/fusion/asmcache.c:118:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, dotnet); data/wine-5.0/dlls/fusion/asmcache.c:120:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, gac + 1); data/wine-5.0/dlls/fusion/asmcache.c:125:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, gac); data/wine-5.0/dlls/fusion/asmcache.c:134:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, msil); data/wine-5.0/dlls/fusion/asmcache.c:138:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, x86); data/wine-5.0/dlls/fusion/asmcache.c:142:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir + len, amd64); data/wine-5.0/dlls/fusion/asmcache.c:401:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_file + src_len, filename ); data/wine-5.0/dlls/fusion/asmcache.c:409:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dst_file + dst_len, filename ); data/wine-5.0/dlls/fusion/asmcache.c:492:19: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. dst_len = swprintf(dst_dir, dst_len, format_v40, asmdir, name, version, token); data/wine-5.0/dlls/fusion/asmcache.c:494:19: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. dst_len = swprintf(dst_dir, dst_len, format, asmdir, name, version, token); data/wine-5.0/dlls/fusion/asmenum.c:189:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, star_prefix_fmt, path, prefix); data/wine-5.0/dlls/fusion/asmenum.c:191:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, star_fmt, path); data/wine-5.0/dlls/fusion/asmenum.c:200:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, ss_fmt, path, disp); data/wine-5.0/dlls/fusion/asmenum.c:202:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, ss_fmt, path, star); data/wine-5.0/dlls/fusion/asmenum.c:221:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(version, ARRAY_SIZE(version), ver_fmt, major, minor, build, revision); data/wine-5.0/dlls/fusion/asmenum.c:236:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, ssss_fmt, path, prefix, verptr, pubkeyptr); data/wine-5.0/dlls/fusion/asmenum.c:238:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, MAX_PATH, sss_fmt, path, verptr, pubkeyptr); data/wine-5.0/dlls/fusion/asmenum.c:337:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parent, ptr); data/wine-5.0/dlls/fusion/asmenum.c:343:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(asmpath, ARRAY_SIZE(asmpath), path_fmt, path, ffd.cFileName, parent); data/wine-5.0/dlls/fusion/asmenum.c:355:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(disp, ARRAY_SIZE(disp), name_fmt, parent, version, token); data/wine-5.0/dlls/fusion/asmenum.c:383:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), ss_fmt, path, ffd.cFileName); data/wine-5.0/dlls/fusion/asmenum.c:410:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, buf); data/wine-5.0/dlls/fusion/asmenum.c:414:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_64); data/wine-5.0/dlls/fusion/asmenum.c:419:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_32); data/wine-5.0/dlls/fusion/asmenum.c:424:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_msil); data/wine-5.0/dlls/fusion/asmenum.c:434:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, buf); data/wine-5.0/dlls/fusion/asmenum.c:437:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_64); data/wine-5.0/dlls/fusion/asmenum.c:442:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_32); data/wine-5.0/dlls/fusion/asmenum.c:447:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac_msil); data/wine-5.0/dlls/fusion/asmenum.c:452:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + size - 1, gac); data/wine-5.0/dlls/fusion/asmname.c:166:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pvProperty, name->name); data/wine-5.0/dlls/fusion/asmname.c:221:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pvProperty, name->culture); data/wine-5.0/dlls/fusion/asmname.c:287:28: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szDisplayName) lstrcpyW(szDisplayName, name->displayname); data/wine-5.0/dlls/fusion/asmname.c:312:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(verstr, period); data/wine-5.0/dlls/fusion/asmname.c:313:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(verstr, value); data/wine-5.0/dlls/fusion/asmname.c:340:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szDisplayName, name->name); data/wine-5.0/dlls/fusion/asmname.c:344:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, separator); data/wine-5.0/dlls/fusion/asmname.c:346:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, version); data/wine-5.0/dlls/fusion/asmname.c:347:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, equals); data/wine-5.0/dlls/fusion/asmname.c:348:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, verstr); data/wine-5.0/dlls/fusion/asmname.c:353:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, separator); data/wine-5.0/dlls/fusion/asmname.c:355:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, culture); data/wine-5.0/dlls/fusion/asmname.c:356:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, equals); data/wine-5.0/dlls/fusion/asmname.c:357:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, cultureval); data/wine-5.0/dlls/fusion/asmname.c:366:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, separator); data/wine-5.0/dlls/fusion/asmname.c:368:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, pubkey); data/wine-5.0/dlls/fusion/asmname.c:369:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, equals); data/wine-5.0/dlls/fusion/asmname.c:375:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, pkt); data/wine-5.0/dlls/fusion/asmname.c:380:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, separator); data/wine-5.0/dlls/fusion/asmname.c:382:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, procarch); data/wine-5.0/dlls/fusion/asmname.c:383:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, equals); data/wine-5.0/dlls/fusion/asmname.c:384:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szDisplayName, name->procarch); data/wine-5.0/dlls/fusion/asmname.c:429:10: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW(pwzName, name->name); data/wine-5.0/dlls/fusion/asmname.c:545:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, name->path); data/wine-5.0/dlls/fusion/assembly.c:755:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cpy, assembly->path); data/wine-5.0/dlls/fusion/assembly.c:782:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*version, 24, format, asmtbl->MajorVersion, asmtbl->MinorVersion, data/wine-5.0/dlls/fusion/fusion.c:130:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, windir); data/wine-5.0/dlls/fusion/fusion.c:140:19: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(path, ARRAY_SIZE(path), zapfmt, windir, assembly + 1, nativeimg, version); data/wine-5.0/dlls/fusion/fusion.c:145:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, assembly); data/wine-5.0/dlls/fusion/fusion.c:147:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, gac); data/wine-5.0/dlls/fusion/fusion.c:157:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, assembly); data/wine-5.0/dlls/fusion/fusion.c:161:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, dotnet); data/wine-5.0/dlls/fusion/fusion.c:163:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, assembly); data/wine-5.0/dlls/fusion/fusion.c:174:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwzCachePath, path); data/wine-5.0/dlls/fusion/fusionpriv.h:453:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/dlls/fusion/tests/asmcache.c:1068:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(asmpath, msil); data/wine-5.0/dlls/fusion/tests/asmcache.c:1069:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(asmpath, winedll); data/wine-5.0/dlls/fusion/tests/asmcache.c:1330:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1331:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1332:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, ver); data/wine-5.0/dlls/fusion/tests/asmcache.c:1354:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1355:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1356:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, otherver); data/wine-5.0/dlls/fusion/tests/asmcache.c:1364:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1365:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1366:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, otherver); data/wine-5.0/dlls/fusion/tests/asmcache.c:1395:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1396:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1397:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, badver); data/wine-5.0/dlls/fusion/tests/asmcache.c:1415:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine2); data/wine-5.0/dlls/fusion/tests/asmcache.c:1433:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, nullpublickey); data/wine-5.0/dlls/fusion/tests/asmcache.c:1439:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, nullpublickey1); data/wine-5.0/dlls/fusion/tests/asmcache.c:1445:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1446:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1447:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, culture); data/wine-5.0/dlls/fusion/tests/asmcache.c:1469:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1470:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1471:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, badculture); data/wine-5.0/dlls/fusion/tests/asmcache.c:1489:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1490:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1491:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, pubkey); data/wine-5.0/dlls/fusion/tests/asmcache.c:1513:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1514:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1515:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, badpubkey); data/wine-5.0/dlls/fusion/tests/asmcache.c:1533:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1534:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1535:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, badprop); data/wine-5.0/dlls/fusion/tests/asmcache.c:1559:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, wine); data/wine-5.0/dlls/fusion/tests/asmcache.c:1560:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, commasep); data/wine-5.0/dlls/fusion/tests/asmcache.c:1561:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, ver); data/wine-5.0/dlls/fusion/tests/asmenum.c:110:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(new_path, path); data/wine-5.0/dlls/fusion/tests/asmenum.c:232:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( end, "\\*", path + MAX_PATH - end ); data/wine-5.0/dlls/fusion/tests/asmenum.c:245:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(end, "%s\\%s.dll", ffd.cFileName, parent); data/wine-5.0/dlls/fusion/tests/asmenum.c:248:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(end, "%s\\%s.exe", ffd.cFileName, parent); data/wine-5.0/dlls/fusion/tests/asmenum.c:257:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(culture, ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:261:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(culture, "neutral"); data/wine-5.0/dlls/fusion/tests/asmenum.c:268:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( name->data, format, parent, ffd.cFileName, culture, ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:281:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( end, "\\*", path + MAX_PATH - end ); data/wine-5.0/dlls/fusion/tests/asmenum.c:289:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( end, ffd.cFileName, path + MAX_PATH - end ); data/wine-5.0/dlls/fusion/tests/asmenum.c:314:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "_32"); data/wine-5.0/dlls/fusion/tests/asmenum.c:318:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "_64"); data/wine-5.0/dlls/fusion/tests/asmenum.c:322:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "_MSIL"); data/wine-5.0/dlls/fusion/tests/asmenum.c:391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[0], "wine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=16a3fcd171e93a8d"); data/wine-5.0/dlls/fusion/tests/asmenum.c:392:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[1], "wine, Version=1.0.1.2, Culture=neutral, PublicKeyToken=123456789abcdef0"); data/wine-5.0/dlls/fusion/tests/asmenum.c:393:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[2], "wine, Version=1.0.1.2, Culture=neutral, PublicKeyToken=16a3fcd171e93a8d"); data/wine-5.0/dlls/fusion/tests/asmenum.c:394:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[3], "Wine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=16a3fcd171e93a8d"); data/wine-5.0/dlls/fusion/tests/asmenum.c:395:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[4], "Wine, Version=1.0.1.2, Culture=neutral, PublicKeyToken=123456789abcdef0"); data/wine-5.0/dlls/fusion/tests/asmenum.c:396:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(exp[5], "Wine, Version=1.0.1.2, Culture=neutral, PublicKeyToken=16a3fcd171e93a8d"); data/wine-5.0/dlls/fusion/tests/asmenum.c:405:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:408:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.0.0__16a3fcd171e93a8d", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:411:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\Wine.dll"); data/wine-5.0/dlls/fusion/tests/asmenum.c:418:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__16a3fcd171e93a8d", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:421:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\Wine.dll"); data/wine-5.0/dlls/fusion/tests/asmenum.c:428:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__123456789abcdef0", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:431:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\Wine.dll"); data/wine-5.0/dlls/fusion/tests/asmenum.c:666:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.0.0__16a3fcd171e93a8d\\Wine.dll", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:668:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__16a3fcd171e93a8d\\Wine.dll", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:670:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__123456789abcdef0\\Wine.dll", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:672:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.0.0__16a3fcd171e93a8d", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:674:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__16a3fcd171e93a8d", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:676:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine\\1.0.1.2__123456789abcdef0", gac); data/wine-5.0/dlls/fusion/tests/asmenum.c:678:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\Wine", gac); data/wine-5.0/dlls/fusion/tests/fusion.c:92:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cachepath, windir); data/wine-5.0/dlls/fusion/tests/fusion.c:93:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, backslash); data/wine-5.0/dlls/fusion/tests/fusion.c:94:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, assembly); data/wine-5.0/dlls/fusion/tests/fusion.c:95:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, backslash); data/wine-5.0/dlls/fusion/tests/fusion.c:96:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, gac); data/wine-5.0/dlls/fusion/tests/fusion.c:117:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/fusion/tests/fusion.c:123:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/fusion/tests/fusion.c:130:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/fusion/tests/fusion.c:136:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cachepath, windir); data/wine-5.0/dlls/fusion/tests/fusion.c:137:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, backslash); data/wine-5.0/dlls/fusion/tests/fusion.c:138:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cachepath, assembly); data/wine-5.0/dlls/fusion/tests/fusion.c:141:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/fusion/tests/fusion.c:159:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(nativeimgA, "NativeImages_"); data/wine-5.0/dlls/fusion/tests/fusion.c:161:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(zapfmtA, "%s\\%s\\%s%s_64"); data/wine-5.0/dlls/fusion/tests/fusion.c:163:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(zapfmtA, "%s\\%s\\%s%s_32"); data/wine-5.0/dlls/fusion/tests/fusion.c:168:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(nativeimgA, "NativeImages1_"); data/wine-5.0/dlls/fusion/tests/fusion.c:169:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(zapfmtA, "%s\\%s\\%s%s"); data/wine-5.0/dlls/fusion/tests/fusion.c:179:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/fusion/tests/fusion.c:187:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, nochange); data/wine-5.0/dlls/gameux/gameexplorer.c:102:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sRegistryPath, sGameUxRegistryPath); data/wine-5.0/dlls/gameux/gameexplorer.c:103:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sRegistryPath, sBackslash); data/wine-5.0/dlls/gameux/gameexplorer.c:134:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sRegistryPath, lpSID); data/wine-5.0/dlls/gameux/gameexplorer.c:144:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sRegistryPath, sGames); data/wine-5.0/dlls/gameux/gameexplorer.c:156:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sRegistryPath, sBackslash); data/wine-5.0/dlls/gameux/gameexplorer.c:157:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sRegistryPath, sInstanceId); data/wine-5.0/dlls/gameux/gameexplorer.c:169:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*lpRegistryPath, sRegistryPath); data/wine-5.0/dlls/gameux/gameexplorer.c:415:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sResourcePath, sRes); data/wine-5.0/dlls/gameux/gameexplorer.c:416:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sResourcePath, GameData->sGDFBinaryPath); data/wine-5.0/dlls/gameux/gameexplorer.c:417:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sResourcePath, sSlash); data/wine-5.0/dlls/gameux/gameexplorer.c:418:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sResourcePath, sDATA); data/wine-5.0/dlls/gameux/gameexplorer.c:419:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sResourcePath, sSlash); data/wine-5.0/dlls/gameux/gameexplorer.c:420:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sResourcePath, ID_GDF_XML_STR); data/wine-5.0/dlls/gameux/gameexplorer.c:539:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(GameData.sGDFBinaryPath, sGDFBinaryPath); data/wine-5.0/dlls/gameux/gameexplorer.c:541:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(GameData.sGameInstallDirectory, sGameInstallDirectory); data/wine-5.0/dlls/gameux/gamestatistics.c:84:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpDirectoryPath, lpFilePath, lpEnd-lpFilePath+1); data/wine-5.0/dlls/gameux/gamestatistics.c:334:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpStatisticsFile, sStatisticsDir); data/wine-5.0/dlls/gameux/gamestatistics.c:335:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpStatisticsFile, lpApplicationId); data/wine-5.0/dlls/gameux/gamestatistics.c:336:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpStatisticsFile, sBackslash); data/wine-5.0/dlls/gameux/gamestatistics.c:337:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpStatisticsFile, lpApplicationId); data/wine-5.0/dlls/gameux/gamestatistics.c:338:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpStatisticsFile, sDotGamestats); data/wine-5.0/dlls/gameux/gamestatistics.c:528:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data->categories[i].sName, V_BSTR(&vValue), MAX_CATEGORY_LENGTH); data/wine-5.0/dlls/gameux/gamestatistics.c:560:41: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data->categories[i].stats[j].sName, V_BSTR(&vValue), MAX_NAME_LENGTH); data/wine-5.0/dlls/gameux/gamestatistics.c:568:41: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data->categories[i].stats[j].sValue, V_BSTR(&vValue), MAX_VALUE_LENGTH); data/wine-5.0/dlls/gameux/gamestatistics.c:803:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->stats.categories[categoryIndex].sName, data/wine-5.0/dlls/gameux/gamestatistics.c:833:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*pTitle, This->stats.categories[categoryIndex].sName); data/wine-5.0/dlls/gameux/gamestatistics.c:871:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*pName, This->stats.categories[categoryIndex].stats[statIndex].sName); data/wine-5.0/dlls/gameux/gamestatistics.c:884:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*pValue, This->stats.categories[categoryIndex].stats[statIndex].sValue); data/wine-5.0/dlls/gameux/gamestatistics.c:920:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->stats.categories[categoryIndex].stats[statIndex].sName, data/wine-5.0/dlls/gameux/gamestatistics.c:933:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->stats.categories[categoryIndex].stats[statIndex].sValue, data/wine-5.0/dlls/gameux/tests/gameexplorer.c:89:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(sExePath, sExeName, StrRChrW(sExeName, NULL, '\\') - sExeName + 1); data/wine-5.0/dlls/gameux/tests/gameexplorer.c:153:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(sExePath, sExeName, StrRChrW(sExeName, NULL, '\\') - sExeName + 1); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:49:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, sExeName); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:108:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sPath, sStatisticsDir); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:109:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sPath, sGuid); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:110:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sPath, sBackslash); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:111:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sPath, sGuid); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:112:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sPath, sDotGamestats); data/wine-5.0/dlls/gameux/tests/gamestatistics.c:119:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*lpStatisticsFile, sPath); data/wine-5.0/dlls/gdi.exe16/env.c:74:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( buffer, lpPortName, sizeof(buffer) ); data/wine-5.0/dlls/gdi.exe16/gdi.c:2416:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lf.lfFaceName, lpFamily, LF_FACESIZE ); data/wine-5.0/dlls/gdi.exe16/printdrv.c:245:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(psCmd,"|lpr -P'%s'",pszOutput+4); data/wine-5.0/dlls/gdi.exe16/printdrv.c:281:13: [4] (shell) execl: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execl("/bin/sh", "/bin/sh", "-c", psCmdP, NULL); data/wine-5.0/dlls/gdi.exe16/printdrv.c:373:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( pPrintJob->pszOutput, lpOutput ); data/wine-5.0/dlls/gdi.exe16/printdrv.c:377:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( pPrintJob->pszTitle, lpTitle ); data/wine-5.0/dlls/gdi.exe16/printdrv.c:586:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(RegStr_Printer, Printers); data/wine-5.0/dlls/gdi.exe16/printdrv.c:587:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(RegStr_Printer, lpPrinter); data/wine-5.0/dlls/gdi.exe16/printdrv.c:681:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(RegStr_Printer, Printers); data/wine-5.0/dlls/gdi.exe16/printdrv.c:682:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(RegStr_Printer, lpPrinter); data/wine-5.0/dlls/gdi32/dc.c:645:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buf, driver); data/wine-5.0/dlls/gdi32/driver.c:530:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( name, font.lfFaceName, size ); data/wine-5.0/dlls/gdi32/driver.c:929:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( driver, displayW, size ); data/wine-5.0/dlls/gdi32/font.c:589:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(logfont.lfFaceName,name,sizeof(logfont.lfFaceName)); data/wine-5.0/dlls/gdi32/font.c:622:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(logfont.lfFaceName, name, ARRAY_SIZE(logfont.lfFaceName)); data/wine-5.0/dlls/gdi32/font.c:1010:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lf.lfFaceName, lpFamily, LF_FACESIZE ); data/wine-5.0/dlls/gdi32/font.c:1031:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( lf.lfFaceName, lpFamily, LF_FACESIZE ); data/wine-5.0/dlls/gdi32/freetype.c:789:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cached_path, wine); data/wine-5.0/dlls/gdi32/freetype.c:797:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cached_path, fonts); data/wine-5.0/dlls/gdi32/freetype.c:920:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(output, "%s/%s_%04x.ttf", out_dir, filename, font_id); data/wine-5.0/dlls/gdi32/freetype.c:1902:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str + 1, family); data/wine-5.0/dlls/gdi32/freetype.c:2741:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s/%s", dirname, dent->d_name); data/wine-5.0/dlls/gdi32/freetype.c:3019:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, data_dir ); data/wine-5.0/dlls/gdi32/freetype.c:3021:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( name, WINE_FONT_DIR ); data/wine-5.0/dlls/gdi32/freetype.c:3027:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, build_dir ); data/wine-5.0/dlls/gdi32/freetype.c:3043:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(unix_name, font_dir); data/wine-5.0/dlls/gdi32/freetype.c:3188:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(valueW, name); data/wine-5.0/dlls/gdi32/freetype.c:3724:31: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. const char *oem, *fixed, *system; data/wine-5.0/dlls/gdi32/freetype.c:4093:96: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. RegSetValueExA(hkey, "FONTS.FON", 0, REG_SZ, (const BYTE *)nls_update_font_list[i].system, strlen(nls_update_font_list[i].system)+1); data/wine-5.0/dlls/gdi32/freetype.c:4093:135: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. RegSetValueExA(hkey, "FONTS.FON", 0, REG_SZ, (const BYTE *)nls_update_font_list[i].system, strlen(nls_update_font_list[i].system)+1); data/wine-5.0/dlls/gdi32/freetype.c:4357:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unixname, home ); data/wine-5.0/dlls/gdi32/freetype.c:4358:25: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( unixname, ptr + 1 ); data/wine-5.0/dlls/gdi32/freetype.c:5528:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(font->fileinfo->path, face->file); data/wine-5.0/dlls/gdi32/freetype.c:5745:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lf.lfFaceName, default_fixed); data/wine-5.0/dlls/gdi32/freetype.c:5747:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lf.lfFaceName, default_serif); data/wine-5.0/dlls/gdi32/freetype.c:5749:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lf.lfFaceName, default_sans); data/wine-5.0/dlls/gdi32/freetype.c:5751:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lf.lfFaceName, default_sans); data/wine-5.0/dlls/gdi32/freetype.c:6158:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfLogFont.lfFaceName, data/wine-5.0/dlls/gdi32/freetype.c:6161:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfFullName, data/wine-5.0/dlls/gdi32/freetype.c:6164:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfStyle, data/wine-5.0/dlls/gdi32/freetype.c:6176:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfLogFont.lfFaceName, family_name, LF_FACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6178:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfFullName, face->FullName, LF_FULLFACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6180:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfFullName, family_name, LF_FULLFACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6181:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pelf->elfStyle, face->StyleName, LF_FACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6265:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(elf.elfScript, list->element[i].name); data/wine-5.0/dlls/gdi32/freetype.c:6272:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(elf.elfLogFont.lfFaceName, family->FamilyName, LF_FACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6274:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(elf.elfFullName, face->FullName, LF_FULLFACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6276:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(elf.elfFullName, family->FamilyName, LF_FULLFACESIZE); data/wine-5.0/dlls/gdi32/freetype.c:6279:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(elf.elfLogFont.lfFaceName, subst); data/wine-5.0/dlls/gdi32/freetype.c:8241:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW((WCHAR*)cp, family_nameW); data/wine-5.0/dlls/gdi32/freetype.c:8244:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW((WCHAR*)cp, style_nameW); data/wine-5.0/dlls/gdi32/freetype.c:8247:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW((WCHAR*)cp, face_nameW); data/wine-5.0/dlls/gdi32/freetype.c:8250:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW((WCHAR*)cp, full_nameW); data/wine-5.0/dlls/gdi32/freetype.c:8653:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(str, physdev->font->name, count); data/wine-5.0/dlls/gdi32/gdiobj.c:58:33: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WORD system : 1; /* system object flag */ data/wine-5.0/dlls/gdi32/gdiobj.c:958:16: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (entry->system) data/wine-5.0/dlls/gdi32/gdiobj.c:1014:50: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if ((entry = handle_entry( obj )) && !entry->system) data/wine-5.0/dlls/gdi32/gdiobj.c:1042:50: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if ((entry = handle_entry( obj )) && !entry->system) data/wine-5.0/dlls/gdi32/metafile.c:282:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( mhd->filename, filename, sizeof mhd->filename ); data/wine-5.0/dlls/gdi32/tests/dc.c:574:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( adapter_name, display_device.DeviceName ); data/wine-5.0/dlls/gdi32/tests/driver.c:55:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, display1W); data/wine-5.0/dlls/gdi32/tests/driver.c:78:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, display_device.DeviceName); data/wine-5.0/dlls/gdi32/tests/driver.c:211:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, display1W); data/wine-5.0/dlls/gdi32/tests/driver.c:392:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, display1W); data/wine-5.0/dlls/gdi32/tests/driver.c:708:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_gdi_desc.DeviceName, display1W); data/wine-5.0/dlls/gdi32/tests/font.c:253:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:952:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, fd[i].face_name); data/wine-5.0/dlls/gdi32/tests/font.c:1783:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, kd[i].face_name); data/wine-5.0/dlls/gdi32/tests/font.c:1909:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, fd[i].face_name); data/wine-5.0/dlls/gdi32/tests/font.c:2409:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Times New Roman"); data/wine-5.0/dlls/gdi32/tests/font.c:2505:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:2699:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, matching_data[i].lfFaceName); data/wine-5.0/dlls/gdi32/tests/font.c:2749:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:2987:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, font_name); data/wine-5.0/dlls/gdi32/tests/font.c:3018:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, font_name); data/wine-5.0/dlls/gdi32/tests/font.c:3076:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, font_name); data/wine-5.0/dlls/gdi32/tests/font.c:3198:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(enum_font.lfFaceName, target.lfFaceName); data/wine-5.0/dlls/gdi32/tests/font.c:4103:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, shell_subst[i].name); data/wine-5.0/dlls/gdi32/tests/font.c:4116:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, shell_subst[i].name); data/wine-5.0/dlls/gdi32/tests/font.c:4203:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, font_subst[i].name); data/wine-5.0/dlls/gdi32/tests/font.c:4225:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, font_subst[i].name); data/wine-5.0/dlls/gdi32/tests/font.c:4515:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:4540:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Terminal"); data/wine-5.0/dlls/gdi32/tests/font.c:4641:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:4975:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, TestName[i]); data/wine-5.0/dlls/gdi32/tests/font.c:5015:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lfex.elfEnumLogfontEx.elfLogFont.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:5035:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(file_name, font_name); data/wine-5.0/dlls/gdi32/tests/font.c:5040:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(file_name, font_name); data/wine-5.0/dlls/gdi32/tests/font.c:5078:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, name); data/wine-5.0/dlls/gdi32/tests/font.c:5579:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, TestName[i]); data/wine-5.0/dlls/gdi32/tests/font.c:5632:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, Family); data/wine-5.0/dlls/gdi32/tests/font.c:5647:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, FaceName); data/wine-5.0/dlls/gdi32/tests/font.c:5771:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "wine_test"); data/wine-5.0/dlls/gdi32/tests/font.c:5811:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "wine_test"); data/wine-5.0/dlls/gdi32/tests/font.c:5856:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "wine_test"); data/wine-5.0/dlls/gdi32/tests/font.c:6055:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, name); data/wine-5.0/dlls/gdi32/tests/font.c:6098:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, face); data/wine-5.0/dlls/gdi32/tests/font.c:6112:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(lf.lfFaceName, face); data/wine-5.0/dlls/gdi32/tests/font.c:6803:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, bitmap_font_list[i].face); data/wine-5.0/dlls/gdi32/tests/font.c:7132:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, face); data/wine-5.0/dlls/gdi32/tests/font.c:7311:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_name, "%s font %s", argv[0], test_names[i]); data/wine-5.0/dlls/gdi32/tests/metafile.c:193:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(orig_lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/metafile.c:798:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(orig_lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/metafile.c:954:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(orig_lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/metafile.c:2482:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/metafile.c:3190:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "mm=%s, xExt=%d, yExt=%d", mm_str, xExt, yExt); data/wine-5.0/dlls/gdiplus/font.c:509:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf->lfFaceName, font->family->FamilyName); data/wine-5.0/dlls/gdiplus/font.c:642:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lf->lfFaceName, elfW->elfFullName, LF_FACESIZE); data/wine-5.0/dlls/gdiplus/font.c:712:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fm->facename, lf.lfFaceName); data/wine-5.0/dlls/gdiplus/font.c:766:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ffamily->FamilyName, fm.facename); data/wine-5.0/dlls/gdiplus/font.c:849:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (name, family->FamilyName, LF_FACESIZE); data/wine-5.0/dlls/gdiplus/font.c:1541:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lfw.lfFaceName, name); data/wine-5.0/dlls/gdiplus/graphics.c:2235:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf->lfFaceName, font->family->FamilyName); data/wine-5.0/dlls/gdiplus/graphics.c:2452:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. UINT access, IStream **stream) data/wine-5.0/dlls/gdiplus/graphics.c:2457:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%s, %u, %p)\n", debugstr_w(filename), access, stream); data/wine-5.0/dlls/gdiplus/graphics.c:2462:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access & GENERIC_WRITE) data/wine-5.0/dlls/gdiplus/graphics.c:2464:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if(access & GENERIC_READ) data/wine-5.0/dlls/gdiplus/image.c:3016:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id.u.pwszVal, prop_name); data/wine-5.0/dlls/gdiplus/image.c:3043:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id.u.pwszVal, prop_name); data/wine-5.0/dlls/gdiplus/tests/font.c:54:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filename); data/wine-5.0/dlls/gdiplus/tests/font.c:191:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lfa.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdiplus/tests/font.c:222:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lfa.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdiplus/tests/font.c:274:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lfa.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdiplus/tests/font.c:689:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf.lfFaceName, Tahoma); data/wine-5.0/dlls/gdiplus/tests/font.c:730:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf.lfFaceName, Tahoma); data/wine-5.0/dlls/gdiplus/tests/font.c:867:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fallback_font,lf.lfFaceName); data/wine-5.0/dlls/gdiplus/tests/font.c:871:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "ThisFontShouldNotExist"); data/wine-5.0/dlls/gdiplus/tests/font.c:893:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "ThisFontShouldNotExist"); data/wine-5.0/dlls/gdiplus/tests/font.c:943:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:42:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dst, str); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:105:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (newfolder, "/%s", name); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:107:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (newfolder, "%s/%s", folder, name); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:1103:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (self->Manufacturer, "The Wine Team", sizeof(self->Manufacturer) - 1); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:1104:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (self->ProductFamily, "GPhoto2 Camera", sizeof(self->ProductFamily) - 1); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:1107:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (self->ProductName, "GPhoto2 Camera", sizeof(self->ProductName) - 1); data/wine-5.0/dlls/hhctrl.ocx/chm.c:233:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, info->pCHMInfo->compiledFile); data/wine-5.0/dlls/hhctrl.ocx/chm.c:234:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, periodW); data/wine-5.0/dlls/hhctrl.ocx/chm.c:235:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, extW); data/wine-5.0/dlls/hhctrl.ocx/chm.c:510:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(base_path, base_file); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:145:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, helpW); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:146:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, filename); data/wine-5.0/dlls/hid/tests/device.c:106:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HANDLE get_device(USHORT page, USHORT usages[], UINT usage_count, DWORD access) data/wine-5.0/dlls/hid/tests/device.c:134:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE file = CreateFileW(data->DevicePath, access, FILE_SHARE_READ|FILE_SHARE_WRITE, NULL, OPEN_EXISTING, FILE_FLAG_OVERLAPPED, 0); data/wine-5.0/dlls/hid/tests/device.c:204:25: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(report, btn); data/wine-5.0/dlls/hid/tests/device.c:307:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(report, bytestr); data/wine-5.0/dlls/hid/tests/device.c:381:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(report, bytestr); data/wine-5.0/dlls/hidclass.sys/device.c:51:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(dev_name, ARRAY_SIZE(dev_name), device_name_fmtW, driver->DriverObject, native_device); data/wine-5.0/dlls/hidclass.sys/device.c:69:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ext->device_name, dev_name); data/wine-5.0/dlls/hidclass.sys/device.c:93:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(device_instance_id, ext->device_id); data/wine-5.0/dlls/hidclass.sys/device.c:94:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(device_instance_id, backslashW); data/wine-5.0/dlls/hidclass.sys/device.c:95:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(device_instance_id, ext->instance_id); data/wine-5.0/dlls/hidclass.sys/device.c:447:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(out_buffer, buffer, length); data/wine-5.0/dlls/hidclass.sys/pnp.c:66:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id, (WCHAR *)irp->IoStatus.Information); data/wine-5.0/dlls/hidclass.sys/pnp.c:194:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ext->instance_id, instance_id); data/wine-5.0/dlls/hidclass.sys/pnp.c:196:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ext->device_id, device_enumeratorW); data/wine-5.0/dlls/hidclass.sys/pnp.c:197:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ext->device_id, separator_W); data/wine-5.0/dlls/hidclass.sys/pnp.c:198:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ext->device_id, wcschr(device_id, '\\') + 1); data/wine-5.0/dlls/hidclass.sys/pnp.c:265:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, ext->device_id); data/wine-5.0/dlls/hidclass.sys/pnp.c:267:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, separator_W); data/wine-5.0/dlls/hidclass.sys/pnp.c:269:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, ext->instance_id); data/wine-5.0/dlls/hidclass.sys/pnp.c:272:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, ext->device_id); data/wine-5.0/dlls/hidclass.sys/pnp.c:275:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, device_enumeratorW); data/wine-5.0/dlls/hidclass.sys/pnp.c:283:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id, ext->device_id); data/wine-5.0/dlls/hidclass.sys/pnp.c:288:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id, ext->instance_id); data/wine-5.0/dlls/hnetcfg/tests/policy.c:155:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->lpUniversalName, fullpath); data/wine-5.0/dlls/http.sys/http.c:932:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer + strlen(buffer), "Date: %s, %02u %s %u %02u:%02u:%02u GMT\r\n", data/wine-5.0/dlls/http.sys/http.c:947:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, response_header); data/wine-5.0/dlls/http.sys/http.c:949:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, response_body); data/wine-5.0/dlls/http.sys/http.c:1072:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(url, params->url); data/wine-5.0/dlls/httpapi/httpapi_main.c:36:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(ret, str); data/wine-5.0/dlls/httpapi/httpapi_main.c:372:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer + strlen(buffer), "Date: %s, %02u %s %u %02u:%02u:%02u GMT\r\n", data/wine-5.0/dlls/httpapi/httpapi_main.c:482:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer->buffer + strlen(buffer->buffer), "%s: %.*s\r\n", data/wine-5.0/dlls/httpapi/tests/httpapi.c:115:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:131:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:142:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:149:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:216:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:230:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:258:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/foobar", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:391:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, tcp_port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:463:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:556:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:638:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, post_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:741:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, post_req2, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:770:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, post_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:858:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, post_req2, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:959:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, req1, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:973:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(expectW, ARRAY_SIZE(expectW), L"http://localhost:%u/foobar?a=b", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:984:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, req2, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:999:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(expectW, ARRAY_SIZE(expectW), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1039:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, req1, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1213:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1227:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1251:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(url, ARRAY_SIZE(url), L"http://localhost:%u/foobar", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1394:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(req_text, simple_req, tcp_port); data/wine-5.0/dlls/ieframe/ieframe.h:358:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, str); data/wine-5.0/dlls/ieframe/iexplore.c:160:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(urlbuf, url); data/wine-5.0/dlls/ieframe/iexplore.c:182:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, dir); data/wine-5.0/dlls/ieframe/iexplore.c:201:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, finddata.cFileName); data/wine-5.0/dlls/ieframe/intshcut.c:97:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( app, menubuilder ); data/wine-5.0/dlls/ieframe/intshcut.c:104:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, app ); data/wine-5.0/dlls/ieframe/intshcut.c:105:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, args ); data/wine-5.0/dlls/ieframe/intshcut.c:139:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, len / sizeof(WCHAR), szFormat, szLink ); data/wine-5.0/dlls/ieframe/navigate.c:114:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), fmt, str); data/wine-5.0/dlls/ieframe/tests/intshcut.c:186:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fileNameW, shortcutW); data/wine-5.0/dlls/ieframe/tests/intshcut.c:332:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(file_path, test_urlW); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:3978:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(file_path, test_file); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:3995:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(file_url, file_path); data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:586:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szPcm); data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:592:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szImaAdPcm); data/wine-5.0/dlls/imagehlp/access.c:186:35: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pLoadedImage->ModuleName) strcpy(pLoadedImage->ModuleName, szFileName); data/wine-5.0/dlls/imagehlp/tests/integrity.c:132:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(sys_dir, "\\"); data/wine-5.0/dlls/imagehlp/tests/integrity.c:134:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(sys_dir, "imagehlp.dll"); data/wine-5.0/dlls/imm32/imm.c:321:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( key, displayW ); data/wine-5.0/dlls/imm32/imm.c:389:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr->imeClassName, bufW); data/wine-5.0/dlls/imm32/imm.c:1794:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( lpszDescription, name, uBufLen ); data/wine-5.0/dlls/inetcomm/mimeole.c:3721:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mhtml_url + ARRAY_SIZE(mhtml_prefixW), display_name); data/wine-5.0/dlls/inetcomm/pop3transport.c:657:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, pass); data/wine-5.0/dlls/inetcomm/pop3transport.c:658:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(command, This->InetTransport.ServerInfo.szPassword); data/wine-5.0/dlls/inetcomm/pop3transport.c:687:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, user); data/wine-5.0/dlls/inetcomm/pop3transport.c:688:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(command, This->InetTransport.ServerInfo.szUserName); data/wine-5.0/dlls/inetcomm/pop3transport.c:883:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, user); data/wine-5.0/dlls/inetcomm/pop3transport.c:884:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(command, username); data/wine-5.0/dlls/inetcomm/pop3transport.c:906:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, pass); data/wine-5.0/dlls/inetcomm/pop3transport.c:907:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(command, password); data/wine-5.0/dlls/inetcomm/pop3transport.c:932:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(command, list, dwPopId); data/wine-5.0/dlls/inetcomm/pop3transport.c:956:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(command, top, dwPopId, cPreviewLines); data/wine-5.0/dlls/inetcomm/pop3transport.c:1031:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(command, uidl, dwPopId); data/wine-5.0/dlls/inetcomm/pop3transport.c:1055:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(command, dele, dwPopId); data/wine-5.0/dlls/inetcomm/pop3transport.c:1077:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(command, retr, dwPopId); data/wine-5.0/dlls/inetcomm/protocol.c:692:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, pwzRelativeUrl); data/wine-5.0/dlls/inetcomm/smtptransport.c:316:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pszCommand, pszHello); data/wine-5.0/dlls/inetcomm/smtptransport.c:317:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(pszCommand, szHostName); data/wine-5.0/dlls/inetcomm/smtptransport.c:495:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, data/wine-5.0/dlls/inetcomm/smtptransport.c:716:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, pszFromAddress); data/wine-5.0/dlls/inetcomm/smtptransport.c:742:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, pszEmailFrom); data/wine-5.0/dlls/inetcomm/smtptransport.c:769:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, pszEmailTo); data/wine-5.0/dlls/inetcomm/smtptransport.c:793:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, szHostname); data/wine-5.0/dlls/inetcomm/smtptransport.c:817:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, szHostname); data/wine-5.0/dlls/inetcomm/smtptransport.c:845:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szCommand, szCommandFormat, pszAuthType); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:872:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:898:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:936:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:944:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:973:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:980:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, subject); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1070:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, string); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1084:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, zero); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1157:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1170:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1432:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(urla, test->url, file_name); data/wine-5.0/dlls/inetcpl.cpl/security.c:138:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(&name[len], za->szDisplayName, ARRAY_SIZE(name) - len - 1); data/wine-5.0/dlls/iphlpapi/ifenum.c:119:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:411:7: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:430:7: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:454:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:551:7: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:703:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:735:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifr.ifr_name, name, IFNAMSIZ); data/wine-5.0/dlls/iphlpapi/ifenum.c:1117:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(string, inet_ntoa(iAddr), 16); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:3189:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( name, row.wszName ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1990:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( link, "/proc/%u/fd/%s", map[i].unix_pid, dirent->d_name ); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:406:15: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "dest %s", ntoa( buf->table[i].dwForwardDest )); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:407:15: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer + strlen(buffer), " mask %s", ntoa( buf->table[i].dwForwardMask )); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:894:15: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "local %s:%u", data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1624:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(remote_ip, ntoa(table_ex->table[i].dwRemoteAddr)); data/wine-5.0/dlls/itss/chm_lib.c:1437:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(prefixRectified, prefix, CHM_MAX_PATHLEN); data/wine-5.0/dlls/itss/chm_lib.c:1512:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lastPath, ui.path); data/wine-5.0/dlls/itss/moniker.c:295:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( str, len, szFormat, This->szFile, This->szHtml ); data/wine-5.0/dlls/itss/moniker.c:360:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( itsmon->szFile, name ); data/wine-5.0/dlls/itss/protocol.c:518:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwzResult + (base_end-pwzBaseUrl), pwzRelativeUrl); data/wine-5.0/dlls/itss/storage.c:170:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( rgelt->pwcsName, str ); data/wine-5.0/dlls/itss/storage.c:348:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, This->dir ); data/wine-5.0/dlls/itss/storage.c:356:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, pwcsName ); data/wine-5.0/dlls/itss/storage.c:420:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, This->dir ); data/wine-5.0/dlls/itss/storage.c:428:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, pwcsName ); data/wine-5.0/dlls/itss/storage.c:625:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( stg->dir, dir ); data/wine-5.0/dlls/jscript/date.c:543:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatNoOffsetW, week, month, day, data/wine-5.0/dlls/jscript/date.c:547:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, week, month, day, data/wine-5.0/dlls/jscript/date.c:552:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatUTCW, week, month, day, data/wine-5.0/dlls/jscript/date.c:659:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf(p, ARRAY_SIZE(buf) - 1, long_year_formatW, -(int)year); data/wine-5.0/dlls/jscript/date.c:662:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf(p, ARRAY_SIZE(buf) - 1, long_year_formatW, (int)year); data/wine-5.0/dlls/jscript/date.c:664:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf(p, ARRAY_SIZE(buf), short_year_formatW, (int)year); data/wine-5.0/dlls/jscript/date.c:667:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(p, ARRAY_SIZE(buf) - (p - buf), formatW, data/wine-5.0/dlls/jscript/date.c:747:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatAD ? formatADW : formatBCW, week, day, month, year, data/wine-5.0/dlls/jscript/date.c:824:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatAD ? formatADW : formatBCW, week, month, day, year); data/wine-5.0/dlls/jscript/date.c:885:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, (int)hour_from_time(time), data/wine-5.0/dlls/jscript/date.c:889:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatUTCW, (int)hour_from_time(time), data/wine-5.0/dlls/jscript/dispex.c:2163:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, idx); data/wine-5.0/dlls/jscript/dispex.c:2241:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), formatW, idx); data/wine-5.0/dlls/jscript/dispex.c:2310:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, idx); data/wine-5.0/dlls/jscript/json.c:484:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, *ptr); data/wine-5.0/dlls/jscript/number.c:335:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(&buf[idx], ARRAY_SIZE(buf) - idx, formatW, ch, (int)log_radix); data/wine-5.0/dlls/jscript/object.c:96:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ptr, 9 + lstrlenW(str), formatW, str); data/wine-5.0/dlls/jscript/tests/jscript.c:1301:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(str, var[i].name); data/wine-5.0/dlls/jscript/tests/jscript.c:1310:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(str, func[i].name); data/wine-5.0/dlls/jsproxy/main.c:300:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, size, fmt, data/wine-5.0/dlls/jsproxy/main.c:489:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + len, script ); data/wine-5.0/dlls/kernel32/computername.c:95:44: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (strlen( host->h_name ) < size) strcpy( name, host->h_name ); data/wine-5.0/dlls/kernel32/console.c:228:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI OpenConsoleW(LPCWSTR name, DWORD access, BOOL inherit, DWORD creation) data/wine-5.0/dlls/kernel32/console.c:233:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%s, 0x%08x, %d, %u)\n", debugstr_w(name), access, inherit, creation); data/wine-5.0/dlls/kernel32/console.c:252:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/kernel32/console.c:289:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DuplicateConsoleHandle(HANDLE handle, DWORD access, BOOL inherit, data/wine-5.0/dlls/kernel32/console.c:296:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. GetCurrentProcess(), &ret, access, inherit, options)) data/wine-5.0/dlls/kernel32/editline.c:391:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, ctx->histCurr); data/wine-5.0/dlls/kernel32/file.c:62:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, sharing, creation; data/wine-5.0/dlls/kernel32/file.c:90:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateFileA( path, access, sharing, NULL, creation, FILE_ATTRIBUTE_NORMAL, 0 ); data/wine-5.0/dlls/kernel32/format_msg.c:156:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( *result, str ); data/wine-5.0/dlls/kernel32/format_msg.c:599:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( from, lpSource ); data/wine-5.0/dlls/kernel32/format_msg.c:628:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(*(LPWSTR*)lpBuffer, target); data/wine-5.0/dlls/kernel32/format_msg.c:638:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpBuffer, target); data/wine-5.0/dlls/kernel32/lzexpand.c:252:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out,in); data/wine-5.0/dlls/kernel32/lzexpand.c:517:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( mfn, fn ); data/wine-5.0/dlls/kernel32/path.c:834:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( path, DIR_System ); data/wine-5.0/dlls/kernel32/process.c:186:31: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. UINT WINAPI DECLSPEC_HOTPATCH WinExec( LPCSTR lpCmdLine, UINT nCmdShow ) data/wine-5.0/dlls/kernel32/process.c:200:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( cmdline, lpCmdLine ); data/wine-5.0/dlls/kernel32/process.c:246:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( cmdline, filename ); data/wine-5.0/dlls/kernel32/profile.c:116:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, value, len ); data/wine-5.0/dlls/kernel32/profile.c:221:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, section->name ); data/wine-5.0/dlls/kernel32/profile.c:230:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, key->name ); data/wine-5.0/dlls/kernel32/profile.c:235:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, key->value ); data/wine-5.0/dlls/kernel32/profile.c:628:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( (*key)->name, key_name ); data/wine-5.0/dlls/kernel32/profile.c:638:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( (*section)->name, section_name ); data/wine-5.0/dlls/kernel32/profile.c:646:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( (*section)->key->name, key_name ); data/wine-5.0/dlls/kernel32/profile.c:765:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, windirW); data/wine-5.0/dlls/kernel32/profile.c:839:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( CurProfile->filename, buffer ); data/wine-5.0/dlls/kernel32/profile.c:1059:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( key->value, value ); data/wine-5.0/dlls/kernel32/profile.c:1126:8: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, def_val, len ); data/wine-5.0/dlls/kernel32/profile.c:1446:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buf, string ); data/wine-5.0/dlls/kernel32/resource.c:1213:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(updates->pFileName, pFileName); data/wine-5.0/dlls/kernel32/string.c:41:14: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPSTR WINAPI lstrcatA( LPSTR dst, LPCSTR src ) data/wine-5.0/dlls/kernel32/string.c:45:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( dst, src ); data/wine-5.0/dlls/kernel32/string.c:60:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPWSTR WINAPI lstrcatW( LPWSTR dst, LPCWSTR src ) data/wine-5.0/dlls/kernel32/string.c:80:14: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). LPSTR WINAPI lstrcpyA( LPSTR dst, LPCSTR src ) data/wine-5.0/dlls/kernel32/string.c:100:15: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). LPWSTR WINAPI lstrcpyW( LPWSTR dst, LPCWSTR src ) data/wine-5.0/dlls/kernel32/string.c:104:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( dst, src ); data/wine-5.0/dlls/kernel32/sync.c:197:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenMutexA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernel32/sync.c:201:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenMutexW( access, inherit, NULL ); data/wine-5.0/dlls/kernel32/sync.c:208:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenMutexW( access, inherit, buffer ); data/wine-5.0/dlls/kernel32/sync.c:232:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPCSTR name, DWORD flags, DWORD access ) data/wine-5.0/dlls/kernel32/sync.c:236:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateSemaphoreExW( sa, initial, max, NULL, flags, access ); data/wine-5.0/dlls/kernel32/sync.c:243:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateSemaphoreExW( sa, initial, max, buffer, flags, access ); data/wine-5.0/dlls/kernel32/sync.c:250:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenSemaphoreA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernel32/sync.c:254:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenSemaphoreW( access, inherit, NULL ); data/wine-5.0/dlls/kernel32/sync.c:261:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenSemaphoreW( access, inherit, buffer ); data/wine-5.0/dlls/kernel32/sync.c:309:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI OpenJobObjectW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernel32/sync.c:318:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtOpenJobObject( &ret, access, &attr ); data/wine-5.0/dlls/kernel32/sync.c:330:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI OpenJobObjectA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernel32/sync.c:334:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenJobObjectW( access, inherit, NULL ); data/wine-5.0/dlls/kernel32/sync.c:341:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenJobObjectW( access, inherit, buffer ); data/wine-5.0/dlls/kernel32/sync.c:404:96: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI CreateWaitableTimerExA( SECURITY_ATTRIBUTES *sa, LPCSTR name, DWORD flags, DWORD access ) data/wine-5.0/dlls/kernel32/sync.c:408:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateWaitableTimerExW( sa, NULL, flags, access ); data/wine-5.0/dlls/kernel32/sync.c:415:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateWaitableTimerExW( sa, buffer, flags, access ); data/wine-5.0/dlls/kernel32/sync.c:422:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI OpenWaitableTimerA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernel32/sync.c:426:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenWaitableTimerW( access, inherit, NULL ); data/wine-5.0/dlls/kernel32/sync.c:433:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenWaitableTimerW( access, inherit, buffer ); data/wine-5.0/dlls/kernel32/sync.c:482:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI OpenFileMappingA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernel32/sync.c:486:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenFileMappingW( access, inherit, NULL ); data/wine-5.0/dlls/kernel32/sync.c:493:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenFileMappingW( access, inherit, buffer ); data/wine-5.0/dlls/kernel32/term.c:383:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmp, TERM_dbkey_init[i].string_xterm); data/wine-5.0/dlls/kernel32/tests/actctx.c:1322:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, verW); data/wine-5.0/dlls/kernel32/tests/actctx.c:1323:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff, clsname); data/wine-5.0/dlls/kernel32/tests/actctx.c:2576:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s manifest1", argv[0], argv[1]); data/wine-5.0/dlls/kernel32/tests/actctx.c:2594:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(app_dir, exe_path); data/wine-5.0/dlls/kernel32/tests/actctx.c:2601:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(work_dir, backslash); data/wine-5.0/dlls/kernel32/tests/actctx.c:2602:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(work_dir_subdir, work_dir); data/wine-5.0/dlls/kernel32/tests/actctx.c:2603:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(work_dir_subdir, subdir); data/wine-5.0/dlls/kernel32/tests/actctx.c:2606:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(app_manifest_path+lstrlenW(app_manifest_path), dot_manifest); data/wine-5.0/dlls/kernel32/tests/actctx.c:2616:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/kernel32/tests/actctx.c:2629:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/kernel32/tests/actctx.c:2698:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dll, dir); data/wine-5.0/dlls/kernel32/tests/actctx.c:2739:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dir, path); data/wine-5.0/dlls/kernel32/tests/actctx.c:3225:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(info->path_tmp, temp); data/wine-5.0/dlls/kernel32/tests/actctx.c:3229:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(info->path_dll, "%s%s", info->path_tmp, "sxs_dll.dll"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3232:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(info->path_manifest_exe, "%s%s", info->path_tmp, "exe.manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3235:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(info->path_manifest_dll, "%s%s", info->path_tmp, "sxs_dll.manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3343:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_dll_local, "%s%s", path_application, "sxs_dll.dll"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3383:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_dll_local, "%s%s", path_application, "sxs_dll.dll"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3423:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_dll_local, "%s%s", path_tmp, "sxs_dll.dll"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3466:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_manifest, "%s%s", path_tmp, "exe.manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3551:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s", argv[0]); data/wine-5.0/dlls/kernel32/tests/actctx.c:3553:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s.exe", argv[0]); data/wine-5.0/dlls/kernel32/tests/actctx.c:3554:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s two_dll %d", argv[0], argv[1], run); data/wine-5.0/dlls/kernel32/tests/change.c:146:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dirname1, filename1); data/wine-5.0/dlls/kernel32/tests/change.c:147:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dirname1, "dir"); data/wine-5.0/dlls/kernel32/tests/change.c:149:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dirname2, dirname1); data/wine-5.0/dlls/kernel32/tests/change.c:150:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dirname2, "new"); data/wine-5.0/dlls/kernel32/tests/change.c:189:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(filename2, filename1); data/wine-5.0/dlls/kernel32/tests/change.c:190:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(filename2, "new"); data/wine-5.0/dlls/kernel32/tests/change.c:277:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/kernel32/tests/change.c:278:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/kernel32/tests/change.c:279:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/kernel32/tests/change.c:281:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, path ); data/wine-5.0/dlls/kernel32/tests/change.c:282:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, szZoo ); data/wine-5.0/dlls/kernel32/tests/change.c:443:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/kernel32/tests/change.c:444:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/kernel32/tests/change.c:445:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/kernel32/tests/change.c:447:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subsubdir, path ); data/wine-5.0/dlls/kernel32/tests/change.c:448:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subsubdir, szGa ); data/wine-5.0/dlls/kernel32/tests/change.c:693:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/kernel32/tests/change.c:694:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/kernel32/tests/change.c:695:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/kernel32/tests/change.c:788:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/kernel32/tests/change.c:789:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/kernel32/tests/change.c:790:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/kernel32/tests/change.c:792:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, path ); data/wine-5.0/dlls/kernel32/tests/change.c:793:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, szFoo ); data/wine-5.0/dlls/kernel32/tests/change.c:885:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, szBoo); data/wine-5.0/dlls/kernel32/tests/change.c:886:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir, path); data/wine-5.0/dlls/kernel32/tests/change.c:887:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dir, szDir); data/wine-5.0/dlls/kernel32/tests/change.c:888:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file, path); data/wine-5.0/dlls/kernel32/tests/change.c:889:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(file, szFile); data/wine-5.0/dlls/kernel32/tests/change.c:890:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sub_file, dir); data/wine-5.0/dlls/kernel32/tests/change.c:891:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sub_file, szBackslash); data/wine-5.0/dlls/kernel32/tests/change.c:892:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sub_file, szFile); data/wine-5.0/dlls/kernel32/tests/change.c:1083:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(parentdir, tempfile); data/wine-5.0/dlls/kernel32/tests/change.c:1087:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(childdir, parentdir); data/wine-5.0/dlls/kernel32/tests/change.c:1088:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(childdir, "\\c"); data/wine-5.0/dlls/kernel32/tests/comm.c:661:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(string, test[i].string); data/wine-5.0/dlls/kernel32/tests/console.c:1120:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/kernel32/tests/console.c:1159:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/kernel32/tests/console.c:1194:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = pOpenConsoleW(invalid_table[index].name, invalid_table[index].access, data/wine-5.0/dlls/kernel32/tests/console.c:1207:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = pOpenConsoleW(valid_table[index].name, valid_table[index].access, data/wine-5.0/dlls/kernel32/tests/console.c:1235:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/kernel32/tests/console.c:1268:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = CreateFileW(cf_table[index].name, cf_table[index].access, data/wine-5.0/dlls/kernel32/tests/console.c:3223:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "\"%s\" console attach_console %x", argv[0], GetCurrentProcessId()); data/wine-5.0/dlls/kernel32/tests/debugger.c:111:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(event_name, "start_%s", basename); data/wine-5.0/dlls/kernel32/tests/debugger.c:113:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(event_name, "done_%s", basename); data/wine-5.0/dlls/kernel32/tests/debugger.c:580:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s debugger %s \"%s\" %%ld %%ld", argv0, dbgtasks, dbglog); data/wine-5.0/dlls/kernel32/tests/debugger.c:586:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s debugger crash", argv0); data/wine-5.0/dlls/kernel32/tests/debugger.c:677:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s debugger crash", argv0); data/wine-5.0/dlls/kernel32/tests/debugger.c:897:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s%s%08x \"%s\"", argv[0], arguments, pid, blackbox_file); data/wine-5.0/dlls/kernel32/tests/debugger.c:965:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(event_name, p); data/wine-5.0/dlls/kernel32/tests/debugger.c:974:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(event_name, p); data/wine-5.0/dlls/kernel32/tests/debugger.c:982:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s %s", argv[0], arguments); data/wine-5.0/dlls/kernel32/tests/debugger.c:1024:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s %s \"%s\"", name, arguments, blackbox_file); data/wine-5.0/dlls/kernel32/tests/debugger.c:1028:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(event_name, p); data/wine-5.0/dlls/kernel32/tests/debugger.c:1035:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(event_name, p); data/wine-5.0/dlls/kernel32/tests/debugger.c:1265:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s%s%x\n", argv0, arguments, (DWORD)(DWORD_PTR)event); data/wine-5.0/dlls/kernel32/tests/directory.c:38:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static void test_granted_access(HANDLE handle, ACCESS_MASK access, int line) data/wine-5.0/dlls/kernel32/tests/directory.c:46:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok_(__FILE__, line)(obj_info.GrantedAccess == access, "Granted access should " data/wine-5.0/dlls/kernel32/tests/directory.c:47:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "be 0x%08x, instead of 0x%08x\n", access, obj_info.GrantedAccess); data/wine-5.0/dlls/kernel32/tests/directory.c:61:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:65:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:71:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:93:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:99:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:105:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:125:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:131:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:137:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/directory.c:159:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:165:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:171:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/directory.c:219:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:232:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "?"); data/wine-5.0/dlls/kernel32/tests/directory.c:247:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me/Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:257:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me."); data/wine-5.0/dlls/kernel32/tests/directory.c:262:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "/Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:271:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:280:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me.."); data/wine-5.0/dlls/kernel32/tests/directory.c:285:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "/Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:298:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:307:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me "); data/wine-5.0/dlls/kernel32/tests/directory.c:312:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "/Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:325:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:334:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me "); data/wine-5.0/dlls/kernel32/tests/directory.c:339:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "/Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:352:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:406:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, tmp_dir_name); data/wine-5.0/dlls/kernel32/tests/directory.c:417:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, questionW); data/wine-5.0/dlls/kernel32/tests/directory.c:434:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, tmp_dir_name); data/wine-5.0/dlls/kernel32/tests/directory.c:435:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, slashW); data/wine-5.0/dlls/kernel32/tests/directory.c:436:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, tmp_dir_name); data/wine-5.0/dlls/kernel32/tests/directory.c:454:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "Please Remove Me"); data/wine-5.0/dlls/kernel32/tests/directory.c:473:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tmpdir, "?"); data/wine-5.0/dlls/kernel32/tests/directory.c:497:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, tmp_dir_name); data/wine-5.0/dlls/kernel32/tests/directory.c:522:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmpdir, questionW); data/wine-5.0/dlls/kernel32/tests/environ.c:111:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:117:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:123:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:133:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:146:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:156:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/environ.c:210:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:219:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:225:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:235:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:248:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:257:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/environ.c:333:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, not_an_env_var); data/wine-5.0/dlls/kernel32/tests/file.c:1314:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dirname, temp_path); data/wine-5.0/dlls/kernel32/tests/file.c:1315:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(dirname, directory); data/wine-5.0/dlls/kernel32/tests/file.c:1328:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, p[i].file); data/wine-5.0/dlls/kernel32/tests/file.c:1333:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, p[i].file); data/wine-5.0/dlls/kernel32/tests/file.c:1339:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, temp_path); data/wine-5.0/dlls/kernel32/tests/file.c:1340:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(filename, p[i].file); data/wine-5.0/dlls/kernel32/tests/file.c:1408:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, nt_drive); data/wine-5.0/dlls/kernel32/tests/file.c:1439:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, nt_drive); data/wine-5.0/dlls/kernel32/tests/file.c:1455:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, nt_drive); data/wine-5.0/dlls/kernel32/tests/file.c:1457:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( filename, temp_path ); data/wine-5.0/dlls/kernel32/tests/file.c:1470:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, nt_drive); data/wine-5.0/dlls/kernel32/tests/file.c:1505:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, Volume_1); data/wine-5.0/dlls/kernel32/tests/file.c:1525:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, Volume_1); data/wine-5.0/dlls/kernel32/tests/file.c:1526:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(filename, temp_path+3); data/wine-5.0/dlls/kernel32/tests/file.c:1542:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, Volume_1); data/wine-5.0/dlls/kernel32/tests/file.c:1782:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(expected, windowsdir); data/wine-5.0/dlls/kernel32/tests/file.c:1870:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, dirW); data/wine-5.0/dlls/kernel32/tests/file.c:1871:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathsubW, pathW); data/wine-5.0/dlls/kernel32/tests/file.c:1872:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathsubW, subdirW); data/wine-5.0/dlls/kernel32/tests/file.c:1968:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(tempdir, "Remove Me"); data/wine-5.0/dlls/kernel32/tests/file.c:1972:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(source, dest); data/wine-5.0/dlls/kernel32/tests/file.c:1973:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, tempdir); data/wine-5.0/dlls/kernel32/tests/file.c:1974:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dest, "\\wild?.*"); data/wine-5.0/dlls/kernel32/tests/file.c:1987:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(temppath, tempdir); data/wine-5.0/dlls/kernel32/tests/file.c:1988:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(temppath, "\\*.*"); data/wine-5.0/dlls/kernel32/tests/file.c:2326:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int map_file_access( unsigned int access ) data/wine-5.0/dlls/kernel32/tests/file.c:2328:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/dlls/kernel32/tests/file.c:2328:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/dlls/kernel32/tests/file.c:2329:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/dlls/kernel32/tests/file.c:2329:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/dlls/kernel32/tests/file.c:2330:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/dlls/kernel32/tests/file.c:2330:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/dlls/kernel32/tests/file.c:2331:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/dlls/kernel32/tests/file.c:2331:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/dlls/kernel32/tests/file.c:2332:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/dlls/kernel32/tests/file.c:2567:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2600:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, nonexistent); data/wine-5.0/dlls/kernel32/tests/file.c:2611:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, nonexistent); data/wine-5.0/dlls/kernel32/tests/file.c:2619:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, nonexistent); data/wine-5.0/dlls/kernel32/tests/file.c:2628:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, nonexistent); data/wine-5.0/dlls/kernel32/tests/file.c:2637:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, nonexistent + 3); data/wine-5.0/dlls/kernel32/tests/file.c:2646:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2687:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2696:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2705:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2714:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer2, buffer); data/wine-5.0/dlls/kernel32/tests/file.c:2898:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(missing, tests[i].result); data/wine-5.0/dlls/kernel32/tests/file.c:2913:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(correct, quoted); data/wine-5.0/dlls/kernel32/tests/file.c:2916:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(incorrect, quoted); data/wine-5.0/dlls/kernel32/tests/file.c:3265:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, file ); data/wine-5.0/dlls/kernel32/tests/file.c:3288:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, foo + 2 ); data/wine-5.0/dlls/kernel32/tests/file.c:3309:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(buff_long, foo_too_long + 1); /* Avoid '.' during concatenation */ data/wine-5.0/dlls/kernel32/tests/file.c:3335:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, filename ); data/wine-5.0/dlls/kernel32/tests/file.c:3877:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD disposition, access, error, clean_up; data/wine-5.0/dlls/kernel32/tests/file.c:3953:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hfile = CreateFileA(file_name, td[i].access, 0, NULL, td[i].disposition, 0, 0); data/wine-5.0/dlls/kernel32/tests/file.c:3960:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (td[i].access & GENERIC_WRITE) data/wine-5.0/dlls/kernel32/tests/file.c:3969:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (td[i].access & GENERIC_WRITE) /* actually FILE_WRITE_ATTRIBUTES */ data/wine-5.0/dlls/kernel32/tests/file.c:3984:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (td[i].disposition == TRUNCATE_EXISTING && !(td[i].access & GENERIC_WRITE)) data/wine-5.0/dlls/kernel32/tests/file.c:4636:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned file_map_access(unsigned access) data/wine-5.0/dlls/kernel32/tests/file.c:4638:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/dlls/kernel32/tests/file.c:4638:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/dlls/kernel32/tests/file.c:4639:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/dlls/kernel32/tests/file.c:4639:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/dlls/kernel32/tests/file.c:4640:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/dlls/kernel32/tests/file.c:4640:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/dlls/kernel32/tests/file.c:4641:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/dlls/kernel32/tests/file.c:4641:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/dlls/kernel32/tests/file.c:4642:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/dlls/kernel32/tests/file.c:4656:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned access, create_error, write_error, read_error; data/wine-5.0/dlls/kernel32/tests/file.c:4681:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hfile = CreateFileA(fname, td[i].access, 0, NULL, CREATE_ALWAYS, data/wine-5.0/dlls/kernel32/tests/file.c:4696:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. td[j].access, 0, 0); data/wine-5.0/dlls/kernel32/tests/file.c:4697:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_access_compatible(td[i].access, td[j].access)) data/wine-5.0/dlls/kernel32/tests/file.c:4697:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_access_compatible(td[i].access, td[j].access)) data/wine-5.0/dlls/kernel32/tests/file.c:4698:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(ret, "DuplicateHandle(%#x => %#x) error %d\n", td[i].access, td[j].access, GetLastError()); data/wine-5.0/dlls/kernel32/tests/file.c:4698:87: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(ret, "DuplicateHandle(%#x => %#x) error %d\n", td[i].access, td[j].access, GetLastError()); data/wine-5.0/dlls/kernel32/tests/file.c:4702:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. todo_wine_if((td[j].access & (GENERIC_READ | GENERIC_WRITE) || data/wine-5.0/dlls/kernel32/tests/file.c:4703:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_WRITE | FILE_WRITE_DATA)) && (td[j].access & FILE_WRITE_DATA)) || data/wine-5.0/dlls/kernel32/tests/file.c:4703:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_WRITE | FILE_WRITE_DATA)) && (td[j].access & FILE_WRITE_DATA)) || data/wine-5.0/dlls/kernel32/tests/file.c:4704:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_READ | FILE_READ_DATA)) && (td[j].access & FILE_READ_DATA)) || data/wine-5.0/dlls/kernel32/tests/file.c:4704:91: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_READ | FILE_READ_DATA)) && (td[j].access & FILE_READ_DATA)) || data/wine-5.0/dlls/kernel32/tests/file.c:4705:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_WRITE)) && (td[j].access & FILE_APPEND_DATA)))) data/wine-5.0/dlls/kernel32/tests/file.c:4705:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (!(td[i].access & (GENERIC_WRITE)) && (td[j].access & FILE_APPEND_DATA)))) data/wine-5.0/dlls/kernel32/tests/file.c:4707:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!ret, "DuplicateHandle(%#x => %#x) should fail\n", td[i].access, td[j].access); data/wine-5.0/dlls/kernel32/tests/file.c:4707:91: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!ret, "DuplicateHandle(%#x => %#x) should fail\n", td[i].access, td[j].access); data/wine-5.0/dlls/kernel32/tests/file.c:4787:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dos_path, dos_prefix); data/wine-5.0/dlls/kernel32/tests/file.c:4788:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(dos_path, long_path); data/wine-5.0/dlls/kernel32/tests/file.c:4884:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dos_path, dos_prefix); data/wine-5.0/dlls/kernel32/tests/file.c:4885:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dos_path, long_path); data/wine-5.0/dlls/kernel32/tests/file.c:4938:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(volume_path, long_path + lstrlenW(drive_part)); data/wine-5.0/dlls/kernel32/tests/file.c:4958:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(nt_path, file_part); data/wine-5.0/dlls/kernel32/tests/heap.c:1079:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( keyname, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\%s", data/wine-5.0/dlls/kernel32/tests/heap.c:1100:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "%s heap.c 0x%x", argv0, flags ); data/wine-5.0/dlls/kernel32/tests/loader.c:537:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( load_path, load_test_name ); data/wine-5.0/dlls/kernel32/tests/loader.c:538:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_path, sepW ); data/wine-5.0/dlls/kernel32/tests/loader.c:539:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_path, load_fallback_name ); data/wine-5.0/dlls/kernel32/tests/loader.c:540:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_path, sepW ); data/wine-5.0/dlls/kernel32/tests/loader.c:543:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_test_name, bsW ); data/wine-5.0/dlls/kernel32/tests/loader.c:544:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_test_name, wldr_nameW ); data/wine-5.0/dlls/kernel32/tests/loader.c:545:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_fallback_name, bsW ); data/wine-5.0/dlls/kernel32/tests/loader.c:546:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( load_fallback_name, wldr_nameW ); data/wine-5.0/dlls/kernel32/tests/loader.c:1475:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( long_path, dll_name ); data/wine-5.0/dlls/kernel32/tests/loader.c:1513:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dll_name, long_path ); data/wine-5.0/dlls/kernel32/tests/loader.c:3078:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 0", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3096:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 1", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3114:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 2", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3132:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 3", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3152:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 4", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3175:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 5", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3202:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 6", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/loader.c:3228:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" loader %s %u 7", argv[0], dll_name, target_offset); data/wine-5.0/dlls/kernel32/tests/locale.c:144:23: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define STRINGSA(x,y) strcpy(input, x); strcpy(Expected, y); SetLastError(0xdeadbeef); buffer[0] = '\0' data/wine-5.0/dlls/kernel32/tests/locale.c:144:41: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define STRINGSA(x,y) strcpy(input, x); strcpy(Expected, y); SetLastError(0xdeadbeef); buffer[0] = '\0' data/wine-5.0/dlls/kernel32/tests/locale.c:748:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, Expected); data/wine-5.0/dlls/kernel32/tests/locale.c:901:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(genitive_month, buffer + 2); data/wine-5.0/dlls/kernel32/tests/locale.c:904:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(month, buffer); data/wine-5.0/dlls/kernel32/tests/locale.c:909:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(short_day, buffer); data/wine-5.0/dlls/kernel32/tests/locale.c:912:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "04 %s%s 04", genitive_month, short_day); data/wine-5.0/dlls/kernel32/tests/locale.c:918:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "%s%s 04", month, short_day); data/wine-5.0/dlls/kernel32/tests/locale.c:924:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "%s%s", month, short_day); data/wine-5.0/dlls/kernel32/tests/locale.c:930:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "%s04", genitive_month); data/wine-5.0/dlls/kernel32/tests/locale.c:931:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Broken, "%s04", month); data/wine-5.0/dlls/kernel32/tests/locale.c:939:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "%s04 %s", genitive_month, short_day); data/wine-5.0/dlls/kernel32/tests/locale.c:940:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Broken, "%s04 %s", month, short_day); data/wine-5.0/dlls/kernel32/tests/locale.c:948:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "04 %s%s", short_day, month); data/wine-5.0/dlls/kernel32/tests/locale.c:954:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "04 %s%s %s %s04", short_day, month, short_day, genitive_month); data/wine-5.0/dlls/kernel32/tests/locale.c:955:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Broken, "04 %s%s %s %s04", short_day, month, short_day, month); data/wine-5.0/dlls/kernel32/tests/locale.c:964:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Expected, "%s, %s 04", short_day, genitive_month); data/wine-5.0/dlls/kernel32/tests/locale.c:965:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(Broken, "%s, %s 04", short_day, month); data/wine-5.0/dlls/kernel32/tests/locale.c:2297:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/locale.c:2332:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, lower_case); data/wine-5.0/dlls/kernel32/tests/locale.c:2344:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, upper_case); data/wine-5.0/dlls/kernel32/tests/locale.c:2408:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/locale.c:2416:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/locale.c:2424:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/locale.c:2482:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/locale.c:2600:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, lower_case); data/wine-5.0/dlls/kernel32/tests/locale.c:2606:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, upper_case); data/wine-5.0/dlls/kernel32/tests/locale.c:2655:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/locale.c:2662:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/locale.c:2669:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/locale.c:3890:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(date_fmt_buf, fmt); data/wine-5.0/dlls/kernel32/tests/locale.c:3891:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(date_fmt_buf, "\n"); data/wine-5.0/dlls/kernel32/tests/locale.c:3897:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(date_fmt_bufW, fmt); data/wine-5.0/dlls/kernel32/tests/module.c:252:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path1, dllname); data/wine-5.0/dlls/kernel32/tests/module.c:262:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path2, dllname); data/wine-5.0/dlls/kernel32/tests/module.c:392:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/kernel32/tests/module.c:393:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "kernel32.dll"); data/wine-5.0/dlls/kernel32/tests/module.c:421:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/kernel32/tests/module.c:422:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "kernel32.dll"); data/wine-5.0/dlls/kernel32/tests/module.c:455:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/kernel32/tests/module.c:456:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "kernel32"); data/wine-5.0/dlls/kernel32/tests/module.c:554:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( path, "%s\\winetestdll.dll", buf + 2 ); data/wine-5.0/dlls/kernel32/tests/module.c:572:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( path, "%s\\winetestdll.dll", buf + 2 ); data/wine-5.0/dlls/kernel32/tests/module.c:1082:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buf + 2, tmpW ); data/wine-5.0/dlls/kernel32/tests/path.c:139:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(subpath,"%s\\%s",subdir,filename); data/wine-5.0/dlls/kernel32/tests/path.c:141:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subpath,filename); data/wine-5.0/dlls/kernel32/tests/path.c:143:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fullpath,"%s\\%s",curdir,subpath); data/wine-5.0/dlls/kernel32/tests/path.c:144:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fullpathshort,"%s\\%s",curdirshort,subpath); data/wine-5.0/dlls/kernel32/tests/path.c:145:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fullpathlong,"%s\\%s",curdirlong,subpath); data/wine-5.0/dlls/kernel32/tests/path.c:230:16: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(ext!=len) lstrcpyA(three,path+ext+1); else lstrcpyA(three,""); data/wine-5.0/dlls/kernel32/tests/path.c:230:49: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(ext!=len) lstrcpyA(three,path+ext+1); else lstrcpyA(three,""); data/wine-5.0/dlls/kernel32/tests/path.c:232:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(eight,path+fil+1,ext-fil); data/wine-5.0/dlls/kernel32/tests/path.c:233:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dir,path,fil+1); data/wine-5.0/dlls/kernel32/tests/path.c:235:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(eight,path,ext+1); data/wine-5.0/dlls/kernel32/tests/path.c:236:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dir,""); data/wine-5.0/dlls/kernel32/tests/path.c:270:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s",curdir_short,filename); data/wine-5.0/dlls/kernel32/tests/path.c:357:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(tmpstr,"aaaaaaaa"); data/wine-5.0/dlls/kernel32/tests/path.c:387:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(invalid_dir, "%s\\%s",tmppath,"non_existent_dir_1jwj3y32nb3"); data/wine-5.0/dlls/kernel32/tests/path.c:423:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",newdir,SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:425:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",newdir,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:437:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:442:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,SHORTDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:447:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,LONGDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:452:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:473:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(tmpstr,"aaaaaaa"); data/wine-5.0/dlls/kernel32/tests/path.c:517:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\",newdir); data/wine-5.0/dlls/kernel32/tests/path.c:525:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,SHORTDIR,NONDIR_SHORT); data/wine-5.0/dlls/kernel32/tests/path.c:528:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",newdir,SHORTDIR,NONDIR_LONG); data/wine-5.0/dlls/kernel32/tests/path.c:531:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",newdir,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:534:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s",SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:535:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s",newdir,SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:538:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,".\\%s",SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:541:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s",LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:542:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s",newdir,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:545:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,".\\%s",LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:561:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:563:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,SHORTDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:565:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,LONGDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:567:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:569:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",curdir,SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:571:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",curdir,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:586:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf,"%s\\%s\\%s",tmpdir,dirname,filename); data/wine-5.0/dlls/kernel32/tests/path.c:619:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s",curdir_short,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:625:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:640:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s\\%s",curdir_short,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:645:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s",curdir_short,SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:649:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s",longdir_short,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:659:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s\\%s",curdir_short,SHORTDIR,NONFILE_SHORT); data/wine-5.0/dlls/kernel32/tests/path.c:682:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr2,"%s\\%s",curdir_short,LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:684:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tmpstr1,"\\" NONFILE_SHORT); data/wine-5.0/dlls/kernel32/tests/path.c:707:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\%s\\%s",curdir_short,NONDIR_SHORT,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:756:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\",SHORTDIR); data/wine-5.0/dlls/kernel32/tests/path.c:758:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\",LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:761:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\",NONDIR_SHORT); data/wine-5.0/dlls/kernel32/tests/path.c:763:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr2,"%s\\%s",curdir_short,tmpstr); data/wine-5.0/dlls/kernel32/tests/path.c:773:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\",NONDIR_LONG); data/wine-5.0/dlls/kernel32/tests/path.c:790:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr1,"%s\\",tmpstr); data/wine-5.0/dlls/kernel32/tests/path.c:795:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:\\%s\\%s",curDrive,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:803:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:%s\\%s",curdir[0],SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:805:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:813:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:%s\\%s",otherDrive,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:815:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:\\%s\\%s",otherDrive,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:824:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:/%s\\%s",curDrive,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:826:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:\\%s\\%s",curDrive,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:835:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s/%s",LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:843:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s/%s",SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:853:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s/%s",SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:859:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:%s/%s",curdir[0],SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:861:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\%s\\%s",curdir,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:867:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"/%s/%s",SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:869:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%c:\\%s\\%s",*tmpstr1,SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:882:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,".\\%s",LONGDIR); data/wine-5.0/dlls/kernel32/tests/path.c:922:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\\\%s", SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:926:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,".\\\\%s\\\\%s", SHORTDIR,SHORTFILE); data/wine-5.0/dlls/kernel32/tests/path.c:931:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,"%s\\\\%s",LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:935:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpstr,".\\\\%s\\\\%s",LONGDIR,LONGFILE); data/wine-5.0/dlls/kernel32/tests/path.c:947:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/path.c:969:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/kernel32/tests/path.c:1011:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/path.c:1021:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/path.c:1029:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, fooW); data/wine-5.0/dlls/kernel32/tests/path.c:1111:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf,save_TMP); data/wine-5.0/dlls/kernel32/tests/path.c:1188:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(temppath2, "\\\\?\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1189:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(temppath2, tempfile); data/wine-5.0/dlls/kernel32/tests/path.c:1210:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(unc_prefix, "\\\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1213:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(unc_prefix, "\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1218:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(unc_short, unc_prefix); data/wine-5.0/dlls/kernel32/tests/path.c:1220:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(unc_short, "$\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1221:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(unc_short, strchr(temppath, '\\') + 1); data/wine-5.0/dlls/kernel32/tests/path.c:1226:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(longpath, unc_prefix); data/wine-5.0/dlls/kernel32/tests/path.c:1228:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(longpath, "$\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1229:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(longpath, strchr(temppath, '\\') + 1); data/wine-5.0/dlls/kernel32/tests/path.c:1304:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, letterX); data/wine-5.0/dlls/kernel32/tests/path.c:1308:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(shortpath, prefix); data/wine-5.0/dlls/kernel32/tests/path.c:1309:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(shortpath, tempdir); data/wine-5.0/dlls/kernel32/tests/path.c:1310:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(shortpath, name); data/wine-5.0/dlls/kernel32/tests/path.c:1311:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dirpath, shortpath); data/wine-5.0/dlls/kernel32/tests/path.c:1314:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(shortpath, backslash); data/wine-5.0/dlls/kernel32/tests/path.c:1315:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(shortpath, name); data/wine-5.0/dlls/kernel32/tests/path.c:1388:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, tmppath ); data/wine-5.0/dlls/kernel32/tests/path.c:1389:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, test_path ); data/wine-5.0/dlls/kernel32/tests/path.c:1390:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, backSlash ); data/wine-5.0/dlls/kernel32/tests/path.c:1397:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, extended_prefix ); data/wine-5.0/dlls/kernel32/tests/path.c:1398:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, tmppath ); data/wine-5.0/dlls/kernel32/tests/path.c:1399:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, test_path ); data/wine-5.0/dlls/kernel32/tests/path.c:1400:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, backSlash ); data/wine-5.0/dlls/kernel32/tests/path.c:1405:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, tmppath ); data/wine-5.0/dlls/kernel32/tests/path.c:1406:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, test_path ); data/wine-5.0/dlls/kernel32/tests/path.c:1407:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, backSlash ); data/wine-5.0/dlls/kernel32/tests/path.c:1413:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( short_path, name ); data/wine-5.0/dlls/kernel32/tests/path.c:1428:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ptr, a_bcdeW); data/wine-5.0/dlls/kernel32/tests/path.c:1436:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, wildW); data/wine-5.0/dlls/kernel32/tests/path.c:1442:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, a_bcdeW); data/wine-5.0/dlls/kernel32/tests/path.c:1730:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(manifest_path, path); data/wine-5.0/dlls/kernel32/tests/path.c:1743:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, filename); data/wine-5.0/dlls/kernel32/tests/path.c:1755:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(manifest_path, path); data/wine-5.0/dlls/kernel32/tests/path.c:1807:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path2A, pathA); data/wine-5.0/dlls/kernel32/tests/path.c:1884:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(pathA, "%s\\%s", tmpdirA, kernel32A); data/wine-5.0/dlls/kernel32/tests/path.c:1889:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path3A, "%s%s%s", curdirA, curdirA[strlen(curdirA)-1] != '\\' ? "\\" : "", kernel32A); data/wine-5.0/dlls/kernel32/tests/path.c:1939:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path2W, pathW); data/wine-5.0/dlls/kernel32/tests/path.c:1940:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path2W, fileext2W); data/wine-5.0/dlls/kernel32/tests/path.c:2130:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(output, deadbeefW); data/wine-5.0/dlls/kernel32/tests/path.c:2436:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, dlldir ); data/wine-5.0/dlls/kernel32/tests/path.c:2488:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( dlldir, buffer, ARRAY_SIZE(dlldir) ); data/wine-5.0/dlls/kernel32/tests/path.c:2536:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( dlldir, buffer, ARRAY_SIZE(dlldir) ); data/wine-5.0/dlls/kernel32/tests/path.c:2606:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( dlldir, buffer, ARRAY_SIZE(dlldir) ); data/wine-5.0/dlls/kernel32/tests/path.c:2655:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, dlldir ); data/wine-5.0/dlls/kernel32/tests/path.c:2658:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, fooW ); data/wine-5.0/dlls/kernel32/tests/pipe.c:1849:15: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = SetThreadToken(NULL, params->token); data/wine-5.0/dlls/kernel32/tests/pipe.c:1963:11: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateNamedPipeClient(hPipeServer); data/wine-5.0/dlls/kernel32/tests/pipe.c:1974:11: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateNamedPipeClient(hPipeServer); data/wine-5.0/dlls/kernel32/tests/pipe.c:1997:11: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateNamedPipeClient(hPipeServer); data/wine-5.0/dlls/kernel32/tests/pipe.c:2014:11: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateNamedPipeClient(hPipeServer); data/wine-5.0/dlls/kernel32/tests/pipe.c:3155:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "\"%s\" pipe writepipe %lx", argv[0], (UINT_PTR)pipe); data/wine-5.0/dlls/kernel32/tests/pipe.c:3413:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "\"%s\" pipe %s %x", argv[0], verb, id); data/wine-5.0/dlls/kernel32/tests/process.c:221:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(selfname, myARGV[0]); data/wine-5.0/dlls/kernel32/tests/process.c:292:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buffer, fmt, valist); data/wine-5.0/dlls/kernel32/tests/process.c:395:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(env_var, ptrA, MAX_LISTED_ENV_VAR); data/wine-5.0/dlls/kernel32/tests/process.c:414:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(env_var, ptrW, MAX_LISTED_ENV_VAR - 1); data/wine-5.0/dlls/kernel32/tests/process.c:616:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:656:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:696:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:736:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:776:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:818:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:858:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:900:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\" \"C:\\Program Files\\my nice app.exe\" \"\"\"\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:924:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:945:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "./%s tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", exename, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:955:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "./%s", exename); data/wine-5.0/dlls/kernel32/tests/process.c:962:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, ".\\%s tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", exename, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:972:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, ".\\%s", exename); data/wine-5.0/dlls/kernel32/tests/process.c:983:12: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (p) sprintf(buffer, "..%s/%s tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", p, exename, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:984:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. else sprintf(buffer, "./%s tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", exename, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:994:12: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (p) sprintf(buffer, "..%s/%s", p, exename); data/wine-5.0/dlls/kernel32/tests/process.c:995:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. else sprintf(buffer, "./%s", exename); data/wine-5.0/dlls/kernel32/tests/process.c:1007:12: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (p) sprintf(buffer, "..%s/%s", p, exename); data/wine-5.0/dlls/kernel32/tests/process.c:1008:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. else sprintf(buffer, "./%s", exename); data/wine-5.0/dlls/kernel32/tests/process.c:1009:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer2, "dummy tests/process.c dump \"%s\" \"a\\\"b\\\\\" c\\\" d", resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1019:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "tests/process.c dump %s", resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1109:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1155:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1173:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c nested \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1326:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1345:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1360:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(ptr, "=%c:=%s", 'C', "C:\\FOO\\BAR"); data/wine-5.0/dlls/kernel32/tests/process.c:1379:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, ptr2); data/wine-5.0/dlls/kernel32/tests/process.c:1413:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1463:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1561:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\" console", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1675:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\" stdhandle", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1715:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\" exit_code", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:1950:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf,INIT_STR); data/wine-5.0/dlls/kernel32/tests/process.c:1959:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf,INIT_STR); data/wine-5.0/dlls/kernel32/tests/process.c:2007:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, deviceW); data/wine-5.0/dlls/kernel32/tests/process.c:2030:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, module_name); data/wine-5.0/dlls/kernel32/tests/process.c:2421:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c %s", selfname, command); data/wine-5.0/dlls/kernel32/tests/process.c:2845:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c %s", selfname, "exit"); data/wine-5.0/dlls/kernel32/tests/process.c:2877:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c %s", selfname, "exit"); data/wine-5.0/dlls/kernel32/tests/process.c:2946:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:2978:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:3267:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pipe_params.pipe_name, pipe_name); data/wine-5.0/dlls/kernel32/tests/process.c:3407:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, resfile); data/wine-5.0/dlls/kernel32/tests/process.c:3892:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c parent %u %p", selfname, 255, read_pipe); data/wine-5.0/dlls/kernel32/tests/process.c:3980:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c parent %u %p", selfname, level + 1, read_pipe); data/wine-5.0/dlls/kernel32/tests/process.c:4046:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "\"%s\" tests/process.c dump \"%s\"", selfname, myARGV[3]); data/wine-5.0/dlls/kernel32/tests/profile.c:412:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "[%s]\r\n%s=123\r\n", SECTION, KEY ); data/wine-5.0/dlls/kernel32/tests/profile.c:533:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path_folder, "wine-test"); data/wine-5.0/dlls/kernel32/tests/profile.c:535:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path_file, path_folder); data/wine-5.0/dlls/kernel32/tests/profile.c:536:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path_file, "\\tmp.ini"); data/wine-5.0/dlls/kernel32/tests/profile.c:580:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:590:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:599:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:607:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:616:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:625:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:627:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(def_val, "default "); data/wine-5.0/dlls/kernel32/tests/profile.c:636:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:638:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(def_val, "one two "); data/wine-5.0/dlls/kernel32/tests/profile.c:647:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:656:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:665:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:674:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:682:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:691:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:700:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:702:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(def_val, "default "); data/wine-5.0/dlls/kernel32/tests/profile.c:718:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:726:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:734:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:742:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:750:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:758:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:766:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:774:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:782:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:793:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:803:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:811:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:819:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:839:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/profile.c:847:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kumquat"); data/wine-5.0/dlls/kernel32/tests/sync.c:2592:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" sync apc_deadlock", argv[0]); data/wine-5.0/dlls/kernel32/tests/thread.c:121:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/kernel32/tests/thread.c:2204:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((WCHAR *)(thread_desc + 1), L"desc"); data/wine-5.0/dlls/kernel32/tests/time.c:974:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dyn_tzinfo.TimeZoneKeyName, std_tzname); data/wine-5.0/dlls/kernel32/tests/time.c:999:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dyn_tzinfo.TimeZoneKeyName, dlt_tzname); data/wine-5.0/dlls/kernel32/tests/toolhelp.c:69:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(selfname, argv[0]); data/wine-5.0/dlls/kernel32/tests/toolhelp.c:328:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s tests/toolhelp.c %lu %lu", selfname, (DWORD_PTR)ev1, (DWORD_PTR)ev2); data/wine-5.0/dlls/kernel32/tests/virtual.c:68:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/kernel32/tests/virtual.c:3678:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static DWORD file_access_to_prot( DWORD access ) data/wine-5.0/dlls/kernel32/tests/virtual.c:3680:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL exec = access & FILE_MAP_EXECUTE; data/wine-5.0/dlls/kernel32/tests/virtual.c:3681:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= ~FILE_MAP_EXECUTE; data/wine-5.0/dlls/kernel32/tests/virtual.c:3684:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_MAP_WRITE) return exec ? PAGE_EXECUTE_READWRITE : PAGE_READWRITE; data/wine-5.0/dlls/kernel32/tests/virtual.c:3685:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_MAP_READ) return exec ? PAGE_EXECUTE_READ : PAGE_READONLY; data/wine-5.0/dlls/kernel32/tests/virtual.c:3694:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (view_access & access) == view_access; data/wine-5.0/dlls/kernel32/tests/virtual.c:3697:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static void *map_view_of_file(HANDLE handle, DWORD access) data/wine-5.0/dlls/kernel32/tests/virtual.c:3711:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. protect = file_access_to_prot( access ); data/wine-5.0/dlls/kernel32/tests/virtual.c:3728:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, prot; data/wine-5.0/dlls/kernel32/tests/virtual.c:3844:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. nt_base = map_view_of_file(hmap, view[j].access); data/wine-5.0/dlls/kernel32/tests/virtual.c:3854:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. base = MapViewOfFile(hmap, view[j].access, 0, 0, 0); data/wine-5.0/dlls/kernel32/tests/virtual.c:3858:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. broken((view[j].access & FILE_MAP_EXECUTE) && !nt_base != !base), data/wine-5.0/dlls/kernel32/tests/virtual.c:3859:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x/%04x) NT %p kernel %p\n", j, page_prot[i], view[j].access, nt_base, base); data/wine-5.0/dlls/kernel32/tests/virtual.c:3861:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!is_compatible_access(page_prot[i], view[j].access)) data/wine-5.0/dlls/kernel32/tests/virtual.c:3867:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. j, page_prot[i], view[j].access); data/wine-5.0/dlls/kernel32/tests/virtual.c:3873:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. j, page_prot[i], view[j].access); data/wine-5.0/dlls/kernel32/tests/virtual.c:3880:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!base && (view[j].access & FILE_MAP_EXECUTE)) data/wine-5.0/dlls/kernel32/tests/virtual.c:3882:104: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(broken(!base), "%d: MapViewOfFile(%04x/%04x) failed %d\n", j, page_prot[i], view[j].access, GetLastError()); data/wine-5.0/dlls/kernel32/tests/virtual.c:3886:99: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(base != NULL, "%d: MapViewOfFile(%04x/%04x) failed %d\n", j, page_prot[i], view[j].access, GetLastError()); data/wine-5.0/dlls/kernel32/tests/virtual.c:3891:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(info.BaseAddress == base, "%d: (%04x) got %p, expected %p\n", j, view[j].access, info.BaseAddress, base); data/wine-5.0/dlls/kernel32/tests/virtual.c:3893:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#lx != expected %#x\n", j, view[j].access, info.RegionSize, 2*si.dwPageSize); data/wine-5.0/dlls/kernel32/tests/virtual.c:3896:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, info.Protect, view[j].prot); data/wine-5.0/dlls/kernel32/tests/virtual.c:3902:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, info.Protect, view[j].prot); data/wine-5.0/dlls/kernel32/tests/virtual.c:3903:92: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(info.AllocationBase == base, "%d: (%04x) got %p, expected %p\n", j, view[j].access, info.AllocationBase, base); data/wine-5.0/dlls/kernel32/tests/virtual.c:3906:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. j, view[j].access, info.AllocationProtect, info.Protect); data/wine-5.0/dlls/kernel32/tests/virtual.c:3909:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. j, view[j].access, info.AllocationProtect, info.Protect); data/wine-5.0/dlls/kernel32/tests/virtual.c:3910:98: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(info.State == MEM_COMMIT, "%d: (%04x) got %#x, expected MEM_COMMIT\n", j, view[j].access, info.State); data/wine-5.0/dlls/kernel32/tests/virtual.c:3912:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#x, expected MEM_MAPPED\n", j, view[j].access, info.Type); data/wine-5.0/dlls/kernel32/tests/virtual.c:3916:112: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(nt_info.RegionSize == info.RegionSize, "%d: (%04x) got %#lx != expected %#lx\n", j, view[j].access, nt_info.RegionSize, info.RegionSize); data/wine-5.0/dlls/kernel32/tests/virtual.c:3919:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, nt_info.Protect, info.Protect); data/wine-5.0/dlls/kernel32/tests/virtual.c:3922:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, nt_info.AllocationProtect, info.AllocationProtect); data/wine-5.0/dlls/kernel32/tests/virtual.c:3923:98: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(nt_info.State == info.State, "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, nt_info.State, info.State); data/wine-5.0/dlls/kernel32/tests/virtual.c:3924:96: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(nt_info.Type == info.Type, "%d: (%04x) got %#x, expected %#x\n", j, view[j].access, nt_info.Type, info.Type); data/wine-5.0/dlls/kernel32/tests/virtual.c:4154:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" virtual sharedmem", argv[0]); data/wine-5.0/dlls/kernel32/tests/virtual.c:4194:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" virtual sharedmemro %x", argv[0], child_access); data/wine-5.0/dlls/kernel32/tests/volume.c:1086:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( volume, volume_null ); data/wine-5.0/dlls/kernel32/volume.c:84:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, config_dir ); data/wine-5.0/dlls/kernel32/volume.c:750:28: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (label) lstrcpynW( label, audiocdW, label_len ); data/wine-5.0/dlls/kernel32/volume.c:801:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (fsname) lstrcpynW( fsname, cdfsW, fsname_len ); data/wine-5.0/dlls/kernel32/volume.c:806:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (fsname) lstrcpynW( fsname, udfW, fsname_len ); data/wine-5.0/dlls/kernel32/volume.c:812:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (fsname) lstrcpynW( fsname, fatW, fsname_len ); data/wine-5.0/dlls/kernel32/volume.c:814:41: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (type == FS_FAT32 && fsname) lstrcpynW( fsname, fat32W, fsname_len ); data/wine-5.0/dlls/kernel32/volume.c:819:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (fsname) lstrcpynW( fsname, ntfsW, fsname_len ); data/wine-5.0/dlls/kernel32/volume.c:1051:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( symlink_name, prefixW ); data/wine-5.0/dlls/kernel32/volume.c:1052:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( symlink_name, path ); data/wine-5.0/dlls/kernel32/volume.c:1112:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( volume, trailingW ); data/wine-5.0/dlls/kernel32/volume.c:1677:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( volumenameW, filename ); data/wine-5.0/dlls/kernelbase/console.c:161:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE open_console( BOOL output, DWORD access, SECURITY_ATTRIBUTES *sa, DWORD creation ) data/wine-5.0/dlls/kernelbase/console.c:174:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/kernelbase/console.c:213:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH CreateConsoleScreenBuffer( DWORD access, DWORD share, data/wine-5.0/dlls/kernelbase/console.c:219:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "(%x,%x,%p,%x,%p)\n", access, share, sa, flags, data ); data/wine-5.0/dlls/kernelbase/console.c:230:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/kernelbase/console.c:433:36: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (len > lstrlenW(input_exe)) lstrcpyW( buffer, input_exe ); data/wine-5.0/dlls/kernelbase/console.c:1093:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( input_exe, name, ARRAY_SIZE(input_exe) ); data/wine-5.0/dlls/kernelbase/debug.c:594:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( cmdline, format_size, format, (long)GetCurrentProcessId(), (long)HandleToLong(event) ); data/wine-5.0/dlls/kernelbase/debug.c:601:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( cmdline, 80, fmtW, (long)GetCurrentProcessId(), (long)HandleToLong(event) ); data/wine-5.0/dlls/kernelbase/debug.c:615:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, msg ); data/wine-5.0/dlls/kernelbase/file.c:131:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, name ); data/wine-5.0/dlls/kernelbase/file.c:132:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, ext ); data/wine-5.0/dlls/kernelbase/file.c:216:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, windows_dir ); data/wine-5.0/dlls/kernelbase/file.c:239:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, name ); data/wine-5.0/dlls/kernelbase/file.c:408:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH CreateFile2( LPCWSTR name, DWORD access, DWORD sharing, DWORD creation, data/wine-5.0/dlls/kernelbase/file.c:415:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME( "(%s %x %x %x %p), partial stub\n", debugstr_w(name), access, sharing, creation, params ); data/wine-5.0/dlls/kernelbase/file.c:417:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateFileW( name, access, sharing, sa, creation, attributes, template ); data/wine-5.0/dlls/kernelbase/file.c:424:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH CreateFileA( LPCSTR name, DWORD access, DWORD sharing, data/wine-5.0/dlls/kernelbase/file.c:432:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateFileW( nameW, access, sharing, sa, creation, attributes, template ); data/wine-5.0/dlls/kernelbase/file.c:439:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH CreateFileW( LPCWSTR filename, DWORD access, DWORD sharing, data/wine-5.0/dlls/kernelbase/file.c:473:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (access & GENERIC_READ) ? "GENERIC_READ " : "", data/wine-5.0/dlls/kernelbase/file.c:474:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (access & GENERIC_WRITE) ? "GENERIC_WRITE " : "", data/wine-5.0/dlls/kernelbase/file.c:475:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (access & GENERIC_EXECUTE) ? "GENERIC_EXECUTE " : "", data/wine-5.0/dlls/kernelbase/file.c:476:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. !access ? "QUERY_ACCESS " : "", data/wine-5.0/dlls/kernelbase/file.c:485:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_console( FALSE, access, sa, creation ? OPEN_EXISTING : 0 ); data/wine-5.0/dlls/kernelbase/file.c:487:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_console( TRUE, access, sa, creation ? OPEN_EXISTING : 0 ); data/wine-5.0/dlls/kernelbase/file.c:519:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. switch (access & (GENERIC_READ|GENERIC_WRITE)) data/wine-5.0/dlls/kernelbase/file.c:522:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_console( FALSE, access, sa, OPEN_EXISTING ); data/wine-5.0/dlls/kernelbase/file.c:524:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_console( TRUE, access, sa, OPEN_EXISTING ); data/wine-5.0/dlls/kernelbase/file.c:554:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= DELETE; data/wine-5.0/dlls/kernelbase/file.c:584:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateFile( &ret, access | SYNCHRONIZE | FILE_READ_ATTRIBUTES, &attr, &io, data/wine-5.0/dlls/kernelbase/file.c:594:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (vxd_open && (ret = vxd_open( vxd_name, access, sa ))) goto done; data/wine-5.0/dlls/kernelbase/file.c:1434:40: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (longpath != shortpath) lstrcpyW( longpath, shortpath ); data/wine-5.0/dlls/kernelbase/file.c:1466:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( tmplongpath + lp, shortpath + sp, tmplen + 1 ); data/wine-5.0/dlls/kernelbase/file.c:1490:59: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (RtlIsNameLegalDOS8Dot3( &nameW, NULL, NULL )) lstrcpyW( tmplongpath + lp, wfd.cFileName ); data/wine-5.0/dlls/kernelbase/file.c:1503:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( longpath, tmplongpath ); data/wine-5.0/dlls/kernelbase/file.c:1581:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( tmpshortpath + sp, longpath + lp, tmplen + 1 ); data/wine-5.0/dlls/kernelbase/file.c:1614:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( tmpshortpath + sp, wfd.cAlternateFileName[0] ? wfd.cAlternateFileName : wfd.cFileName ); data/wine-5.0/dlls/kernelbase/file.c:1623:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( shortpath, tmpshortpath ); data/wine-5.0/dlls/kernelbase/file.c:1770:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, path ); data/wine-5.0/dlls/kernelbase/file.c:1779:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (unique) swprintf( p, MAX_PATH - (p - buffer), formatW, unique ); data/wine-5.0/dlls/kernelbase/file.c:1793:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( p, MAX_PATH - (p - buffer), formatW, unique ); data/wine-5.0/dlls/kernelbase/file.c:1868:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( path, tmp_path, count ); data/wine-5.0/dlls/kernelbase/file.c:2022:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, dll_path ); data/wine-5.0/dlls/kernelbase/file.c:2023:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, name ); data/wine-5.0/dlls/kernelbase/file.c:2346:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FILETIME *access, FILETIME *write ) data/wine-5.0/dlls/kernelbase/file.c:2359:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access) data/wine-5.0/dlls/kernelbase/file.c:2508:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenFileById( HANDLE handle, LPFILE_ID_DESCRIPTOR id, DWORD access, data/wine-5.0/dlls/kernelbase/file.c:2543:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtCreateFile( &result, access | SYNCHRONIZE, &attr, &io, NULL, flags, data/wine-5.0/dlls/kernelbase/file.c:2553:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI /* DECLSPEC_HOTPATCH */ ReOpenFile( HANDLE handle, DWORD access, DWORD sharing, DWORD flags ) data/wine-5.0/dlls/kernelbase/file.c:2555:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME( "(%p, %d, %d, %d): stub\n", handle, access, sharing, flags ); data/wine-5.0/dlls/kernelbase/kernelbase.h:38:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern HANDLE open_console( BOOL output, DWORD access, SECURITY_ATTRIBUTES *sa, DWORD creation ) DECLSPEC_HIDDEN; data/wine-5.0/dlls/kernelbase/locale.c:633:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( bufferW, ARRAY_SIZE(bufferW), L"%08x", lcid ); data/wine-5.0/dlls/kernelbase/locale.c:655:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. count = swprintf( bufferW, ARRAY_SIZE(bufferW), L"%03d", ansi_cp ); data/wine-5.0/dlls/kernelbase/locale.c:657:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. count = swprintf( bufferW, ARRAY_SIZE(bufferW), L"%03d", oem_cp ); data/wine-5.0/dlls/kernelbase/locale.c:659:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. count = swprintf( bufferW, ARRAY_SIZE(bufferW), L"%03d", mac_cp ); data/wine-5.0/dlls/kernelbase/locale.c:768:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW( buffer, registry_cache[index] ); data/wine-5.0/dlls/kernelbase/locale.c:2975:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->TimeZoneKeyName, tz.TimeZoneKeyName ); data/wine-5.0/dlls/kernelbase/locale.c:3437:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy( cpinfo->CodePageName, codepage_names[pos].name ); data/wine-5.0/dlls/kernelbase/locale.c:3607:23: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. int ret = swprintf( buffer, ARRAY_SIZE(buffer), L"%u", CALINFO_MAX_YEAR ) + 1; data/wine-5.0/dlls/kernelbase/locale.c:3611:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( data, buffer ); data/wine-5.0/dlls/kernelbase/locale.c:3714:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( bufferW, ARRAY_SIZE(bufferW), L"%u", ptr->id ); data/wine-5.0/dlls/kernelbase/locale.c:3717:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( bufferW, ARRAY_SIZE(bufferW), L"%03u", ptr->uncode ); data/wine-5.0/dlls/kernelbase/locale.c:3720:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( bufferW, ARRAY_SIZE(bufferW), L"%u", ptr->parent ); data/wine-5.0/dlls/kernelbase/locale.c:3955:22: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (len) lstrcpyW( buffer, locale ); data/wine-5.0/dlls/kernelbase/locale.c:4186:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( yearW, ARRAY_SIZE(yearW), L"%u", year ); data/wine-5.0/dlls/kernelbase/locale.c:4489:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( name, ARRAY_SIZE(name), L"%x", id ); data/wine-5.0/dlls/kernelbase/locale.c:4998:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( bufferW, ARRAY_SIZE(bufferW), L"%u", geoinfo->id ); data/wine-5.0/dlls/kernelbase/locale.c:5010:82: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. const SYSTEMTIME *system, data/wine-5.0/dlls/kernelbase/locale.c:5022:32: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!SystemTimeToFileTime( system, (FILETIME *)&ft )) return FALSE; data/wine-5.0/dlls/kernelbase/locale.c:5046:76: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. SYSTEMTIME *system ) data/wine-5.0/dlls/kernelbase/locale.c:5072:51: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. return FileTimeToSystemTime( (FILETIME *)&ft, system ); data/wine-5.0/dlls/kernelbase/main.c:352:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(langbuf, mystr); data/wine-5.0/dlls/kernelbase/memory.c:187:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPVOID WINAPI DECLSPEC_HOTPATCH MapViewOfFile( HANDLE mapping, DWORD access, DWORD offset_high, data/wine-5.0/dlls/kernelbase/memory.c:190:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return MapViewOfFileEx( mapping, access, offset_high, offset_low, count, NULL ); data/wine-5.0/dlls/kernelbase/memory.c:197:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPVOID WINAPI DECLSPEC_HOTPATCH MapViewOfFileEx( HANDLE handle, DWORD access, DWORD offset_high, data/wine-5.0/dlls/kernelbase/memory.c:208:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. exec = access & FILE_MAP_EXECUTE; data/wine-5.0/dlls/kernelbase/memory.c:209:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= ~FILE_MAP_EXECUTE; data/wine-5.0/dlls/kernelbase/memory.c:213:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if (access & FILE_MAP_WRITE) data/wine-5.0/dlls/kernelbase/memory.c:215:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if (access & FILE_MAP_READ) data/wine-5.0/dlls/kernelbase/memory.c:1158:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPVOID WINAPI DECLSPEC_HOTPATCH MapViewOfFileExNuma( HANDLE handle, DWORD access, DWORD offset_high, data/wine-5.0/dlls/kernelbase/memory.c:1163:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return MapViewOfFileEx( handle, access, offset_high, offset_low, count, addr ); data/wine-5.0/dlls/kernelbase/path.c:426:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(combined_path, path1); data/wine-5.0/dlls/kernelbase/path.c:439:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(combined_path, path2); data/wine-5.0/dlls/kernelbase/path.c:524:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + path_length, extension); data/wine-5.0/dlls/kernelbase/path.c:880:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + 2, path + 8); data/wine-5.0/dlls/kernelbase/path.c:887:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, path + 4); data/wine-5.0/dlls/kernelbase/path.c:1317:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path + len, ext); data/wine-5.0/dlls/kernelbase/path.c:1334:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, ext); data/wine-5.0/dlls/kernelbase/path.c:1478:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmp, dir, ARRAY_SIZE(tmp)); data/wine-5.0/dlls/kernelbase/path.c:1485:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmp, file, ARRAY_SIZE(tmp)); data/wine-5.0/dlls/kernelbase/path.c:1498:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmp, dir, ARRAY_SIZE(tmp)); data/wine-5.0/dlls/kernelbase/path.c:1511:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tmp, file); data/wine-5.0/dlls/kernelbase/path.c:1981:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(extension, ext); data/wine-5.0/dlls/kernelbase/path.c:1996:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extension, ext); data/wine-5.0/dlls/kernelbase/path.c:2402:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(fromW, from, ARRAY_SIZE(fromW)); data/wine-5.0/dlls/kernelbase/path.c:2403:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(toW, to, ARRAY_SIZE(toW)); data/wine-5.0/dlls/kernelbase/path.c:2427:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, *from ? szPrevDirSlash : szPrevDir); data/wine-5.0/dlls/kernelbase/path.c:2443:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, to); data/wine-5.0/dlls/kernelbase/path.c:2753:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, match->var); data/wine-5.0/dlls/kernelbase/path.c:2754:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, &path[match->len]); data/wine-5.0/dlls/kernelbase/path.c:3102:13: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(dst, url, len + 1); data/wine-5.0/dlls/kernelbase/path.c:3124:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dst, src); data/wine-5.0/dlls/kernelbase/path.c:3152:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, tpath); data/wine-5.0/dlls/kernelbase/path.c:3958:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(out, data); data/wine-5.0/dlls/kernelbase/path.c:3959:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, url); data/wine-5.0/dlls/kernelbase/path.c:4000:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_url, file_colonW); data/wine-5.0/dlls/kernelbase/path.c:4002:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(new_url, three_slashesW); data/wine-5.0/dlls/kernelbase/path.c:4003:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(new_url, path); data/wine-5.0/dlls/kernelbase/path.c:4032:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(out, data); data/wine-5.0/dlls/kernelbase/path.c:4033:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, url); data/wine-5.0/dlls/kernelbase/path.c:4141:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(translatedUrl, url, (maxChars < srcLen) ? maxChars : srcLen); data/wine-5.0/dlls/kernelbase/path.c:4692:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(url, path); data/wine-5.0/dlls/kernelbase/path.c:4897:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(preliminary, myfilestr); data/wine-5.0/dlls/kernelbase/path.c:4970:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(preliminary, mrelative); data/wine-5.0/dlls/kernelbase/path.c:4975:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(preliminary, mrelative); data/wine-5.0/dlls/kernelbase/path.c:4982:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(work, relative.pszSuffix); data/wine-5.0/dlls/kernelbase/path.c:4991:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(work, relative.pszSuffix); data/wine-5.0/dlls/kernelbase/path.c:5000:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(work, relative.pszSuffix); data/wine-5.0/dlls/kernelbase/path.c:5015:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(combined, mrelative); data/wine-5.0/dlls/kernelbase/process.c:128:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, lstrlenW(cmdline) + 3, L"\"%s\"%s", name, p ); data/wine-5.0/dlls/kernelbase/process.c:149:61: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!GetLongPathNameW( filename, imagepath, MAX_PATH )) lstrcpynW( imagepath, filename, MAX_PATH ); data/wine-5.0/dlls/kernelbase/process.c:150:68: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!GetFullPathNameW( imagepath, MAX_PATH, imagepath, NULL )) lstrcpynW( imagepath, filename, MAX_PATH ); data/wine-5.0/dlls/kernelbase/process.c:287:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( newcmdline, len, L"%s --app-name \"%s\" %s", data/wine-5.0/dlls/kernelbase/process.c:310:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( comspec, L"C:\\windows\\system32\\cmd.exe" ); data/wine-5.0/dlls/kernelbase/process.c:316:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( newcmdline, len, L"%s /s/c \"%s\"", comspec, params->CommandLine.Buffer ); data/wine-5.0/dlls/kernelbase/process.c:460:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( tidy_cmdline, lstrlenW(app_name) + 3, L"\"%s\"", app_name ); data/wine-5.0/dlls/kernelbase/process.c:601:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, BOOL inherit, DWORD options ) data/wine-5.0/dlls/kernelbase/process.c:607:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, inherit ? OBJ_INHERIT : 0, options ))) data/wine-5.0/dlls/kernelbase/process.c:613:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, inherit ? OBJ_INHERIT : 0, options )); data/wine-5.0/dlls/kernelbase/process.c:843:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenProcess( DWORD access, BOOL inherit, DWORD id ) data/wine-5.0/dlls/kernelbase/process.c:861:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenProcess( &handle, access, &attr, &cid ))) return NULL; data/wine-5.0/dlls/kernelbase/registry.c:154:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS create_key( HKEY *retkey, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/kernelbase/registry.c:157:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL force_wow32 = is_win64 && (access & KEY_WOW64_32KEY); data/wine-5.0/dlls/kernelbase/registry.c:161:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!force_wow32) status = NtCreateKey( &subkey, access, attr, 0, class, options, dispos ); data/wine-5.0/dlls/kernelbase/registry.c:198:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateKey( &subkey, access, attr, 0, class, options, dispos ); data/wine-5.0/dlls/kernelbase/registry.c:203:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateKey( &subkey, access, attr, 0, class, data/wine-5.0/dlls/kernelbase/registry.c:226:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS open_key( HKEY *retkey, DWORD options, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/kernelbase/registry.c:229:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL force_wow32 = is_win64 && (access & KEY_WOW64_32KEY); data/wine-5.0/dlls/kernelbase/registry.c:240:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return NtOpenKeyEx( (HANDLE *)retkey, access, attr, options ); data/wine-5.0/dlls/kernelbase/registry.c:264:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtOpenKeyEx( &subkey, access, attr, options ); data/wine-5.0/dlls/kernelbase/registry.c:269:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtOpenKeyEx( &subkey, access, attr, options & ~REG_OPTION_OPEN_LINK ); data/wine-5.0/dlls/kernelbase/registry.c:289:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HKEY create_special_root_hkey( HKEY hkey, DWORD access ) data/wine-5.0/dlls/kernelbase/registry.c:296:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RtlOpenCurrentUser( access, (HANDLE *)&hkey )) return 0; data/wine-5.0/dlls/kernelbase/registry.c:311:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create_key( &hkey, access, &attr, NULL, 0, NULL )) return 0; data/wine-5.0/dlls/kernelbase/registry.c:315:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!cache_disabled[idx] && !(access & (KEY_WOW64_64KEY | KEY_WOW64_32KEY))) data/wine-5.0/dlls/kernelbase/registry.c:328:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline HKEY get_special_root_hkey( HKEY hkey, REGSAM access ) data/wine-5.0/dlls/kernelbase/registry.c:340:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((access & mask) || data/wine-5.0/dlls/kernelbase/registry.c:342:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = create_special_root_hkey( hkey, MAXIMUM_ALLOWED | (access & mask) ); data/wine-5.0/dlls/kernelbase/registry.c:406:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD options, REGSAM access, SECURITY_ATTRIBUTES *sa, data/wine-5.0/dlls/kernelbase/registry.c:413:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:425:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RtlNtStatusToDosError( create_key( retkey, access, &attr, &classW, options, dispos ) ); data/wine-5.0/dlls/kernelbase/registry.c:453:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD options, REGSAM access, SECURITY_ATTRIBUTES *sa, data/wine-5.0/dlls/kernelbase/registry.c:467:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:484:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = create_key( retkey, access, &attr, &classW, options, dispos ); data/wine-5.0/dlls/kernelbase/registry.c:497:96: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS WINAPI DECLSPEC_HOTPATCH RegOpenKeyExW( HKEY hkey, LPCWSTR name, DWORD options, REGSAM access, PHKEY retkey ) data/wine-5.0/dlls/kernelbase/registry.c:514:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:523:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RtlNtStatusToDosError( open_key( retkey, options, access, &attr ) ); data/wine-5.0/dlls/kernelbase/registry.c:547:95: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS WINAPI DECLSPEC_HOTPATCH RegOpenKeyExA( HKEY hkey, LPCSTR name, DWORD options, REGSAM access, PHKEY retkey ) data/wine-5.0/dlls/kernelbase/registry.c:568:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:581:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = open_key( retkey, options, access, &attr ); data/wine-5.0/dlls/kernelbase/registry.c:607:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS WINAPI RegOpenCurrentUser( REGSAM access, PHKEY retkey ) data/wine-5.0/dlls/kernelbase/registry.c:639:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW( HKEY_USERS, string.Buffer, 0, access, retkey ); data/wine-5.0/dlls/kernelbase/registry.c:642:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExA( HKEY_CURRENT_USER, "", 0, access, retkey ); data/wine-5.0/dlls/kernelbase/registry.c:1006:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS WINAPI RegDeleteKeyExW( HKEY hkey, LPCWSTR name, REGSAM access, DWORD reserved ) data/wine-5.0/dlls/kernelbase/registry.c:1013:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:1015:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= KEY_WOW64_64KEY | KEY_WOW64_32KEY; data/wine-5.0/dlls/kernelbase/registry.c:1016:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(ret = RegOpenKeyExW( hkey, name, 0, access | DELETE, &tmp ))) data/wine-5.0/dlls/kernelbase/registry.c:1029:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS WINAPI RegDeleteKeyExA( HKEY hkey, LPCSTR name, REGSAM access, DWORD reserved ) data/wine-5.0/dlls/kernelbase/registry.c:1036:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_special_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/kernelbase/registry.c:1038:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= KEY_WOW64_64KEY | KEY_WOW64_32KEY; data/wine-5.0/dlls/kernelbase/registry.c:1039:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(ret = RegOpenKeyExA( hkey, name, 0, access | DELETE, &tmp ))) data/wine-5.0/dlls/kernelbase/registry.c:1047:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(RegDeleteKeyExA(tmp, sub, access, reserved)) /* recurse */ data/wine-5.0/dlls/kernelbase/registry.c:1277:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, buf2); data/wine-5.0/dlls/kernelbase/registry.c:2626:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ent->file_name, file_name); data/wine-5.0/dlls/kernelbase/registry.c:2825:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwszTempBuffer, pwszBaseDir); data/wine-5.0/dlls/kernelbase/registry.c:2827:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pwszTempBuffer, backslashW); data/wine-5.0/dlls/kernelbase/registry.c:2829:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pwszTempBuffer, pwszExpandedBuffer + 1); data/wine-5.0/dlls/kernelbase/registry.c:3063:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, hostname, MAX_COMPUTERNAME_LENGTH + 1 ); data/wine-5.0/dlls/kernelbase/registry.c:3161:23: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (name) lstrcpyW( name, buffer ); data/wine-5.0/dlls/kernelbase/registry.c:3379:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ret_key->path, path, ARRAY_SIZE(ret_key->path)); data/wine-5.0/dlls/kernelbase/registry.c:3537:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(key->path, path, ARRAY_SIZE(key->path)); data/wine-5.0/dlls/kernelbase/security.c:162:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS open_file( LPCWSTR name, DWORD access, HANDLE *file ) data/wine-5.0/dlls/kernelbase/security.c:175:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateFile( file, access|SYNCHRONIZE, &attr, &io, NULL, FILE_FLAG_BACKUP_SEMANTICS, data/wine-5.0/dlls/kernelbase/security.c:683:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI DuplicateTokenEx( HANDLE token, DWORD access, LPSECURITY_ATTRIBUTES sa, data/wine-5.0/dlls/kernelbase/security.c:688:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("%p 0x%08x 0x%08x 0x%08x %p\n", token, access, level, type, ret ); data/wine-5.0/dlls/kernelbase/security.c:692:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( NtDuplicateToken( token, access, &attr, level, type, ret )); data/wine-5.0/dlls/kernelbase/security.c:736:13: [4] (access) ImpersonateLoggedOnUser: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. BOOL WINAPI ImpersonateLoggedOnUser( HANDLE token ) data/wine-5.0/dlls/kernelbase/security.c:754:15: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = SetThreadToken( NULL, dup ); data/wine-5.0/dlls/kernelbase/security.c:757:16: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. else ret = SetThreadToken( NULL, token ); data/wine-5.0/dlls/kernelbase/security.c:765:13: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. BOOL WINAPI ImpersonateNamedPipeClient( HANDLE pipe ) data/wine-5.0/dlls/kernelbase/security.c:819:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI OpenProcessToken( HANDLE process, DWORD access, HANDLE *handle ) data/wine-5.0/dlls/kernelbase/security.c:821:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( NtOpenProcessToken( process, access, handle )); data/wine-5.0/dlls/kernelbase/security.c:827:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI OpenThreadToken( HANDLE thread, DWORD access, BOOL self, HANDLE *handle ) data/wine-5.0/dlls/kernelbase/security.c:829:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( NtOpenThreadToken( thread, access, self, handle )); data/wine-5.0/dlls/kernelbase/security.c:848:12: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. return SetThreadToken( NULL, 0 ); data/wine-5.0/dlls/kernelbase/security.c:854:13: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. BOOL WINAPI SetThreadToken( PHANDLE thread, HANDLE token ) data/wine-5.0/dlls/kernelbase/security.c:1004:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= READ_CONTROL; data/wine-5.0/dlls/kernelbase/security.c:1006:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/dlls/kernelbase/security.c:1008:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(status = open_file( name, access, &file ))) data/wine-5.0/dlls/kernelbase/security.c:1178:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (info & (OWNER_SECURITY_INFORMATION | GROUP_SECURITY_INFORMATION)) access |= WRITE_OWNER; data/wine-5.0/dlls/kernelbase/security.c:1179:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (info & SACL_SECURITY_INFORMATION) access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/dlls/kernelbase/security.c:1180:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (info & DACL_SECURITY_INFORMATION) access |= WRITE_DAC; data/wine-5.0/dlls/kernelbase/security.c:1182:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(status = open_file( name, access, &file ))) data/wine-5.0/dlls/kernelbase/security.c:1270:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AccessCheck( PSECURITY_DESCRIPTOR descr, HANDLE token, DWORD access, PGENERIC_MAPPING mapping, data/wine-5.0/dlls/kernelbase/security.c:1274:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL ret = set_ntstatus( NtAccessCheck( descr, token, access, mapping, priv, priv_len, data/wine-5.0/dlls/kernelbase/security.c:1284:87: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPWSTR name, PSECURITY_DESCRIPTOR descr, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1289:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. id, debugstr_w(type_name), debugstr_w(name), descr, access, mapping, data/wine-5.0/dlls/kernelbase/security.c:1297:90: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AccessCheckByType( PSECURITY_DESCRIPTOR descr, PSID sid, HANDLE token, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1309:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessAllowedAce( PACL acl, DWORD rev, DWORD access, PSID sid ) data/wine-5.0/dlls/kernelbase/security.c:1311:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessAllowedAce( acl, rev, access, sid )); data/wine-5.0/dlls/kernelbase/security.c:1317:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessAllowedAceEx( PACL acl, DWORD rev, DWORD flags, DWORD access, PSID sid ) data/wine-5.0/dlls/kernelbase/security.c:1319:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessAllowedAceEx( acl, rev, flags, access, sid )); data/wine-5.0/dlls/kernelbase/security.c:1325:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessAllowedObjectAce( PACL acl, DWORD rev, DWORD flags, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1328:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessAllowedObjectAce( acl, rev, flags, access, type, inherit, sid )); data/wine-5.0/dlls/kernelbase/security.c:1334:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessDeniedAce( PACL acl, DWORD rev, DWORD access, PSID sid ) data/wine-5.0/dlls/kernelbase/security.c:1336:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessDeniedAce( acl, rev, access, sid )); data/wine-5.0/dlls/kernelbase/security.c:1342:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessDeniedAceEx( PACL acl, DWORD rev, DWORD flags, DWORD access, PSID sid ) data/wine-5.0/dlls/kernelbase/security.c:1344:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessDeniedAceEx( acl, rev, flags, access, sid )); data/wine-5.0/dlls/kernelbase/security.c:1350:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAccessDeniedObjectAce( PACL acl, DWORD rev, DWORD flags, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1353:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAccessDeniedObjectAce( acl, rev, flags, access, type, inherit, sid )); data/wine-5.0/dlls/kernelbase/security.c:1367:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAuditAccessAce( PACL acl, DWORD rev, DWORD access, PSID sid, BOOL success, BOOL failure ) data/wine-5.0/dlls/kernelbase/security.c:1369:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAuditAccessAce( acl, rev, access, sid, success, failure )); data/wine-5.0/dlls/kernelbase/security.c:1375:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAuditAccessAceEx( PACL acl, DWORD rev, DWORD flags, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1378:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAuditAccessAceEx( acl, rev, flags, access, sid, success, failure )); data/wine-5.0/dlls/kernelbase/security.c:1384:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL WINAPI AddAuditAccessObjectAce( PACL acl, DWORD rev, DWORD flags, DWORD access, data/wine-5.0/dlls/kernelbase/security.c:1387:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return set_ntstatus( RtlAddAuditAccessObjectAce( acl, rev, flags, access, data/wine-5.0/dlls/kernelbase/security.c:1467:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void WINAPI MapGenericMask( PDWORD access, PGENERIC_MAPPING mapping ) data/wine-5.0/dlls/kernelbase/security.c:1469:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RtlMapGenericMask( access, mapping ); data/wine-5.0/dlls/kernelbase/security.c:1496:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. BOOL access, LPBOOL on_close ) data/wine-5.0/dlls/kernelbase/security.c:1500:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. privs, creation, access, on_close ); data/wine-5.0/dlls/kernelbase/string.c:466:16: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WCHAR * WINAPI StrCpyNW(WCHAR *dst, const WCHAR *src, int count) data/wine-5.0/dlls/kernelbase/string.c:1388:15: [4] (buffer) StrCatBuffA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). char * WINAPI StrCatBuffA(char *str, const char *cat, INT max_len) data/wine-5.0/dlls/kernelbase/string.c:1400:9: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNA(str + len, cat, max_len); data/wine-5.0/dlls/kernelbase/string.c:1405:16: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). WCHAR * WINAPI StrCatBuffW(WCHAR *str, const WCHAR *cat, INT max_len) data/wine-5.0/dlls/kernelbase/string.c:1417:9: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(str + len, cat, max_len); data/wine-5.0/dlls/kernelbase/string.c:1422:14: [4] (buffer) StrCatChainW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). DWORD WINAPI StrCatChainW(WCHAR *str, DWORD max_len, DWORD at, const WCHAR *cat) data/wine-5.0/dlls/kernelbase/string.c:1507:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dst, src, dst_len); data/wine-5.0/dlls/kernelbase/sync.c:77:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), basenameW, NtCurrentTeb()->Peb->SessionId ); data/wine-5.0/dlls/kernelbase/sync.c:327:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:331:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateEventExW( sa, NULL, flags, access ); data/wine-5.0/dlls/kernelbase/sync.c:338:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateEventExW( sa, buffer, flags, access ); data/wine-5.0/dlls/kernelbase/sync.c:346:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:367:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateEvent( &ret, access, &attr, data/wine-5.0/dlls/kernelbase/sync.c:381:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenEventA( DWORD access, BOOL inherit, LPCSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:385:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenEventW( access, inherit, NULL ); data/wine-5.0/dlls/kernelbase/sync.c:392:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenEventW( access, inherit, buffer ); data/wine-5.0/dlls/kernelbase/sync.c:399:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenEventW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:409:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenEvent( &ret, access, &attr ))) return 0; data/wine-5.0/dlls/kernelbase/sync.c:467:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:472:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateMutexExW( sa, NULL, flags, access ); data/wine-5.0/dlls/kernelbase/sync.c:481:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateMutexExW( sa, NtCurrentTeb()->StaticUnicodeString.Buffer, flags, access ); data/wine-5.0/dlls/kernelbase/sync.c:489:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:498:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateMutant( &ret, access, &attr, (flags & CREATE_MUTEX_INITIAL_OWNER) != 0 ); data/wine-5.0/dlls/kernelbase/sync.c:510:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenMutexW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:520:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenMutant( &ret, access, &attr ))) return 0; data/wine-5.0/dlls/kernelbase/sync.c:553:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LPCWSTR name, DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:562:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateSemaphore( &ret, access, &attr, initial, max ); data/wine-5.0/dlls/kernelbase/sync.c:574:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenSemaphoreW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:584:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenSemaphore( &ret, access, &attr ))) return 0; data/wine-5.0/dlls/kernelbase/sync.c:617:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access ) data/wine-5.0/dlls/kernelbase/sync.c:626:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateTimer( &handle, access, &attr, data/wine-5.0/dlls/kernelbase/sync.c:639:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenWaitableTimerW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:649:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenTimer( &handle, access, &attr ))) return 0; data/wine-5.0/dlls/kernelbase/sync.c:786:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, sec_type; data/wine-5.0/dlls/kernelbase/sync.c:834:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateSection( &ret, access, &attr, &size, protect, sec_type, file ); data/wine-5.0/dlls/kernelbase/sync.c:846:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenFileMappingW( DWORD access, BOOL inherit, LPCWSTR name ) data/wine-5.0/dlls/kernelbase/sync.c:859:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!NtOpenSection( &ret, access | SECTION_MAP_READ | SECTION_MAP_WRITE, &attr )) return ret; data/wine-5.0/dlls/kernelbase/sync.c:862:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenSection( &ret, access, &attr ))) return 0; data/wine-5.0/dlls/kernelbase/sync.c:1075:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, options, sharing; data/wine-5.0/dlls/kernelbase/sync.c:1121:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= SYNCHRONIZE; data/wine-5.0/dlls/kernelbase/sync.c:1123:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (open_mode & WRITE_DAC) access |= WRITE_DAC; data/wine-5.0/dlls/kernelbase/sync.c:1124:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (open_mode & WRITE_OWNER) access |= WRITE_OWNER; data/wine-5.0/dlls/kernelbase/sync.c:1125:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (open_mode & ACCESS_SYSTEM_SECURITY) access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/dlls/kernelbase/sync.c:1135:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateNamedPipeFile( &handle, access, &attr, &iosb, sharing, data/wine-5.0/dlls/kernelbase/sync.c:1176:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( name, ARRAY_SIZE(name), fmtW, GetCurrentProcessId(), ++index ); data/wine-5.0/dlls/kernelbase/thread.c:334:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI DECLSPEC_HOTPATCH OpenThread( DWORD access, BOOL inherit, DWORD id ) data/wine-5.0/dlls/kernelbase/thread.c:350:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!set_ntstatus( NtOpenThread( &handle, access, &attr, &cid ))) handle = 0; data/wine-5.0/dlls/kernelbase/version.c:1086:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( filename, path ); data/wine-5.0/dlls/kernelbase/version.c:1089:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( filename, file ); data/wine-5.0/dlls/kernelbase/version.c:1111:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, path ); data/wine-5.0/dlls/kernelbase/version.c:1113:47: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (len && filename[len - 1] != '\\') lstrcatW( filename, L"\\" ); data/wine-5.0/dlls/kernelbase/version.c:1114:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, file ); data/wine-5.0/dlls/kernelbase/version.c:1196:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dest, destDir, *dest_len); data/wine-5.0/dlls/kernelbase/version.c:1203:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(cur_dir, curDir, *curdir_len); data/wine-5.0/dlls/kernelbase/version.c:1276:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, destDir, *dest_len); data/wine-5.0/dlls/kernelbase/version.c:1283:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(cur_dir, curDir, *curdir_len); data/wine-5.0/dlls/krnl386.exe16/atom.c:217:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( buffer, str, sizeof(buffer) ); data/wine-5.0/dlls/krnl386.exe16/error.c:232:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, ParamErrorStrings[n].name); data/wine-5.0/dlls/krnl386.exe16/file.c:210:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, module ); data/wine-5.0/dlls/krnl386.exe16/file.c:511:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prefix16 + 1, prefix); data/wine-5.0/dlls/krnl386.exe16/file.c:648:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, windir); data/wine-5.0/dlls/krnl386.exe16/file.c:649:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, system16); data/wine-5.0/dlls/krnl386.exe16/int21.c:747:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, pathA ); data/wine-5.0/dlls/krnl386.exe16/int21.c:820:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( nameW.Buffer + len, name ); data/wine-5.0/dlls/krnl386.exe16/int21.c:847:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HANDLE INT21_OpenMagicDevice( LPCWSTR name, DWORD access ) data/wine-5.0/dlls/krnl386.exe16/int21.c:877:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. GetCurrentProcess(), &handle, access, FALSE, 0 )) handle = 0; data/wine-5.0/dlls/krnl386.exe16/ioports.c:583:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(PPDeviceList[nports].devicename,buffer); data/wine-5.0/dlls/krnl386.exe16/kernel.c:272:10: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!lstrcpyA( MapSL(dst), src )) dst = 0; data/wine-5.0/dlls/krnl386.exe16/kernel.c:282:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( MapSL(dst), src ); data/wine-5.0/dlls/krnl386.exe16/kernel.c:344:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( v->szCSDVersion, info.szCSDVersion ); data/wine-5.0/dlls/krnl386.exe16/kernel.c:408:10: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!lstrcpynA( MapSL(dst), src, n )) return 0; data/wine-5.0/dlls/krnl386.exe16/kernel.c:422:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( p, src, n ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:337:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, name ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:694:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ofs->szPathName, path ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:765:21: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, (GetExeVersion16() >= 0x0300) ? ".DLL" : ".EXE" ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:962:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dllname, basename ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:964:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). if (!q) strcat( dllname, (GetExeVersion16() >= 0x0300) ? ".dll" : ".exe" ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1401:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tmpstr, name, sizeof(tmpstr)); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1521:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lpFileName, NE_MODULE_NAME(pModule), nSize ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1601:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( cmdline + 1, args ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1625:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( buffer, name, sizeof(buffer) ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1757:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tmpstr, name, sizeof(tmpstr)); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1925:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ofs->szPathName, filename ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1943:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( pStr+1, basename, len+1 ); data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:973:2: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= 2<<2; /* SEGMENT_CODE */ data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:974:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. SelectorAccessRights16(hSel,1,access); data/wine-5.0/dlls/krnl386.exe16/relay.c:106:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( str, buffer ); data/wine-5.0/dlls/krnl386.exe16/snoop.c:152:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (*dll)->name, name ); data/wine-5.0/dlls/krnl386.exe16/snoop.c:215:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( fun->name, name ); data/wine-5.0/dlls/krnl386.exe16/task.c:282:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( pTask->curdir, curdir + 2, sizeof(pTask->curdir) ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:120:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. easy access to this data, especially the process target data/wine-5.0/dlls/krnl386.exe16/thunk.c:1385:21: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(SL->pszDll16, module16, 255); data/wine-5.0/dlls/krnl386.exe16/thunk.c:1386:21: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(SL->pszDll32, module32, 255); data/wine-5.0/dlls/krnl386.exe16/thunk.c:2381:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, lpszLibFile ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:135:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( nameW.Buffer + len, name ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:194:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE __wine_vxd_open( LPCWSTR filenameW, DWORD access, SECURITY_ATTRIBUTES *sa ) data/wine-5.0/dlls/krnl386.exe16/vxd.c:210:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( name, filenameW ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:1543:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ViewSize? *ViewSize : 0, access); data/wine-5.0/dlls/krnl386.exe16/vxd.c:1545:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. result = (DWORD)MapViewOfFileEx(SectionHandle, access, data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:747:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szPcm); data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:753:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szMpeg3); data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:759:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szMpeg); data/wine-5.0/dlls/localspl/localmon.c:241:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, portname); /* Name of the Port */ data/wine-5.0/dlls/localspl/localmon.c:245:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, res_MonitorW); /* Name of the Monitor */ data/wine-5.0/dlls/localspl/localmon.c:249:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, res_PortW); /* Port Description */ data/wine-5.0/dlls/localspl/localmon.c:531:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(port->nameW, pName); data/wine-5.0/dlls/localspl/localmon.c:707:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, ptr, ARRAY_SIZE(buffer)); data/wine-5.0/dlls/localspl/localmon.c:742:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(xcv->nameW, pName); data/wine-5.0/dlls/localspl/provider.c:232:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( srcname, file_part ); data/wine-5.0/dlls/localspl/provider.c:234:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( apd->dst, file_part ); data/wine-5.0/dlls/localspl/provider.c:512:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(regroot, monitorsW); data/wine-5.0/dlls/localspl/provider.c:513:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(regroot, name); data/wine-5.0/dlls/localspl/provider.c:771:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, bs_ports_bsW); data/wine-5.0/dlls/localspl/provider.c:772:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, portname); data/wine-5.0/dlls/localspl/provider.c:924:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, buffer); /* Name of the Monitor */ data/wine-5.0/dlls/localspl/provider.c:928:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, x86_envnameW); /* fixed to "Windows NT x86" */ data/wine-5.0/dlls/localspl/provider.c:932:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, dllname); /* Name of the Driver-DLL */ data/wine-5.0/dlls/localspl/provider.c:987:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, winprintW); /* Name of the Print Processor */ data/wine-5.0/dlls/localspl/provider.c:1019:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, buffer); /* Name of the Print Processor */ data/wine-5.0/dlls/localspl/provider.c:1107:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, cache->pPortName); data/wine-5.0/dlls/localspl/provider.c:1111:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, cache->pMonitorName); data/wine-5.0/dlls/localspl/provider.c:1115:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, cache->pDescription); data/wine-5.0/dlls/localspl/provider.c:1237:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir, spoolW ); data/wine-5.0/dlls/localspl/provider.c:1239:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir, driversW ); data/wine-5.0/dlls/localspl/provider.c:1241:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir, env->subdir ); data/wine-5.0/dlls/localspl/provider.c:1276:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, env->versionsubdir); data/wine-5.0/dlls/localspl/provider.c:1277:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, backslashW); data/wine-5.0/dlls/localspl/provider.c:1278:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, dllname); data/wine-5.0/dlls/localspl/provider.c:1485:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(apd.src, backslashW); data/wine-5.0/dlls/localspl/provider.c:1487:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(apd.dst, env->versionsubdir); data/wine-5.0/dlls/localspl/provider.c:1488:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(apd.dst, backslashW); data/wine-5.0/dlls/localspl/provider.c:2453:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW((LPWSTR) pPPInfo, spoolprtprocsW); data/wine-5.0/dlls/localspl/provider.c:2454:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW((LPWSTR) pPPInfo, env->subdir); data/wine-5.0/dlls/localui/localui.c:94:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, pPrefix); data/wine-5.0/dlls/localui/localui.c:95:22: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (pSuffix) lstrcatW(ptr, pSuffix); data/wine-5.0/dlls/localui/localui.c:189:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(message, len, res_PortExistsW, portname); data/wine-5.0/dlls/localui/localui.c:215:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(message, len, res_InvalidNameW, portname); data/wine-5.0/dlls/localui/localui.c:382:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(bufferW, ARRAY_SIZE(bufferW), fmt_uW, res); data/wine-5.0/dlls/localui/localui.c:532:34: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (*ppPortName) lstrcpyW(*ppPortName, data.portname); data/wine-5.0/dlls/localui/tests/localui.c:125:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, strW); data/wine-5.0/dlls/localui/tests/localui.c:312:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_lptA, id); data/wine-5.0/dlls/localui/tests/localui.c:323:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_comA, id); data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:81:7: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dst, "\\"); data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:82:3: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dst, src); data/wine-5.0/dlls/mapi32/sendmail.c:425:84: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. token, NULL, 0, status, message_flags, access, data/wine-5.0/dlls/mapi32/tests/prop.c:1212:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ULONG access[2], count; data/wine-5.0/dlls/mapi32/tests/prop.c:1311:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = 0; data/wine-5.0/dlls/mapi32/tests/prop.c:1312:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/tests/prop.c:1315:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = IPROP_READWRITE; data/wine-5.0/dlls/mapi32/tests/prop.c:1316:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/tests/prop.c:1319:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = IPROP_CLEAN; data/wine-5.0/dlls/mapi32/tests/prop.c:1320:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/tests/prop.c:1327:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = IPROP_READWRITE|IPROP_CLEAN; data/wine-5.0/dlls/mapi32/tests/prop.c:1328:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/tests/prop.c:1336:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = IPROP_READONLY|IPROP_DIRTY; data/wine-5.0/dlls/mapi32/tests/prop.c:1337:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/tests/prop.c:1402:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access[0] = IPROP_READWRITE|IPROP_DIRTY; data/wine-5.0/dlls/mapi32/tests/prop.c:1403:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sc = IPropData_HrSetPropAccess(lpIProp, (LPSPropTagArray)&tags, access); data/wine-5.0/dlls/mapi32/util.c:910:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(lcid_ver, fmt[i], GetUserDefaultUILanguage()); data/wine-5.0/dlls/mapi32/util.c:1064:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(appKey, regkey_mail); data/wine-5.0/dlls/mapi32/util.c:1065:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(appKey, regkey_backslash); data/wine-5.0/dlls/mapi32/util.c:1066:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(appKey, appName); data/wine-5.0/dlls/mciavi32/info.c:218:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpParms->lpstrReturn, str ? str : &zero, lpParms->dwRetSize); data/wine-5.0/dlls/mciavi32/mciavi.c:256:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wma->lpFileName, lpOpenParms->lpstrElementName); data/wine-5.0/dlls/mcicda/mcicda.c:684:2: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), wszLu, res); data/wine-5.0/dlls/mcicda/mcicda.c:695:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpParms->lpstrReturn, str, lpParms->dwRetSize); data/wine-5.0/dlls/mciseq/mcimidi.c:696:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wmm->lpstrElementName, lpParms->lpstrElementName); data/wine-5.0/dlls/mciseq/mcimidi.c:1534:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpParms->lpstrReturn, str ? str : &zero, lpParms->dwRetSize); data/wine-5.0/dlls/mciwave/mciwave.c:468:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fn, filename); data/wine-5.0/dlls/mciwave/mciwave.c:1705:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpParms->lpstrReturn, str ? str : &zero, lpParms->dwRetSize); data/wine-5.0/dlls/mf/tests/mf.c:63:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/mfplat/main.c:139:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(str, 39, szGUIDFmt, guid->Data1, guid->Data2, data/wine-5.0/dlls/mfplat/main.c:228:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(str, ARRAY_SIZE(str), reg_format, transform_keyW, buffer); data/wine-5.0/dlls/mfplat/main.c:292:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(str, ARRAY_SIZE(str), reg_format, categories_keyW, guid1, guid2); data/wine-5.0/dlls/mfplat/tests/mfplat.c:93:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/mfplat/tests/mfplat.c:471:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, fileschemeW); data/wine-5.0/dlls/mfplat/tests/mfplat.c:472:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filename); data/wine-5.0/dlls/mfplat/tests/mfplat.c:1443:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, fileschemeW); data/wine-5.0/dlls/mfplat/tests/mfplat.c:1444:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filename); data/wine-5.0/dlls/midimap/midimap.c:570:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(midiOutPorts[dev].name, moc.szPname); data/wine-5.0/dlls/mlang/mlang.c:2765:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pCharsetInfo->wszCharset, csetW); data/wine-5.0/dlls/mlang/mlang.c:2772:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pCharsetInfo->wszCharset, mlang_data[i].mime_cp_info[n].alias); data/wine-5.0/dlls/mlang/mlang.c:2794:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pCharsetInfo->wszCharset, csetW); data/wine-5.0/dlls/mlang/mlang.c:3952:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, info->cp); data/wine-5.0/dlls/mlang/tests/mlang.c:1561:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(short_broken_name, info_table[i].broken_name); data/wine-5.0/dlls/mlang/tests/mlang.c:2193:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/mmdevapi/devenum.c:73:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/mmdevapi/devenum.c:109:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HRESULT MMDevPropStore_Create(MMDevice *This, DWORD access, IPropertyStore **ppv); data/wine-5.0/dlls/mmdevapi/devenum.c:669:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HRESULT WINAPI MMDevice_OpenPropertyStore(IMMDevice *iface, DWORD access, IPropertyStore **ppv) data/wine-5.0/dlls/mmdevapi/devenum.c:672:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p)->(%x,%p)\n", This, access, ppv); data/wine-5.0/dlls/mmdevapi/devenum.c:676:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return MMDevPropStore_Create(This, access, ppv); data/wine-5.0/dlls/mmdevapi/devenum.c:986:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(reg_key, drv_keyW); data/wine-5.0/dlls/mmdevapi/devenum.c:987:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(reg_key, slashW); data/wine-5.0/dlls/mmdevapi/devenum.c:988:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(reg_key, drvs.module_name); data/wine-5.0/dlls/mmdevapi/devenum.c:1188:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(reg_key, drv_keyW); data/wine-5.0/dlls/mmdevapi/devenum.c:1189:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(reg_key, slashW); data/wine-5.0/dlls/mmdevapi/devenum.c:1190:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(reg_key, drvs.module_name); data/wine-5.0/dlls/mmdevapi/devenum.c:1317:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HRESULT MMDevPropStore_Create(MMDevice *parent, DWORD access, IPropertyStore **ppv) data/wine-5.0/dlls/mmdevapi/devenum.c:1320:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access != STGM_READ data/wine-5.0/dlls/mmdevapi/devenum.c:1321:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && access != STGM_WRITE data/wine-5.0/dlls/mmdevapi/devenum.c:1322:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && access != STGM_READWRITE) data/wine-5.0/dlls/mmdevapi/devenum.c:1324:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WARN("Invalid access %08x\n", access); data/wine-5.0/dlls/mmdevapi/devenum.c:1334:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. This->access = access; data/wine-5.0/dlls/mmdevapi/devenum.c:1442:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (This->access != STGM_READ data/wine-5.0/dlls/mmdevapi/devenum.c:1443:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && This->access != STGM_READWRITE) data/wine-5.0/dlls/mmdevapi/devenum.c:1468:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (This->access != STGM_WRITE data/wine-5.0/dlls/mmdevapi/devenum.c:1469:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && This->access != STGM_READWRITE) data/wine-5.0/dlls/mmdevapi/devenum.c:1479:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (This->access != STGM_WRITE data/wine-5.0/dlls/mmdevapi/devenum.c:1480:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && This->access != STGM_READWRITE) data/wine-5.0/dlls/mmdevapi/devenum.c:1613:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, IPropertyStore **ppv) data/wine-5.0/dlls/mmdevapi/devenum.c:1615:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(static)->(%x, %p)\n", access, ppv); data/wine-5.0/dlls/mmdevapi/main.c:74:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver_module, wineW); data/wine-5.0/dlls/mmdevapi/main.c:75:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driver_module, name); data/wine-5.0/dlls/mmdevapi/main.c:76:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driver_module, dotdrvW); data/wine-5.0/dlls/mmdevapi/main.c:99:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver->module_name, driver_module); data/wine-5.0/dlls/mmsystem.dll16/driver.c:260:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(drvName, lpDriverName); data/wine-5.0/dlls/mmsystem.dll16/message16.c:65:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mixcaps->szPname, micA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:371:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mic16.szPname, micA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:497:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpmc16[i].szShortName, mlcA.pamxctrl[i].szShortName); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:498:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpmc16[i].szName, mlcA.pamxctrl[i].szName); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:547:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mliA.Target.szPname, lpmli16->Target.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:564:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpmli16->szShortName, mliA.szShortName); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:565:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpmli16->szName, mliA.szName); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:571:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpmli16->Target.szPname, mliA.Target.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:625:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ac16.szPname, acA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:703:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(moc16.szPname, mocA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:919:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mic16.szPname, micA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:1200:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(woc16.szPname, wocA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:1489:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(wic16.szPname, wicA.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:2207:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpCaps->szPname, jca.szPname); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:2229:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpCaps->szRegKey, jca.szRegKey); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:2230:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpCaps->szOEMVxD, jca.szOEMVxD); data/wine-5.0/dlls/mountmgr.sys/dbus.c:627:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( ident, model, ident_size ); data/wine-5.0/dlls/mountmgr.sys/device.c:126:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, config_dir ); data/wine-5.0/dlls/mountmgr.sys/device.c:138:74: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/dlls/mountmgr.sys/device.c:1390:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( unix_path, search_paths[i], j ); data/wine-5.0/dlls/mountmgr.sys/device.c:1391:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access( unix_path, F_OK ) != 0) data/wine-5.0/dlls/mountmgr.sys/diskarb.c:275:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( unix_name, name ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:72:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( str, link ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:339:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, mount_point ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:347:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, device ); data/wine-5.0/dlls/mpr/tests/mpr.c:230:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(resource_buf, m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:232:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(password_buf, m_password); data/wine-5.0/dlls/mpr/tests/mpr.c:237:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(resource_buf, m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:247:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prefix_buf, m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:253:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(resource_buf, m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:283:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(netRes->lpLocalName, drive); data/wine-5.0/dlls/mpr/wnet.c:138:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(serviceName, ARRAY_SIZE(serviceName), serviceFmt, servicePrefix, provider); data/wine-5.0/dlls/mpr/wnet.c:157:78: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ExpandEnvironmentStringsW(providerPath, path, MAX_PATH)) lstrcpyW( providerPath, path ); data/wine-5.0/dlls/mpr/wnet.c:398:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret->lpRemoteName, lpNet->lpRemoteName); data/wine-5.0/dlls/mpr/wnet.c:1019:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(resource->lpRemoteName, data/wine-5.0/dlls/mpr/wnet.c:1024:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(resource->lpProvider, data/wine-5.0/dlls/mpr/wnet.c:1236:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpNet->lpComment, providerTable->entireNetwork); data/wine-5.0/dlls/mpr/wnet.c:1497:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, registry_string); data/wine-5.0/dlls/mpr/wnet.c:1516:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, registry_string); data/wine-5.0/dlls/mpr/wnet.c:1972:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(accessname, local_name); data/wine-5.0/dlls/mpr/wnet.c:1977:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(accessname, ctxt->resource->lpRemoteName); data/wine-5.0/dlls/mpr/wnet.c:2164:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(accessname, ctxt->resourceA->lpRemoteName); data/wine-5.0/dlls/mpr/wnet.c:2583:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(info->lpUniversalName, lpLocalPath); data/wine-5.0/dlls/mpr/wnet.c:2631:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->lpUniversalName, lpLocalPath); data/wine-5.0/dlls/mpr/wnet.c:3016:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpProvider, providerTable->table[i].name); data/wine-5.0/dlls/msacm32.drv/wavemap.c:514:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(woc.szPname, name); data/wine-5.0/dlls/msacm32.drv/wavemap.c:1070:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wic.szPname, init); data/wine-5.0/dlls/msacm32/driver.c:442:39: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (section_name) lstrcpyW(section_name, drivers32); data/wine-5.0/dlls/msacm32/driver.c:445:37: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (alias_name) lstrcpyW(alias_name, pAlias); data/wine-5.0/dlls/msacm32/format.c:103:24: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, afd.szFormat, ACMFORMATTAGDETAILS_FORMATTAG_CHARS + 1); data/wine-5.0/dlls/msacm32/internal.c:198:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, baseKey); data/wine-5.0/dlls/msacm32/internal.c:199:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret + len, padid->pszDriverAlias); data/wine-5.0/dlls/msacm32/internal.c:303:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( padid->pszDriverAlias, pszDriverAlias ); data/wine-5.0/dlls/msacm32/internal.c:314:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( padid->pszFileName, pszFileName ); data/wine-5.0/dlls/msacm32/internal.c:616:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szSubKey, 17, priorityTmpl, i + 1); data/wine-5.0/dlls/msacm32/internal.c:705:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szSubKey, 17, priorityTmpl, dwPriorityCounter); data/wine-5.0/dlls/msacm32/internal.c:708:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szBuffer, 256, valueTmpl, (padid->fdwSupport & ACMDRIVERDETAILS_SUPPORTF_DISABLED) ? '0' : '1', padid->pszDriverAlias); data/wine-5.0/dlls/msacm32/internal.c:720:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szSubKey, 17, priorityTmpl, dwPriorityCounter); data/wine-5.0/dlls/msacm32/internal.c:723:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szBuffer, 256, valueTmpl, '1', converterAlias); data/wine-5.0/dlls/msado15/msado15_private.h:39:69: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (lstrlenW( src ) + 1) * sizeof(*dst) ))) lstrcpyW( dst, src ); data/wine-5.0/dlls/msadp32.acm/msadp32.c:442:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szPcm); data/wine-5.0/dlls/msadp32.acm/msadp32.c:448:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szMsAdPcm); data/wine-5.0/dlls/mscms/handle.c:166:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (profile->access & PROFILE_READWRITE) data/wine-5.0/dlls/mscms/mscms_priv.h:34:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/mscms/profile.c:43:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, &path[i] ); data/wine-5.0/dlls/mscms/profile.c:299:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( colordir, colorsubdir ); data/wine-5.0/dlls/mscms/profile.c:305:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, colordir ); data/wine-5.0/dlls/mscms/profile.c:649:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( rgbprofile, rgbprofilefile ); data/wine-5.0/dlls/mscms/profile.c:659:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( profile, rgbprofile ); data/wine-5.0/dlls/mscms/profile.c:690:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, slash ); data/wine-5.0/dlls/mscms/profile.c:691:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, file ); data/wine-5.0/dlls/mscms/profile.c:831:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( glob, colordir ); data/wine-5.0/dlls/mscms/profile.c:832:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( glob, spec ); data/wine-5.0/dlls/mscms/profile.c:863:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( profiles[count], data.cFileName ); data/wine-5.0/dlls/mscms/profile.c:899:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( profiles[count], data.cFileName ); data/wine-5.0/dlls/mscms/profile.c:915:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( p, profiles[i] ); data/wine-5.0/dlls/mscms/profile.c:982:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( glob, colordir ); data/wine-5.0/dlls/mscms/profile.c:983:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( glob, spec ); data/wine-5.0/dlls/mscms/profile.c:1004:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( profiles[count], data.cFileName ); data/wine-5.0/dlls/mscms/profile.c:1031:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( profiles[count], data.cFileName ); data/wine-5.0/dlls/mscms/profile.c:1045:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, profiles[i] ); data/wine-5.0/dlls/mscms/profile.c:1125:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, slash ); data/wine-5.0/dlls/mscms/profile.c:1126:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, base ); data/wine-5.0/dlls/mscms/profile.c:1236:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!size || !buffer || !(profile->access & PROFILE_READWRITE)) data/wine-5.0/dlls/mscms/profile.c:1269:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!header || !(profile->access & PROFILE_READWRITE)) data/wine-5.0/dlls/mscms/profile.c:1355:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HPROFILE WINAPI OpenColorProfileA( PPROFILE profile, DWORD access, DWORD sharing, DWORD creation ) data/wine-5.0/dlls/mscms/profile.c:1360:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "( %p, 0x%08x, 0x%08x, 0x%08x )\n", profile, access, sharing, creation ); data/wine-5.0/dlls/mscms/profile.c:1366:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenColorProfileW( profile, access, sharing, creation ); data/wine-5.0/dlls/mscms/profile.c:1369:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle = OpenColorProfileW( &profileW, access, sharing, creation ); data/wine-5.0/dlls/mscms/profile.c:1396:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HPROFILE WINAPI OpenColorProfileW( PPROFILE profile, DWORD access, DWORD sharing, DWORD creation ) data/wine-5.0/dlls/mscms/profile.c:1404:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "( %p, 0x%08x, 0x%08x, 0x%08x )\n", profile, access, sharing, creation ); data/wine-5.0/dlls/mscms/profile.c:1428:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROFILE_READ) flags = GENERIC_READ; data/wine-5.0/dlls/mscms/profile.c:1429:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROFILE_READWRITE) flags = GENERIC_READ|GENERIC_WRITE; data/wine-5.0/dlls/mscms/profile.c:1496:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. profile.access = access; data/wine-5.0/dlls/mscms/profile.c:1558:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HPROFILE WINAPI WcsOpenColorProfileA( PROFILE *cdm, PROFILE *camp, PROFILE *gmmp, DWORD access, DWORD sharing, data/wine-5.0/dlls/mscms/profile.c:1564:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "%p, %p, %p, %08x, %08x, %08x, %08x\n", cdm, camp, gmmp, access, sharing, creation, flags ); data/wine-5.0/dlls/mscms/profile.c:1570:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = WcsOpenColorProfileW( &cdmW, &campW, &gmmpW, access, sharing, creation, flags ); data/wine-5.0/dlls/mscms/profile.c:1582:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HPROFILE WINAPI WcsOpenColorProfileW( PROFILE *cdm, PROFILE *camp, PROFILE *gmmp, DWORD access, DWORD sharing, data/wine-5.0/dlls/mscms/profile.c:1585:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "%p, %p, %p, %08x, %08x, %08x, %08x\n", cdm, camp, gmmp, access, sharing, creation, flags ); data/wine-5.0/dlls/mscms/profile.c:1588:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenColorProfileW( cdm, access, sharing, creation ); data/wine-5.0/dlls/mscms/tests/profile.c:147:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, &path[i] ); data/wine-5.0/dlls/mscms/tests/profile.c:155:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, &path[i] ); data/wine-5.0/dlls/mscms/tests/profile.c:792:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( dest, slash ); data/wine-5.0/dlls/mscms/tests/profile.c:793:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( dest, base ); data/wine-5.0/dlls/mscms/tests/profile.c:849:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, slash ); data/wine-5.0/dlls/mscms/tests/profile.c:850:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, base ); data/wine-5.0/dlls/mscms/tests/profile.c:1178:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( dest, slash ); data/wine-5.0/dlls/mscms/tests/profile.c:1179:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( dest, base ); data/wine-5.0/dlls/mscms/tests/profile.c:1228:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, slash ); data/wine-5.0/dlls/mscms/tests/profile.c:1229:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest, base ); data/wine-5.0/dlls/mscms/tests/profile.c:1286:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( profile, "\\" ); data/wine-5.0/dlls/mscms/tests/profile.c:1287:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( profile, basename ); data/wine-5.0/dlls/mscms/tests/profile.c:1329:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( glob, "\\*.icm" ); data/wine-5.0/dlls/mscms/tests/profile.c:1403:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(profilefile2, profilefile1); data/wine-5.0/dlls/mscms/tests/profile.c:1404:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(profilefile2W, profilefile1W); data/wine-5.0/dlls/mscms/tests/profile.c:1406:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( profilefile1, profile1 ); data/wine-5.0/dlls/mscms/tests/profile.c:1407:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( profilefile1W, profile1W ); data/wine-5.0/dlls/mscms/tests/profile.c:1417:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( profilefile2, profile2 ); data/wine-5.0/dlls/mscms/tests/profile.c:1418:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( profilefile2W, profile2W ); data/wine-5.0/dlls/mscoree/assembly.c:91:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/dlls/mscoree/config.c:355:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(This->result->private_path, value); data/wine-5.0/dlls/mscoree/config.c:384:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry->version, value); data/wine-5.0/dlls/mscoree/corruntimehost.c:190:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(config_dir, machine_configW); data/wine-5.0/dlls/mscoree/corruntimehost.c:1477:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(config_file, filename); data/wine-5.0/dlls/mscoree/corruntimehost.c:1478:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(config_file, dotconfig); data/wine-5.0/dlls/mscoree/corruntimehost.c:1494:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(priv_path[i] + config_file_dir_size, temp); data/wine-5.0/dlls/mscoree/corruntimehost.c:1713:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(classname, ptr_name); data/wine-5.0/dlls/mscoree/corruntimehost.c:1729:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, str_dll); data/wine-5.0/dlls/mscoree/corruntimehost.c:1769:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, wszCLSIDSlash); data/wine-5.0/dlls/mscoree/corruntimehost.c:1771:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, wszInprocServer32); data/wine-5.0/dlls/mscoree/corruntimehost.c:1796:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, codebase + offset); data/wine-5.0/dlls/mscoree/corruntimehost.c:1840:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, assemblyname); data/wine-5.0/dlls/mscoree/corruntimehost.c:1842:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, wszDLL); data/wine-5.0/dlls/mscoree/metahost.c:172:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mono_lib_path, mono_path); data/wine-5.0/dlls/mscoree/metahost.c:173:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(mono_lib_path, lib); data/wine-5.0/dlls/mscoree/metahost.c:176:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mono_etc_path, mono_path); data/wine-5.0/dlls/mscoree/metahost.c:177:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(mono_etc_path, etc); data/wine-5.0/dlls/mscoree/metahost.c:490:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(system_dir, version); data/wine-5.0/dlls/mscoree/metahost.c:491:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(system_dir, slash); data/wine-5.0/dlls/mscoree/metahost.c:500:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwzBuffer, system_dir); data/wine-5.0/dlls/mscoree/metahost.c:645:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dll_path, path); data/wine-5.0/dlls/mscoree/metahost.c:646:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_path, libmono2_arch_dll); data/wine-5.0/dlls/mscoree/metahost.c:651:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dll_path, path); data/wine-5.0/dlls/mscoree/metahost.c:652:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_path, mono2_dll); data/wine-5.0/dlls/mscoree/metahost.c:658:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dll_path, path); data/wine-5.0/dlls/mscoree/metahost.c:659:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_path, libmono2_dll); data/wine-5.0/dlls/mscoree/metahost.c:673:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(base_path, subdir_mono); data/wine-5.0/dlls/mscoree/metahost.c:677:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, base_path); data/wine-5.0/dlls/mscoree/metahost.c:702:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, base_path); data/wine-5.0/dlls/mscoree/metahost.c:725:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dos_dir, dir ); data/wine-5.0/dlls/mscoree/metahost.c:726:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dos_dir, basedir ); data/wine-5.0/dlls/mscoree/metahost.c:730:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, dos_dir); data/wine-5.0/dlls/mscoree/metahost.c:781:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( package_dir, data_dir ); data/wine-5.0/dlls/mscoree/metahost.c:782:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( package_dir, suffix ); data/wine-5.0/dlls/mscoree/metahost.c:1500:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( appname, subkeyW ); data/wine-5.0/dlls/mscoree/metahost.c:1541:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name_copy, name); data/wine-5.0/dlls/mscoree/metahost.c:1641:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(path, private_path[i]); data/wine-5.0/dlls/mscoree/metahost.c:1642:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(path, slashW); data/wine-5.0/dlls/mscoree/metahost.c:1643:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(path, stringnameW); data/wine-5.0/dlls/mscoree/metahost.c:1644:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(path, dotdllW); data/wine-5.0/dlls/mscoree/metahost.c:1732:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(local_config_file, exefile); data/wine-5.0/dlls/mscoree/metahost.c:1733:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(local_config_file, dotconfig); data/wine-5.0/dlls/mscoree/mscoree_main.c:423:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_filename, szVersion); data/wine-5.0/dlls/mscoree/mscoree_main.c:424:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_filename, slash); data/wine-5.0/dlls/mscoree/mscoree_main.c:427:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dll_filename, szDllName); data/wine-5.0/dlls/mscoree/mscoree_main.c:742:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msi_path, mono_path); data/wine-5.0/dlls/mscoree/mscoree_main.c:743:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(msi_path, support_msi_relative); data/wine-5.0/dlls/mscoree/tests/comtest.c:60:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path_file, path_tmp); data/wine-5.0/dlls/mscoree/tests/comtest.c:89:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s /t:library /out:\"%s\" \"%s\"", path_csc, path_temp, source_path); data/wine-5.0/dlls/mscoree/tests/comtest.c:162:8: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path_dll, path_tmp); data/wine-5.0/dlls/mscoree/tests/comtest.c:309:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s", argv[0]); data/wine-5.0/dlls/mscoree/tests/comtest.c:311:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s.exe", argv[0]); data/wine-5.0/dlls/mscoree/tests/comtest.c:312:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s %s %d", argv[0], argv[1], dll_source, run); data/wine-5.0/dlls/mscoree/tests/metahost.c:110:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dot, dotzero); data/wine-5.0/dlls/mscoree/tests/mscoree.c:146:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cmdline, cmdline_format, argv[0]); data/wine-5.0/dlls/msctf/categorymgr.c:115:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt,szwSystemTIPKey,buf); data/wine-5.0/dlls/msctf/categorymgr.c:123:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt2,ctg,ctg,buf,buf2); data/wine-5.0/dlls/msctf/categorymgr.c:131:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt2,ctg,itm,buf2,buf); data/wine-5.0/dlls/msctf/categorymgr.c:163:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt,szwSystemTIPKey,buf); data/wine-5.0/dlls/msctf/categorymgr.c:171:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt2,ctg,ctg,buf,buf2); data/wine-5.0/dlls/msctf/categorymgr.c:173:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt2,ctg,itm,buf2,buf); data/wine-5.0/dlls/msctf/categorymgr.c:214:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt,szwSystemTIPKey,buf,buf); data/wine-5.0/dlls/msctf/inputprocessor.c:229:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwFullLangfmt,szwSystemTIPKey,buf,szwLngp,langid,buf2); data/wine-5.0/dlls/msctf/inputprocessor.c:302:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwTipfmt,szwSystemTIPKey,buf); data/wine-5.0/dlls/msctf/inputprocessor.c:323:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwTipfmt,szwSystemTIPKey,buf); data/wine-5.0/dlls/msctf/inputprocessor.c:354:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwTipfmt,szwSystemTIPKey,buf); data/wine-5.0/dlls/msctf/inputprocessor.c:361:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt2,szwLngp,langid,buf); data/wine-5.0/dlls/msctf/inputprocessor.c:420:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey, ARRAY_SIZE(fullkey), szwDefaultFmt, szwSystemCTFKey, szwAssemblies, langid, buf); data/wine-5.0/dlls/msctf/inputprocessor.c:479:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey, ARRAY_SIZE(fullkey), szwDefaultFmt, szwSystemCTFKey, szwAssemblies, langid, buf); data/wine-5.0/dlls/msctf/inputprocessor.c:643:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwFullLangfmt,szwSystemTIPKey,buf,szwLngp,langid,buf2); data/wine-5.0/dlls/msctf/inputprocessor.c:676:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwFullLangfmt,szwSystemTIPKey,buf,szwLngp,langid,buf2); data/wine-5.0/dlls/msctf/inputprocessor.c:720:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),szwFullLangfmt,szwSystemTIPKey,buf,szwLngp,langid,buf2); data/wine-5.0/dlls/msctf/inputprocessor.c:1190:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt,This->szwCurrentClsid,szwLngp,This->langid); data/wine-5.0/dlls/msctf/inputprocessor.c:1307:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(new_This->szwCurrentClsid,This->szwCurrentClsid,39); data/wine-5.0/dlls/msctf/inputprocessor.c:1314:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(fullkey,ARRAY_SIZE(fullkey),fmt,This->szwCurrentClsid,szwLngp,This->langid); data/wine-5.0/dlls/msdmo/dmoreg.c:123:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer + 1, string); data/wine-5.0/dlls/msdmo/dmoreg.c:667:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Names[count], szValue); data/wine-5.0/dlls/msdmo/tests/msdmo.c:70:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "DirectShow\\MediaObjects\\Categories\\%s", guid_to_string(&GUID_unknowncategory)); data/wine-5.0/dlls/msg711.acm/msg711.c:715:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szPcm); data/wine-5.0/dlls/msg711.acm/msg711.c:721:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szALaw); data/wine-5.0/dlls/msg711.acm/msg711.c:727:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szULaw); data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:244:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szPcm); data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:250:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(aftd->szFormatTag, szGsm); data/wine-5.0/dlls/mshtml/dispex.c:1066:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define CASE_VT(vt,type,access) \ data/wine-5.0/dlls/mshtml/dispex.c:1071:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access(res) = val; \ data/wine-5.0/dlls/mshtml/dispex.c:1119:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define CASE_VT(vt,type,access) \ data/wine-5.0/dlls/mshtml/dispex.c:1121:107: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hres = ((HRESULT (WINAPI*)(IUnknown*,type))((void**)iface->lpVtbl)[func->put_vtbl_off])(iface,access(v)); \ data/wine-5.0/dlls/mshtml/dispex.c:1204:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define CASE_VT(vt,type,access) \ data/wine-5.0/dlls/mshtml/dispex.c:1206:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. V_BYREF(&ret_ref) = &access(&retv); \ data/wine-5.0/dlls/mshtml/editor.c:298:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, val); data/wine-5.0/dlls/mshtml/htmlbody.c:155:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*ret, 8, formatW, rgb>>16, (rgb>>8)&0xff, rgb&0xff); data/wine-5.0/dlls/mshtml/htmldoc.c:2415:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(selector, 2*SysStringLen(v) + ARRAY_SIZE(formatW), formatW, v, v); data/wine-5.0/dlls/mshtml/htmlelem.c:5106:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, id); data/wine-5.0/dlls/mshtml/htmlevent.c:2923:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf+2, event_info[eid].name); data/wine-5.0/dlls/mshtml/htmllocation.c:358:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. port_len = swprintf(portW, ARRAY_SIZE(portW), format, url.nPort); data/wine-5.0/dlls/mshtml/htmllocation.c:441:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, port); data/wine-5.0/dlls/mshtml/htmlobject.c:271:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, V_I4(&v)); data/wine-5.0/dlls/mshtml/htmlobject.c:330:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, V_I4(&v)); data/wine-5.0/dlls/mshtml/htmlstyle.c:886:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, ptr); data/wine-5.0/dlls/mshtml/htmlstyle.c:1159:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szValue, ARRAY_SIZE(szValue), szFormat, value); data/wine-5.0/dlls/mshtml/htmlstyle.c:1168:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(value_str, ARRAY_SIZE(value_str), px_formatW, value); data/wine-5.0/dlls/mshtml/htmlstyle.c:2966:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, fval * 0.01f); data/wine-5.0/dlls/mshtml/htmltable.c:1181:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, V_I4(&v)); data/wine-5.0/dlls/mshtml/main.c:319:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, len, p, arg); data/wine-5.0/dlls/mshtml/navigate.c:2099:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(selector, ARRAY_SIZE(selector_formatW)+SysStringLen(frag), selector_formatW, frag); data/wine-5.0/dlls/mshtml/nsembed.c:265:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, wine_geckoW); data/wine-5.0/dlls/mshtml/nsembed.c:325:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(plugin_path+len, gecko_pluginW); data/wine-5.0/dlls/mshtml/nsembed.c:476:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), debug_formatW, debug_level); data/wine-5.0/dlls/mshtml/nsembed.c:492:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path+len, gre_path); data/wine-5.0/dlls/mshtml/nsembed.c:592:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(gecko_path, gre_path); data/wine-5.0/dlls/mshtml/protocol.c:389:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW((LPWSTR)This->data, text); data/wine-5.0/dlls/mshtml/protocol.c:390:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW((LPWSTR)This->data, html_end); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:5597:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sz_html_clientsite_objectparam, SZ_HTML_CLIENTSITE_OBJECTPARAM); data/wine-5.0/dlls/mshtml/tests/script.c:3412:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, path); data/wine-5.0/dlls/mshtml/tests/script.c:3414:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf + strlen(buf), "?%s", opt); data/wine-5.0/dlls/mshtml/tests/script.c:3429:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(index_html_data, data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:450:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, expect[i].key); data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:452:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, expect[i].value); data/wine-5.0/dlls/msi/action.c:437:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, str ); data/wine-5.0/dlls/msi/action.c:480:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( source, db, len ); data/wine-5.0/dlls/msi/action.c:2121:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir, str ); data/wine-5.0/dlls/msi/action.c:2122:76: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if ( i + 1 != count && dir[0] && dir[lstrlenW( dir ) - 1] != '\\') lstrcatW( dir, szBackSlash ); data/wine-5.0/dlls/msi/action.c:2412:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, ARRAY_SIZE(buf), fmtW, free.QuadPart / 512 ); data/wine-5.0/dlls/msi/action.c:2416:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, ARRAY_SIZE(buf), fmtW, required / 512 ); data/wine-5.0/dlls/msi/action.c:2419:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, ARRAY_SIZE(buf), fmtW, (free.QuadPart - required) / 512 ); data/wine-5.0/dlls/msi/action.c:2594:99: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HKEY open_key( const MSICOMPONENT *comp, HKEY root, const WCHAR *path, BOOL create, REGSAM access ) data/wine-5.0/dlls/msi/action.c:2600:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= get_registry_view( comp ); data/wine-5.0/dlls/msi/action.c:2606:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExW( root, subkey, 0, NULL, 0, access, NULL, &hkey, NULL ); data/wine-5.0/dlls/msi/action.c:2608:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExW( root, subkey, 0, access, &hkey ); data/wine-5.0/dlls/msi/action.c:2617:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = open_key( comp, hkey, q + 1, create, access ); data/wine-5.0/dlls/msi/action.c:2673:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, left[i] ); data/wine-5.0/dlls/msi/action.c:2678:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, right[i] ); data/wine-5.0/dlls/msi/action.c:2839:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(uikey,szRoot); data/wine-5.0/dlls/msi/action.c:2840:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(uikey,deformated); data/wine-5.0/dlls/msi/action.c:2962:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegDeleteKeyExW( hkey, p + 1, access, 0 ); data/wine-5.0/dlls/msi/action.c:2966:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegDeleteKeyExW( root, subkey, access, 0 ); data/wine-5.0/dlls/msi/action.c:3055:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ui_key_str, root_key_str ); data/wine-5.0/dlls/msi/action.c:3056:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ui_key_str, deformated_key ); data/wine-5.0/dlls/msi/action.c:3118:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ui_key_str, root_key_str ); data/wine-5.0/dlls/msi/action.c:3119:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ui_key_str, deformated_key ); data/wine-5.0/dlls/msi/action.c:3302:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer,len,fmt2,root,deformated,deformated_name); data/wine-5.0/dlls/msi/action.c:3304:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer,len,fmt,root,deformated); data/wine-5.0/dlls/msi/action.c:3327:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HKEY open_shared_dlls_key( MSICOMPONENT *comp, BOOL create, REGSAM access ) data/wine-5.0/dlls/msi/action.c:3333:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_key( comp, HKEY_LOCAL_MACHINE, path, create, access ); data/wine-5.0/dlls/msi/action.c:3435:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keypath, prefixW ); data/wine-5.0/dlls/msi/action.c:3436:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, comp->assembly->display_name ); data/wine-5.0/dlls/msi/action.c:3525:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(source, ARRAY_SIZE(source), fmt, MSI_RecordGetInteger(row, 1)); data/wine-5.0/dlls/msi/action.c:3529:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(base, package->PackagePath); data/wine-5.0/dlls/msi/action.c:3535:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr2, ptr); data/wine-5.0/dlls/msi/action.c:3614:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(tl_struct->path,sz,fmt,tl_struct->source, lpszName); data/wine-5.0/dlls/msi/action.c:4791:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (unregister) swprintf( cmd, lstrlenW(dll) + ARRAY_SIZE(unregW), unregW, dll ); data/wine-5.0/dlls/msi/action.c:4792:10: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. else swprintf( cmd, lstrlenW(dll) + ARRAY_SIZE(unregW), regW, dll ); data/wine-5.0/dlls/msi/action.c:4973:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(data,buf); data/wine-5.0/dlls/msi/action.c:4980:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(data,sep); data/wine-5.0/dlls/msi/action.c:4981:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(data,feature->Feature_Parent); data/wine-5.0/dlls/msi/action.c:5003:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( &data[1], feature->Feature_Parent ); data/wine-5.0/dlls/msi/action.c:5218:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(date, ARRAY_SIZE(date), date_fmt, systime.wYear, systime.wMonth, systime.wDay); data/wine-5.0/dlls/msi/action.c:5474:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), msiexec_fmt, sysdir, squashed_pc); data/wine-5.0/dlls/msi/action.c:5482:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), install_fmt, package->ProductCode, squashed_pc ); data/wine-5.0/dlls/msi/action.c:5776:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (ret) swprintf( ret, sz, fmt, productid_85, feature, component ? '>' : '<', component_85 ); data/wine-5.0/dlls/msi/action.c:5824:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, advertise ); data/wine-5.0/dlls/msi/action.c:5825:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( p, text ); data/wine-5.0/dlls/msi/action.c:5858:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( q, advertise ); data/wine-5.0/dlls/msi/action.c:5941:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keypath, szInstallerComponents ); data/wine-5.0/dlls/msi/action.c:5942:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed ); data/wine-5.0/dlls/msi/action.c:6070:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(image_path, file->TargetPath); data/wine-5.0/dlls/msi/action.c:6071:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(image_path, szSpace); data/wine-5.0/dlls/msi/action.c:6072:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(image_path, args); data/wine-5.0/dlls/msi/action.c:6610:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, desc); data/wine-5.0/dlls/msi/action.c:6613:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(ptr, len - (ptr - driver), driver_fmt, driver_file->FileName); data/wine-5.0/dlls/msi/action.c:6618:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(ptr, len - (ptr - driver), setup_fmt, setup_file->FileName); data/wine-5.0/dlls/msi/action.c:6622:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, usage_fmt); data/wine-5.0/dlls/msi/action.c:6706:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, desc); data/wine-5.0/dlls/msi/action.c:6709:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(ptr, len - (ptr - translator), translator_fmt, translator_file->FileName); data/wine-5.0/dlls/msi/action.c:6714:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(ptr, len - (ptr - translator), setup_fmt, setup_file->FileName); data/wine-5.0/dlls/msi/action.c:6782:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(attrs, len, attrs_fmt, desc); data/wine-5.0/dlls/msi/action.c:6962:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( attrs, len, attrs_fmt, desc ); data/wine-5.0/dlls/msi/action.c:7304:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, data ); data/wine-5.0/dlls/msi/action.c:7632:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( cmd, len, fmtW, product, features ? features : szAll ); data/wine-5.0/dlls/msi/action.c:8086:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dir, szBackSlash); data/wine-5.0/dlls/msi/action.c:8098:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(package->PackagePath, dir); data/wine-5.0/dlls/msi/action.c:8099:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(package->PackagePath, file); data/wine-5.0/dlls/msi/appsearch.c:300:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, MSI_RecordGetString(rec, 2)); data/wine-5.0/dlls/msi/appsearch.c:329:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*appValue + 1, (LPCWSTR)value); data/wine-5.0/dlls/msi/appsearch.c:334:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*appValue, (LPCWSTR)value); data/wine-5.0/dlls/msi/appsearch.c:342:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*appValue, 10, dwordFmt, *(const DWORD *)value); data/wine-5.0/dlls/msi/appsearch.c:352:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*appValue, binPre); data/wine-5.0/dlls/msi/appsearch.c:355:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ptr, 3, binFmt, value[i]); data/wine-5.0/dlls/msi/appsearch.c:409:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (type & msidbLocatorType64bit) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/appsearch.c:410:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else access |= KEY_WOW64_32KEY; data/wine-5.0/dlls/msi/appsearch.c:420:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. rc = RegOpenKeyExW( rootKey, deformatted, 0, access, &key ); data/wine-5.0/dlls/msi/appsearch.c:614:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dst, deformatted); data/wine-5.0/dlls/msi/appsearch.c:815:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, dir); data/wine-5.0/dlls/msi/appsearch.c:817:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, sig->File); data/wine-5.0/dlls/msi/appsearch.c:838:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, dir); data/wine-5.0/dlls/msi/appsearch.c:840:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, starDotStarW); data/wine-5.0/dlls/msi/appsearch.c:849:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subpath, dir); data/wine-5.0/dlls/msi/appsearch.c:860:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subpath, dir); data/wine-5.0/dlls/msi/appsearch.c:939:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pathWithDrive + 3, path, ARRAY_SIZE(pathWithDrive) - 3); data/wine-5.0/dlls/msi/appsearch.c:1021:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(expanded, path); data/wine-5.0/dlls/msi/appsearch.c:1033:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, parent); data/wine-5.0/dlls/msi/appsearch.c:1034:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, expanded); data/wine-5.0/dlls/msi/appsearch.c:1036:18: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else if (sz) lstrcpyW(path, expanded); data/wine-5.0/dlls/msi/assembly.c:45:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path + len, szMscoree ); data/wine-5.0/dlls/msi/assembly.c:183:34: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!wcsicmp( attr, nameW )) lstrcpyW( name->attrs[name->index++], value ); data/wine-5.0/dlls/msi/assembly.c:184:10: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. else swprintf( name->attrs[name->index++], len, fmtW, attr, value ); data/wine-5.0/dlls/msi/assembly.c:226:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( display_name, name.attrs[i] ); data/wine-5.0/dlls/msi/assembly.c:227:37: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (i < name.count - 1) lstrcatW( display_name, commaW ); data/wine-5.0/dlls/msi/automation.c:398:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&szExceptionDescription[lstrlenW(szExceptionDescription)], szComma); data/wine-5.0/dlls/msi/automation.c:400:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&szExceptionDescription[lstrlenW(szExceptionDescription)], bstrParamNames[i]); data/wine-5.0/dlls/msi/automation.c:1978:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(version, ARRAY_SIZE(version), format, verinfo.dwMajorVersion, verinfo.dwMinorVersion, data/wine-5.0/dlls/msi/classes.c:147:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(progid->IconPath,lstrlenW(FilePath)+10,fmt,FilePath,icon_index); data/wine-5.0/dlls/msi/classes.c:252:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(cls->IconPath,lstrlenW(FilePath)+5,fmt,FilePath,icon_index); data/wine-5.0/dlls/msi/classes.c:763:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_32KEY; data/wine-5.0/dlls/msi/classes.c:765:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/classes.c:767:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegCreateKeyExW( HKEY_CLASSES_ROOT, szCLSID, 0, NULL, 0, access, NULL, &hkey, NULL )) data/wine-5.0/dlls/msi/classes.c:829:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( argument, file->TargetPath ); data/wine-5.0/dlls/msi/classes.c:833:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( argument, szSpace ); data/wine-5.0/dlls/msi/classes.c:834:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( argument, cls->Argument ); data/wine-5.0/dlls/msi/classes.c:890:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keyname, lstrlenW(szFileType_fmt) + lstrlenW(cls->clsid) + 4, data/wine-5.0/dlls/msi/classes.c:931:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_32KEY; data/wine-5.0/dlls/msi/classes.c:933:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/classes.c:935:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegCreateKeyExW( HKEY_CLASSES_ROOT, szCLSID, 0, NULL, 0, access, NULL, &hkey, NULL )) data/wine-5.0/dlls/msi/classes.c:990:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filetype, szFileType ); data/wine-5.0/dlls/msi/classes.c:991:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filetype, cls->clsid ); data/wine-5.0/dlls/msi/classes.c:1208:10: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(command, size, fmt, component->FullKeypath, verb->Argument); data/wine-5.0/dlls/msi/classes.c:1210:10: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(command, size, fmt2, component->FullKeypath); data/wine-5.0/dlls/msi/classes.c:1225:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(command,advertise); data/wine-5.0/dlls/msi/classes.c:1228:10: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(command,szSpace); data/wine-5.0/dlls/msi/classes.c:1229:10: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(command,verb->Argument); data/wine-5.0/dlls/msi/classes.c:1319:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( extension + 1, ext->Extension ); data/wine-5.0/dlls/msi/classes.c:1348:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(newkey,progid); data/wine-5.0/dlls/msi/classes.c:1349:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(newkey,szSN); data/wine-5.0/dlls/msi/classes.c:1420:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( extension + 1, ext->Extension ); data/wine-5.0/dlls/msi/classes.c:1441:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( progid_shell, progid ); data/wine-5.0/dlls/msi/classes.c:1442:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( progid_shell, shellW ); data/wine-5.0/dlls/msi/classes.c:1496:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( extension + 1, mt->Extension->Extension ); data/wine-5.0/dlls/msi/classes.c:1498:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( key, szMIMEDatabase ); data/wine-5.0/dlls/msi/classes.c:1499:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( key, mt->ContentType ); data/wine-5.0/dlls/msi/classes.c:1547:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( mime_key, szMIMEDatabase ); data/wine-5.0/dlls/msi/classes.c:1548:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( mime_key, mime->ContentType ); data/wine-5.0/dlls/msi/custom.c:190:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(deferred, len, format, actiondata, usersid, prodcode, action); data/wine-5.0/dlls/msi/custom.c:471:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(msg, format, GetCurrentProcessId(), GetCurrentProcessId()); data/wine-5.0/dlls/msi/custom.c:521:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(endpoint, ARRAY_SIZE(endpoint), endpoint_fmtW, client_pid); data/wine-5.0/dlls/msi/custom.c:607:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), pipe_name, data/wine-5.0/dlls/msi/custom.c:621:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, msiexecW); data/wine-5.0/dlls/msi/custom.c:622:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(cmdline, ARRAY_SIZE(cmdline), argsW, path, GetCurrentProcessId()); data/wine-5.0/dlls/msi/custom.c:747:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(endpoint, ARRAY_SIZE(endpoint), endpoint_fmtW, GetCurrentProcessId()); data/wine-5.0/dlls/msi/custom.c:843:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, exe ); data/wine-5.0/dlls/msi/custom.c:986:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( arg + len, target ); data/wine-5.0/dlls/msi/database.c:260:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBackSlash ); data/wine-5.0/dlls/msi/database.c:261:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, save_path ); data/wine-5.0/dlls/msi/database.c:264:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, save_path ); data/wine-5.0/dlls/msi/database.c:462:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(prelude, size, create_fmt, table); data/wine-5.0/dlls/msi/database.c:504:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extra, type_notnull); data/wine-5.0/dlls/msi/database.c:507:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(extra, localizable); data/wine-5.0/dlls/msi/database.c:509:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(size, ARRAY_SIZE(size), size_fmt, ptr); data/wine-5.0/dlls/msi/database.c:512:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extra, type_notnull); data/wine-5.0/dlls/msi/database.c:516:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(size, ARRAY_SIZE(size), size_fmt, ptr); data/wine-5.0/dlls/msi/database.c:519:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extra, type_notnull); data/wine-5.0/dlls/msi/database.c:534:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extra, type_notnull); data/wine-5.0/dlls/msi/database.c:545:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(expanded, ARRAY_SIZE(expanded), column_fmt, columns_data[i], type, size, extra, comma); data/wine-5.0/dlls/msi/database.c:556:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(columns, expanded); data/wine-5.0/dlls/msi/database.c:579:16: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ptr += swprintf(ptr, size - (ptr - keys), key_fmt, primary_keys[i]); data/wine-5.0/dlls/msi/database.c:590:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(postlude, size, postlude_fmt, keys); data/wine-5.0/dlls/msi/database.c:617:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(create_sql, prelude); data/wine-5.0/dlls/msi/database.c:618:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(create_sql, columns_sql); data/wine-5.0/dlls/msi/database.c:619:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(create_sql, postlude); data/wine-5.0/dlls/msi/database.c:647:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( fullname, path ); data/wine-5.0/dlls/msi/database.c:657:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ptr, name ); data/wine-5.0/dlls/msi/database.c:779:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, folder ); data/wine-5.0/dlls/msi/database.c:780:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBackSlash ); data/wine-5.0/dlls/msi/database.c:781:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, file ); data/wine-5.0/dlls/msi/database.c:976:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( path, len, fmt, folder, table ); data/wine-5.0/dlls/msi/database.c:984:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path + len, stream ); data/wine-5.0/dlls/msi/database.c:1058:16: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. DWORD sz = sprintf( data, fmt, codepage ); data/wine-5.0/dlls/msi/database.c:1104:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, folder ); data/wine-5.0/dlls/msi/database.c:1105:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, szBackSlash ); data/wine-5.0/dlls/msi/database.c:1106:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, file ); data/wine-5.0/dlls/msi/database.c:1433:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(val, szQuote); data/wine-5.0/dlls/msi/database.c:1435:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(val+1+sz, szQuote); data/wine-5.0/dlls/msi/database.c:1503:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(clause + oldsize - 1, size - (oldsize - 1), setptr, key, val); data/wine-5.0/dlls/msi/database.c:1512:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(query, size, fmt, table, clause); data/wine-5.0/dlls/msi/dialog.c:318:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( font->name, name ); data/wine-5.0/dlls/msi/dialog.c:335:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( lf.lfFaceName, face, LF_FACESIZE ); data/wine-5.0/dlls/msi/dialog.c:426:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( control->name, name ); data/wine-5.0/dlls/msi/dialog.c:924:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( prop, &event[1] ); data/wine-5.0/dlls/msi/dialog.c:1186:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( control->name, name ); data/wine-5.0/dlls/msi/dialog.c:1763:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( num, begin + 1, end - begin ); data/wine-5.0/dlls/msi/dialog.c:2981:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dir_spec, path ); data/wine-5.0/dlls/msi/dialog.c:2982:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dir_spec, asterisk ); data/wine-5.0/dlls/msi/dialog.c:3049:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, root ); data/wine-5.0/dlls/msi/dialog.c:3050:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, newfolder ); data/wine-5.0/dlls/msi/dialog.c:3060:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( path, len + 4, fmtW, root, newfolder, count++ ); data/wine-5.0/dlls/msi/dialog.c:3106:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( text, info->item.pszText, ARRAY_SIZE(text) ); data/wine-5.0/dlls/msi/dialog.c:3141:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( new_path, path ); data/wine-5.0/dlls/msi/dialog.c:3142:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( new_path, text ); data/wine-5.0/dlls/msi/dialog.c:3144:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( new_path, szBackSlash ); data/wine-5.0/dlls/msi/dialog.c:3229:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( num, begin + 1, end - begin ); data/wine-5.0/dlls/msi/dialog.c:3517:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (len < L_MAX_URL_LENGTH) lstrcpyW( item.szUrl, text ); data/wine-5.0/dlls/msi/dialog.c:3617:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( lf.lfFaceName, szSansSerif ); data/wine-5.0/dlls/msi/dialog.c:4015:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dialog->name, name ); data/wine-5.0/dlls/msi/files.c:51:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE msi_create_file( MSIPACKAGE *package, const WCHAR *filename, DWORD access, DWORD sharing, DWORD creation, data/wine-5.0/dlls/msi/files.c:56:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle = CreateFileW( filename, access, sharing, NULL, creation, flags, NULL ); data/wine-5.0/dlls/msi/files.c:209:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( new_path, path ); data/wine-5.0/dlls/msi/files.c:931:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path, wildcard, dirlen + 1); data/wine-5.0/dlls/msi/files.c:932:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, filename); data/wine-5.0/dlls/msi/files.c:984:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(new->dest, dest, ptr - dest + 1); data/wine-5.0/dlls/msi/files.c:985:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(new->dest, filename); data/wine-5.0/dlls/msi/files.c:1054:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wcsrchr(file->dest, '\\') + 1, file->destname); data/wine-5.0/dlls/msi/files.c:1130:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(source, sourcedir); data/wine-5.0/dlls/msi/files.c:1132:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(source, szBackSlash); data/wine-5.0/dlls/msi/files.c:1133:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(source, sourcename); data/wine-5.0/dlls/msi/files.c:1168:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, destdir); data/wine-5.0/dlls/msi/files.c:1170:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, szBackSlash); data/wine-5.0/dlls/msi/files.c:1173:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, destname); data/wine-5.0/dlls/msi/files.c:1235:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dst_name, wcsrchr( src, '\\' ) + 1 ); data/wine-5.0/dlls/msi/files.c:1518:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, dir); data/wine-5.0/dlls/msi/files.c:1520:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, filename); data/wine-5.0/dlls/msi/font.c:193:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, name ); data/wine-5.0/dlls/msi/font.c:194:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, truetypeW ); data/wine-5.0/dlls/msi/font.c:221:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, major, minor ); data/wine-5.0/dlls/msi/format.c:164:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(val, get_formstr_data(format, str), str->len + 1); data/wine-5.0/dlls/msi/format.c:190:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( prop, get_formstr_data(format, str), str->len + 1 ); data/wine-5.0/dlls/msi/format.c:212:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(key, get_formstr_data(format, str), str->len + 1); data/wine-5.0/dlls/msi/format.c:237:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(key, get_formstr_data(format, str), str->len + 1); data/wine-5.0/dlls/msi/format.c:266:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(key, get_formstr_data(format, str), str->len + 1); data/wine-5.0/dlls/msi/format.c:354:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. size += swprintf( buf, ARRAY_SIZE(buf), fmt, i, i ); data/wine-5.0/dlls/msi/format.c:361:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, buf ); data/wine-5.0/dlls/msi/install.c:1329:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (feature->Title) lstrcpyW( title, feature->Title ); data/wine-5.0/dlls/msi/install.c:1345:39: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (feature->Description) lstrcpyW( help, feature->Description ); data/wine-5.0/dlls/msi/install.c:1590:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( level, ARRAY_SIZE(level), fmt, iInstallLevel ); data/wine-5.0/dlls/msi/media.c:61:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(root, source_root); data/wine-5.0/dlls/msi/media.c:313:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, mi->sourcedir); data/wine-5.0/dlls/msi/media.c:314:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret, mi->cabinet); data/wine-5.0/dlls/msi/media.c:364:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(pfdin->psz3, next_cab); data/wine-5.0/dlls/msi/media.c:673:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(root, path); data/wine-5.0/dlls/msi/media.c:721:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mi->sourcedir, source_dir); data/wine-5.0/dlls/msi/media.c:797:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cabinet_file, volume); data/wine-5.0/dlls/msi/media.c:799:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cabinet_file, mi->cabinet); data/wine-5.0/dlls/msi/media.c:809:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mi->sourcedir, volume); data/wine-5.0/dlls/msi/media.c:834:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( mi->volume_label, volume ); data/wine-5.0/dlls/msi/media.c:838:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( mi->disk_prompt, prompt ); data/wine-5.0/dlls/msi/media.c:843:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mi->sourcedir, source); data/wine-5.0/dlls/msi/media.c:881:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( url, base_url ); data/wine-5.0/dlls/msi/media.c:882:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( url, mi->cabinet ); data/wine-5.0/dlls/msi/media.c:890:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( mi->sourcedir, temppath ); data/wine-5.0/dlls/msi/media.c:958:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( cab->stream, name ); data/wine-5.0/dlls/msi/msi.c:396:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(cmd, size, fmt, cmd_ptr, szPatchPackage); data/wine-5.0/dlls/msi/msi.c:811:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( sourcepath, localpath ); data/wine-5.0/dlls/msi/msi.c:823:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( sourcepath, filename ); data/wine-5.0/dlls/msi/msi.c:912:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(commandline,szCommandLine); data/wine-5.0/dlls/msi/msi.c:915:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(commandline, szMaxInstallLevel); data/wine-5.0/dlls/msi/msi.c:918:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(commandline, szRemoveAll); data/wine-5.0/dlls/msi/msi.c:921:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(commandline, szMachine); data/wine-5.0/dlls/msi/msi.c:931:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sourcepath, filename); data/wine-5.0/dlls/msi/msi.c:1108:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( temp, ARRAY_SIZE(temp), fmt, val ); data/wine-5.0/dlls/msi/msi.c:1414:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(out, val); data/wine-5.0/dlls/msi/msi.c:1811:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpValue, val, *pcchValue); data/wine-5.0/dlls/msi/msi.c:2041:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(drive, buffer, *buflen); data/wine-5.0/dlls/msi/msi.c:2761:22: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szValue) lstrcpynW(szValue, val, *pccbValue); data/wine-5.0/dlls/msi/msi.c:2766:22: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szValue) lstrcpyW(szValue, val); data/wine-5.0/dlls/msi/msi.c:3247:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( tmp, ARRAY_SIZE(tmp), szVersionFormat, data/wine-5.0/dlls/msi/msi.c:3250:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (verbuf) lstrcpynW( verbuf, tmp, *verlen ); data/wine-5.0/dlls/msi/msi.c:3265:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( tmp, ARRAY_SIZE(tmp), szLangFormat, *lang ); data/wine-5.0/dlls/msi/msi.c:3266:26: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (langbuf) lstrcpynW( langbuf, tmp, *langlen ); data/wine-5.0/dlls/msi/msi.c:3306:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( verbuf, version ); data/wine-5.0/dlls/msi/msi.c:3872:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( sourcepath, filename ); data/wine-5.0/dlls/msi/msi.c:3912:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, installerW); data/wine-5.0/dlls/msi/msi.c:4051:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( sourcepath, filename ); data/wine-5.0/dlls/msi/msi.c:4068:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( cmdline, sz / sizeof(WCHAR), fmtW, szReinstallMode, reinstallmode, szReinstall, szFeature ); data/wine-5.0/dlls/msi/msipriv.h:1306:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/dlls/msi/msiquery.c:152:15: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. res = vswprintf(query, size, fmt, va); data/wine-5.0/dlls/msi/msiquery.c:217:15: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. res = vswprintf(query, size, fmt, va); data/wine-5.0/dlls/msi/msiquery.c:594:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( &szType[1], ARRAY_SIZE(szType) - 1, fmt, (type&0xff) ); data/wine-5.0/dlls/msi/package.c:568:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, path); data/wine-5.0/dlls/msi/package.c:569:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, szBackSlash); data/wine-5.0/dlls/msi/package.c:570:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, fusion); data/wine-5.0/dlls/msi/package.c:589:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, windir); data/wine-5.0/dlls/msi/package.c:590:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, szBackSlash); data/wine-5.0/dlls/msi/package.c:591:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, subdir); data/wine-5.0/dlls/msi/package.c:592:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, v2050727); data/wine-5.0/dlls/msi/package.c:593:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, szBackSlash); data/wine-5.0/dlls/msi/package.c:594:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, fusion); data/wine-5.0/dlls/msi/package.c:653:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), verfmt, translate[0].wLanguage, translate[0].wCodePage); data/wine-5.0/dlls/msi/package.c:767:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:771:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:775:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:779:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:783:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:787:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:791:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:795:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:800:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:804:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:808:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:812:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:817:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:821:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:825:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:829:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:833:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:837:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:841:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pth, szBackSlash); data/wine-5.0/dlls/msi/package.c:847:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, (int)(msex.ullTotalPhys / 1024 / 1024) ); data/wine-5.0/dlls/msi/package.c:866:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( verstr, ARRAY_SIZE(verstr), szFormat, verval ); data/wine-5.0/dlls/msi/package.c:874:19: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szFormat,OSVersion.wProductType ); data/wine-5.0/dlls/msi/package.c:878:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szFormat, OSVersion.dwBuildNumber ); data/wine-5.0/dlls/msi/package.c:880:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szFormat, OSVersion.wServicePackMajor ); data/wine-5.0/dlls/msi/package.c:883:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szFormat2, MSI_MAJORVERSION, MSI_MINORVERSION ); data/wine-5.0/dlls/msi/package.c:885:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szFormat, MSI_MAJORVERSION * 100 ); data/wine-5.0/dlls/msi/package.c:892:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, sys_info.wProcessorLevel ); data/wine-5.0/dlls/msi/package.c:949:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, GetDeviceCaps(dc, HORZRES) ); data/wine-5.0/dlls/msi/package.c:951:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, GetDeviceCaps(dc, VERTRES) ); data/wine-5.0/dlls/msi/package.c:953:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, GetDeviceCaps(dc, BITSPIXEL) ); data/wine-5.0/dlls/msi/package.c:993:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, langid ); data/wine-5.0/dlls/msi/package.c:997:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, langid ); data/wine-5.0/dlls/msi/package.c:1000:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( bufstr, ARRAY_SIZE(bufstr), szIntFormat, MsiQueryProductStateW(package->ProductCode) ); data/wine-5.0/dlls/msi/package.c:1117:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( uilevel, ARRAY_SIZE(uilevel), fmtW, gUILevel & INSTALLUILEVEL_MASK ); data/wine-5.0/dlls/msi/package.c:1157:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, cache_entry->lpszLocalFileName ); data/wine-5.0/dlls/msi/package.c:1182:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szInstaller ); data/wine-5.0/dlls/msi/package.c:1188:18: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. offset = swprintf( path + len, MAX_PATH - len, fmt, (time + i) & 0xffff ); data/wine-5.0/dlls/msi/package.c:1339:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(query, ARRAY_SIZE(query), select_query, prop); data/wine-5.0/dlls/msi/package.c:1390:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( localfile, filename ); data/wine-5.0/dlls/msi/package.c:2039:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(template, template_prefix); data/wine-5.0/dlls/msi/package.c:2040:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(template, template_rec); data/wine-5.0/dlls/msi/package.c:2069:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(template, len, template_s, package->LastAction, package->LastActionTemplate); data/wine-5.0/dlls/msi/package.c:2204:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, ARRAY_SIZE(query), delete_query, name ); data/wine-5.0/dlls/msi/package.c:2208:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, ARRAY_SIZE(query), update_query, name ); data/wine-5.0/dlls/msi/package.c:2214:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( query, insert_query ); data/wine-5.0/dlls/msi/package.c:2453:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmp, value); data/wine-5.0/dlls/msi/package.c:2516:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmp, value); data/wine-5.0/dlls/msi/record.c:374:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szValue, buffer, *pcchValue); data/wine-5.0/dlls/msi/record.c:463:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szValue, buffer, *pcchValue); data/wine-5.0/dlls/msi/registry.c:455:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_32KEY; data/wine-5.0/dlls/msi/registry.c:457:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/registry.c:458:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUninstall); data/wine-5.0/dlls/msi/registry.c:459:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keypath, product); data/wine-5.0/dlls/msi/registry.c:460:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:461:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:473:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_32KEY; data/wine-5.0/dlls/msi/registry.c:475:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/registry.c:476:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((r = RegOpenKeyExW(HKEY_LOCAL_MACHINE, szUninstall, 0, access, &parent))) data/wine-5.0/dlls/msi/registry.c:494:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_LocalClassesProd); data/wine-5.0/dlls/msi/registry.c:495:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:500:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserProducts); data/wine-5.0/dlls/msi/registry.c:501:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:514:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstaller_LocalManagedProd_fmt, szUserSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:517:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(root, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:518:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(root, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:528:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserProducts); data/wine-5.0/dlls/msi/registry.c:529:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:540:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserPatches); data/wine-5.0/dlls/msi/registry.c:541:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:559:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_LocalClassesFeat); data/wine-5.0/dlls/msi/registry.c:560:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:565:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserFeatures); data/wine-5.0/dlls/msi/registry.c:566:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:579:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstaller_LocalManagedFeat_fmt, szUserSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:582:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(root, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:583:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(root, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:593:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserFeatures); data/wine-5.0/dlls/msi/registry.c:594:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:606:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_Features); data/wine-5.0/dlls/msi/registry.c:607:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:609:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:610:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:624:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataFeatures_fmt, szLocalSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:637:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataFeatures_fmt, szUserSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:640:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:641:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:653:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szUserComponents); data/wine-5.0/dlls/msi/registry.c:654:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_cc ); data/wine-5.0/dlls/msi/registry.c:660:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_Components); data/wine-5.0/dlls/msi/registry.c:661:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_cc ); data/wine-5.0/dlls/msi/registry.c:662:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW( HKEY_LOCAL_MACHINE, keypath, 0, access, key ); data/wine-5.0/dlls/msi/registry.c:680:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataComp_fmt, usersid, squashed_comp ); data/wine-5.0/dlls/msi/registry.c:684:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataComp_fmt, szUserSid, squashed_comp ); data/wine-5.0/dlls/msi/registry.c:686:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:687:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:707:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataComponents_fmt, usersid); data/wine-5.0/dlls/msi/registry.c:711:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataComponents_fmt, szUserSid); data/wine-5.0/dlls/msi/registry.c:713:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:728:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataProd_fmt, szLocalSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:730:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataProd_fmt, szUserSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:738:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataProd_fmt, usersid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:741:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:742:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:754:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataPatch_fmt, szLocalSid, squashed_patch ); data/wine-5.0/dlls/msi/registry.c:762:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataPatch_fmt, usersid, squashed_patch ); data/wine-5.0/dlls/msi/registry.c:765:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:766:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:780:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataPatches_fmt, szLocalSid); data/wine-5.0/dlls/msi/registry.c:788:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataPatches_fmt, usersid); data/wine-5.0/dlls/msi/registry.c:791:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:806:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataProductPatches_fmt, szLocalSid, squashed_product ); data/wine-5.0/dlls/msi/registry.c:814:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szUserDataProductPatches_fmt, usersid, squashed_product ); data/wine-5.0/dlls/msi/registry.c:817:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:818:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:830:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstallProperties_fmt, szLocalSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:832:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstallProperties_fmt, szUserSid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:840:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstallProperties_fmt, usersid, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:843:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:844:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:858:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataProducts_fmt, szLocalSid); data/wine-5.0/dlls/msi/registry.c:866:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keypath, ARRAY_SIZE(keypath), szUserDataProducts_fmt, usersid); data/wine-5.0/dlls/msi/registry.c:870:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:886:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, szInstaller_Products, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:900:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( keypath, ARRAY_SIZE(keypath), szInstaller_Patches, squashed_pc ); data/wine-5.0/dlls/msi/registry.c:902:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:903:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:914:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_UpgradeCodes); data/wine-5.0/dlls/msi/registry.c:915:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_uc ); data/wine-5.0/dlls/msi/registry.c:917:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:918:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:928:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_UserUpgradeCodes); data/wine-5.0/dlls/msi/registry.c:929:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_uc ); data/wine-5.0/dlls/msi/registry.c:945:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_LOCAL_MACHINE, szInstaller_UpgradeCodes, 0, access, &hkey )) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:958:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_UserUpgradeCodes); data/wine-5.0/dlls/msi/registry.c:959:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_uc ); data/wine-5.0/dlls/msi/registry.c:973:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, szInstaller_LocalClassesProducts, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:989:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, szInstaller_LocalClassesFeatures, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:1003:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keypath, szInstaller_ClassesUpgradeCode); data/wine-5.0/dlls/msi/registry.c:1004:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keypath, squashed_uc ); data/wine-5.0/dlls/msi/registry.c:1006:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create) return RegCreateKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/msi/registry.c:1007:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExW(HKEY_LOCAL_MACHINE, keypath, 0, access, key); data/wine-5.0/dlls/msi/registry.c:1020:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, szInstaller_ClassesUpgradeCodes, 0, access, &hkey)) return ERROR_SUCCESS; data/wine-5.0/dlls/msi/registry.c:1288:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_LOCAL_MACHINE, componentsW, 0, access, &key_components )) data/wine-5.0/dlls/msi/registry.c:1340:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_LOCAL_MACHINE, userdataW, 0, access, &key_users )) data/wine-5.0/dlls/msi/registry.c:1353:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, user ); data/wine-5.0/dlls/msi/registry.c:1354:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, componentsW ); data/wine-5.0/dlls/msi/registry.c:1355:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( key_users, path, 0, access, &key_components )) data/wine-5.0/dlls/msi/registry.c:1387:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( sid, user ); data/wine-5.0/dlls/msi/registry.c:2023:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(targetprod, prodcode); data/wine-5.0/dlls/msi/registry.c:2030:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(targetsid, usersid, *sidsize); data/wine-5.0/dlls/msi/registry.c:2251:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpTransformsBuf, transforms, *pcchTransformsBuf); data/wine-5.0/dlls/msi/registry.c:2315:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_LOCAL_MACHINE, productsW, 0, access, &key )) data/wine-5.0/dlls/msi/registry.c:2379:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_LOCAL_MACHINE, managedW, 0, access, &key_users )) data/wine-5.0/dlls/msi/registry.c:2385:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( HKEY_USERS, NULL, 0, access, &key_users )) data/wine-5.0/dlls/msi/registry.c:2399:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, user ); data/wine-5.0/dlls/msi/registry.c:2400:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, subkey ); data/wine-5.0/dlls/msi/registry.c:2401:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegOpenKeyExW( key_users, path, 0, access, &key_products )) data/wine-5.0/dlls/msi/registry.c:2440:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( sid, user ); data/wine-5.0/dlls/msi/source.c:288:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(convert, ARRAY_SIZE(convert), fmt, *data); data/wine-5.0/dlls/msi/source.c:298:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szVolumeLabel, ptr2); data/wine-5.0/dlls/msi/source.c:310:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(convert, ARRAY_SIZE(convert), fmt, *ptr); data/wine-5.0/dlls/msi/source.c:320:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szDiskPrompt, ptr); data/wine-5.0/dlls/msi/source.c:461:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), format, dwIndex + 1); data/wine-5.0/dlls/msi/source.c:636:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szValue, ptr); data/wine-5.0/dlls/msi/source.c:751:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, size, format, typechar, index, value); data/wine-5.0/dlls/msi/source.c:991:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(iter->szIndex, ARRAY_SIZE(iter->szIndex), fmt, ++iter->index); data/wine-5.0/dlls/msi/source.c:1028:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry->szIndex, name); data/wine-5.0/dlls/msi/source.c:1118:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(source, szSource); data/wine-5.0/dlls/msi/source.c:1119:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(source, postfix); data/wine-5.0/dlls/msi/source.c:1136:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), fmt, count + 1); data/wine-5.0/dlls/msi/source.c:1142:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), fmt, dwIndex); data/wine-5.0/dlls/msi/source.c:1151:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->szIndex, name); data/wine-5.0/dlls/msi/source.c:1246:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szIndex, ARRAY_SIZE(szIndex), fmt, dwDiskId); data/wine-5.0/dlls/msi/source.c:1256:24: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szVolumeLabel) lstrcpyW(buffer, szVolumeLabel); data/wine-5.0/dlls/msi/source.c:1257:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, szSemiColon); data/wine-5.0/dlls/msi/source.c:1258:23: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (szDiskPrompt) lstrcatW(buffer, szDiskPrompt); data/wine-5.0/dlls/msi/suminfo.c:665:21: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(str->str.a, prop->u.pszVal, *pcchValueBuf ); data/wine-5.0/dlls/msi/suminfo.c:874:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( prop->u.pszVal, str->str.a ); data/wine-5.0/dlls/msi/suminfo.c:1121:10: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sz = sprintf( data, fmt_begin, row ); data/wine-5.0/dlls/msi/suminfo.c:1129:14: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sz = sprintf( data, fmt_int, int_value ); data/wine-5.0/dlls/msi/suminfo.c:1154:14: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sz = sprintf( data, fmt_systemtime, system_time.wYear, system_time.wMonth, data/wine-5.0/dlls/msi/table.c:606:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( table->name, name ); data/wine-5.0/dlls/msi/table.c:743:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( table->name, name ); data/wine-5.0/dlls/msi/table.c:1069:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( stname, tv->name ); data/wine-5.0/dlls/msi/table.c:1099:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( number, ARRAY_SIZE(number), fmt, ival-0x8000 ); data/wine-5.0/dlls/msi/table.c:1102:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( number, ARRAY_SIZE(number), fmt, ival^0x80000000 ); data/wine-5.0/dlls/msi/table.c:1121:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( stname, szDot ); data/wine-5.0/dlls/msi/table.c:1122:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( stname, sval ); data/wine-5.0/dlls/msi/table.c:2186:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( tv->name, name ); data/wine-5.0/dlls/msi/table.c:2269:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( stname, tv->name ); data/wine-5.0/dlls/msi/table.c:2292:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( stname, szDot ); data/wine-5.0/dlls/msi/table.c:2293:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( stname, sval ); data/wine-5.0/dlls/msi/table.c:2632:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( coltable, table ); data/wine-5.0/dlls/msi/tests/action.c:2462:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(spec.szDescription, "msitest restore point"); data/wine-5.0/dlls/msi/tests/action.c:2476:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/action.c:2479:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/action.c:2488:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/action.c:2489:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest\\*"); data/wine-5.0/dlls/msi/tests/action.c:2500:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/action.c:2501:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/action.c:2605:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(date, date_fmt, systime.wYear, systime.wMonth, systime.wDay); data/wine-5.0/dlls/msi/tests/action.c:2726:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, userdata, usersid); data/wine-5.0/dlls/msi/tests/action.c:2833:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, userdata, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:2947:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, userdata, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3066:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3081:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, badprod, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3084:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, prodpath, usersid); data/wine-5.0/dlls/msi/tests/action.c:3085:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3104:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(hkey, "InstallProperties", 0, access, &props); data/wine-5.0/dlls/msi/tests/action.c:3107:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(hkey, "Patches", 0, access, &patches); data/wine-5.0/dlls/msi/tests/action.c:3114:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access); data/wine-5.0/dlls/msi/tests/action.c:3116:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3137:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "n;1;"); data/wine-5.0/dlls/msi/tests/action.c:3138:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, temp); data/wine-5.0/dlls/msi/tests/action.c:3178:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, badprod, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3181:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, prodpath, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3182:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3185:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(hkey, "InstallProperties", 0, access, &props); data/wine-5.0/dlls/msi/tests/action.c:3188:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(hkey, "Patches", 0, access, &patches); data/wine-5.0/dlls/msi/tests/action.c:3195:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access); data/wine-5.0/dlls/msi/tests/action.c:3197:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3201:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, machprod, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3215:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(hkey, "SourceList", 0, access, &sourcelist); data/wine-5.0/dlls/msi/tests/action.c:3218:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "n;1;"); data/wine-5.0/dlls/msi/tests/action.c:3219:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, temp); data/wine-5.0/dlls/msi/tests/action.c:3223:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(sourcelist, "Net", 0, access, &net); data/wine-5.0/dlls/msi/tests/action.c:3228:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/action.c:3232:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(sourcelist, "Media", 0, access, &media); data/wine-5.0/dlls/msi/tests/action.c:3237:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/action.c:3240:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_key(sourcelist, "", access); data/wine-5.0/dlls/msi/tests/action.c:3243:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3247:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, machup, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3252:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3299:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3314:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, featkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3317:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, classfeat, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3328:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3331:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, udfeatpath, usersid); data/wine-5.0/dlls/msi/tests/action.c:3332:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3340:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3342:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, udpridpath, usersid); data/wine-5.0/dlls/msi/tests/action.c:3343:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_LOCAL_MACHINE, keypath, access); data/wine-5.0/dlls/msi/tests/action.c:3351:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, featkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3356:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, classfeat, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3364:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3367:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, udfeatpath, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3368:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3376:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey, "", access); data/wine-5.0/dlls/msi/tests/action.c:3378:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, udpridpath, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3379:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_LOCAL_MACHINE, keypath, access); data/wine-5.0/dlls/msi/tests/action.c:3415:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3429:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "Software\\Microsoft\\Windows NT\\CurrentVersion", 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3441:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "Software\\Microsoft\\Windows\\CurrentVersion", 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3485:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3500:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keypropsfmt, usersid); data/wine-5.0/dlls/msi/tests/action.c:3501:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &props); data/wine-5.0/dlls/msi/tests/action.c:3511:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access); data/wine-5.0/dlls/msi/tests/action.c:3513:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keypridfmt, usersid); data/wine-5.0/dlls/msi/tests/action.c:3514:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_LOCAL_MACHINE, keypath, access); data/wine-5.0/dlls/msi/tests/action.c:3522:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keypropsfmt, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3523:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &props); data/wine-5.0/dlls/msi/tests/action.c:3533:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access); data/wine-5.0/dlls/msi/tests/action.c:3535:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keypridfmt, "S-1-5-18"); data/wine-5.0/dlls/msi/tests/action.c:3536:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_LOCAL_MACHINE, keypath, access); data/wine-5.0/dlls/msi/tests/action.c:3579:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3594:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keyfmt, usersid, "CBABC2FDCCB35E749A8944D8C1C098B5"); data/wine-5.0/dlls/msi/tests/action.c:3595:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &comp); data/wine-5.0/dlls/msi/tests/action.c:3603:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(program_files_maximus,PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/action.c:3604:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(program_files_maximus,"\\msitest\\maximus"); data/wine-5.0/dlls/msi/tests/action.c:3609:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, compkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3613:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(comp, "", access); data/wine-5.0/dlls/msi/tests/action.c:3616:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keyfmt, usersid, "241C3DA58FECD0945B9687D408766058"); data/wine-5.0/dlls/msi/tests/action.c:3617:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &comp); data/wine-5.0/dlls/msi/tests/action.c:3627:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, compkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3631:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(comp, "", access); data/wine-5.0/dlls/msi/tests/action.c:3640:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keyfmt, "S-1-5-18", "CBABC2FDCCB35E749A8944D8C1C098B5"); data/wine-5.0/dlls/msi/tests/action.c:3641:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &comp); data/wine-5.0/dlls/msi/tests/action.c:3651:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, compkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3655:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(comp, "", access); data/wine-5.0/dlls/msi/tests/action.c:3658:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(keypath, keyfmt, "S-1-5-18", "241C3DA58FECD0945B9687D408766058"); data/wine-5.0/dlls/msi/tests/action.c:3659:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &comp); data/wine-5.0/dlls/msi/tests/action.c:3669:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, compkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:3673:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(comp, "", access); data/wine-5.0/dlls/msi/tests/action.c:3710:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:3769:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:3797:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:3827:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:3880:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:3986:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:4186:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:4268:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(uninstall, prodcode, 0, access, &prodkey); data/wine-5.0/dlls/msi/tests/action.c:4320:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4328:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4342:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4350:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4364:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4372:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4386:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4394:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4408:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4416:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4424:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4431:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/action.c:4432:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/action.c:4435:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4443:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4451:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4459:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4467:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/action.c:4669:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(props, "SOURCEFULL=\"%s\\\" DESTFULL=\"%s\\msitest\" " data/wine-5.0/dlls/msi/tests/action.c:5479:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/action.c:5491:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = RegOpenKeyExA(HKEY_LOCAL_MACHINE, regfont1, 0, access, &key); data/wine-5.0/dlls/msi/tests/action.c:5493:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RegOpenKeyExA(HKEY_LOCAL_MACHINE, regfont2, 0, access, &key); data/wine-5.0/dlls/msi/tests/action.c:5943:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inifile, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/action.c:5944:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inifile, "\\msitest"); data/wine-5.0/dlls/msi/tests/action.c:5951:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inifile, "\\test.ini"); data/wine-5.0/dlls/msi/tests/action.c:6334:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int access; data/wine-5.0/dlls/msi/tests/action.c:6422:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, classes_path_dotnet, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6427:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, classes_path_dotnet, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6434:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, path, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6439:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, classes_path_win32, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6445:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, path, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6452:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CLASSES_ROOT, path, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/action.c:6549:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/msi/tests/action.c:6575:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(log_file, temp_path); data/wine-5.0/dlls/msi/tests/action.c:6576:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(log_file, "\\msitest.log"); data/wine-5.0/dlls/msi/tests/automation.c:262:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key_portable( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/automation.c:265:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/automation.c:360:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/msi/tests/automation.c:361:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, szMsifile); data/wine-5.0/dlls/msi/tests/automation.c:425:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/automation.c:426:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/automation.c:427:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, rel_path); data/wine-5.0/dlls/msi/tests/automation.c:953:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szString, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:969:47: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (SUCCEEDED(hr) && vtResult == VT_BSTR) lstrcpyW(szString, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:1060:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szString, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:1099:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szVersion, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:1160:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szReturn, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:1459:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szString, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:1536:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (V_BSTR(&varresult)) lstrcpyW(szString, V_BSTR(&varresult)); data/wine-5.0/dlls/msi/tests/automation.c:2370:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static UINT delete_registry_key(HKEY hkeyParent, LPCSTR subkey, REGSAM access) data/wine-5.0/dlls/msi/tests/automation.c:2377:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = RegOpenKeyExA(hkeyParent, subkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/automation.c:2384:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_registry_key(hkey, string, access); data/wine-5.0/dlls/msi/tests/automation.c:2388:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key_portable(hkeyParent, subkey, access); data/wine-5.0/dlls/msi/tests/automation.c:2393:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static UINT find_registry_key(HKEY hkeyParent, LPCSTR subkey, LPCSTR findkey, REGSAM access, HKEY *phkey) data/wine-5.0/dlls/msi/tests/automation.c:2404:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = RegOpenKeyExA(hkeyParent, subkey, 0, access, &hkey); data/wine-5.0/dlls/msi/tests/automation.c:2418:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if (find_registry_key(hkey, string, findkey, access, phkey) == ERROR_SUCCESS) found = TRUE; data/wine-5.0/dlls/msi/tests/automation.c:2448:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/automation.c:2574:116: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Installer\\UpgradeCodes\\D8E760ECA1E276347B43E42BDBDA5656", access); data/wine-5.0/dlls/msi/tests/automation.c:2578:114: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData", "af054738b93a8cb43b12803b397f483b", access, &hkey); data/wine-5.0/dlls/msi/tests/automation.c:2581:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = delete_registry_key(hkey, "af054738b93a8cb43b12803b397f483b", access); data/wine-5.0/dlls/msi/tests/automation.c:2586:112: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Installer\\Products\\af054738b93a8cb43b12803b397f483b", access); data/wine-5.0/dlls/msi/tests/automation.c:2765:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/msi/tests/custom.c:44:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buffer, msg, valist); data/wine-5.0/dlls/msi/tests/custom.c:234:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/custom.c:241:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/custom.c:248:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/custom.c:255:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/custom.c:1426:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, file); data/wine-5.0/dlls/msi/tests/db.c:309:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(query, insert, values); data/wine-5.0/dlls/msi/tests/db.c:1241:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(query, "select * from `_Columns` where `Table` = '%s'", table ); data/wine-5.0/dlls/msi/tests/db.c:1408:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/db.c:1409:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/db.c:1452:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, insert_query); data/wine-5.0/dlls/msi/tests/db.c:1454:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str+len+STRING_LENGTH, insert_query+len+1); data/wine-5.0/dlls/msi/tests/db.c:7090:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/db.c:7165:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/db.c:7177:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/db.c:7191:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/db.c:7220:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/db.c:7232:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/db.c:7246:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "kiwi"); data/wine-5.0/dlls/msi/tests/install.c:2098:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(pccab->szCab, pv, pccab->iCab); data/wine-5.0/dlls/msi/tests/install.c:2270:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszTempName, tempname); data/wine-5.0/dlls/msi/tests/install.c:2311:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:2312:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2313:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/install.c:2315:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(filename, file); data/wine-5.0/dlls/msi/tests/install.c:2329:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCabPath, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:2330:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pCabParams->szCabPath, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2331:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pCabParams->szCab, name); data/wine-5.0/dlls/msi/tests/install.c:2464:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:2465:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2466:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, rel_path); data/wine-5.0/dlls/msi/tests/install.c:2478:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR_NATIVE); data/wine-5.0/dlls/msi/tests/install.c:2479:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2480:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, rel_path); data/wine-5.0/dlls/msi/tests/install.c:2492:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, COMMON_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:2493:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2494:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, rel_path); data/wine-5.0/dlls/msi/tests/install.c:2509:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:2510:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2511:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, filename); data/wine-5.0/dlls/msi/tests/install.c:2706:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(spec.szDescription, "msitest restore point"); data/wine-5.0/dlls/msi/tests/install.c:2720:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/install.c:2723:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/install.c:2743:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/install.c:2775:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_CURRENT_USER, "SOFTWARE\\Wine\\msitest", 0, access, &hkey); data/wine-5.0/dlls/msi/tests/install.c:2801:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_CURRENT_USER, "SOFTWARE\\Wine\\msitest", access); data/wine-5.0/dlls/msi/tests/install.c:2923:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:2924:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2925:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, msifile); data/wine-5.0/dlls/msi/tests/install.c:2973:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:2974:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:2975:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, msifile); data/wine-5.0/dlls/msi/tests/install.c:3064:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:3065:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\*.cab"); data/wine-5.0/dlls/msi/tests/install.c:3406:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:3407:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/install.c:3410:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\maximus"); data/wine-5.0/dlls/msi/tests/install.c:3458:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:3459:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/install.c:3462:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\maximus"); data/wine-5.0/dlls/msi/tests/install.c:3586:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:3587:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:3588:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/install.c:3598:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:3599:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest\\*"); data/wine-5.0/dlls/msi/tests/install.c:3610:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:3611:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/install.c:3838:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "..\\%s", msifile); data/wine-5.0/dlls/msi/tests/install.c:3847:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, msifile); data/wine-5.0/dlls/msi/tests/install.c:3858:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(drive, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:3863:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:3864:43: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (path[lstrlenA(path) - 1] != '\\') lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:3865:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, msifile); data/wine-5.0/dlls/msi/tests/install.c:4019:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:4020:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:4021:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/install.c:4629:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:4630:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:4631:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/install.c:4813:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(props, "SRCDIR=%s\\altsource\\", CURR_DIR); data/wine-5.0/dlls/msi/tests/install.c:4961:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msitable, tmpdir); data/wine-5.0/dlls/msi/tests/install.c:4962:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(msitable, slashW); data/wine-5.0/dlls/msi/tests/install.c:4963:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(msitable, msitableW); data/wine-5.0/dlls/msi/tests/install.c:4965:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msidb, tmpdir); data/wine-5.0/dlls/msi/tests/install.c:4966:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(msidb, slashW); data/wine-5.0/dlls/msi/tests/install.c:4967:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(msidb, msitestW); data/wine-5.0/dlls/msi/tests/install.c:5237:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf2ptr, src); data/wine-5.0/dlls/msi/tests/install.c:5239:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf2ptr, dst); data/wine-5.0/dlls/msi/tests/install.c:5315:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:5316:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/install.c:5319:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\maximus"); data/wine-5.0/dlls/msi/tests/install.c:5377:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, PROG_FILES_DIR); data/wine-5.0/dlls/msi/tests/install.c:5378:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest"); data/wine-5.0/dlls/msi/tests/install.c:5381:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\maximus"); data/wine-5.0/dlls/msi/tests/install.c:5434:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/install.c:5483:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(HKEY_LOCAL_MACHINE, "Software\\Wine\\msitest", access); data/wine-5.0/dlls/msi/tests/install.c:5545:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, APP_DATA_DIR); data/wine-5.0/dlls/msi/tests/install.c:5546:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:5547:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "Microsoft\\Installer\\"); data/wine-5.0/dlls/msi/tests/install.c:5548:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, prodcode); data/wine-5.0/dlls/msi/tests/install.c:5549:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\testicon"); data/wine-5.0/dlls/msi/tests/install.c:5560:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, WINDOWS_DIR); data/wine-5.0/dlls/msi/tests/install.c:5561:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/install.c:5562:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "Installer\\"); data/wine-5.0/dlls/msi/tests/install.c:5563:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, prodcode); data/wine-5.0/dlls/msi/tests/install.c:5564:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\testicon"); data/wine-5.0/dlls/msi/tests/install.c:6035:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/install.c:6047:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. 0, access, &hkey ); data/wine-5.0/dlls/msi/tests/install.c:6065:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. 0, access, &hkey ); data/wine-5.0/dlls/msi/tests/install.c:6120:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "TESTPATH=\"%s\"", file); data/wine-5.0/dlls/msi/tests/install.c:6248:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/msi/tests/install.c:6274:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(log_file, temp_path); data/wine-5.0/dlls/msi/tests/install.c:6275:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(log_file, "\\msitest.log"); data/wine-5.0/dlls/msi/tests/msi.c:861:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(query, "INSERT INTO `Property` " data/wine-5.0/dlls/msi/tests/msi.c:912:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/msi.c:915:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/msi.c:930:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:957:105: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegOpenKeyExA(HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall", 0, access, &hkey); data/wine-5.0/dlls/msi/tests/msi.c:1010:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. 0, NULL, 0, access, NULL, &hkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1023:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1286:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:1338:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1339:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1351:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Uninstall\\"); data/wine-5.0/dlls/msi/tests/msi.c:1352:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prodcode); data/wine-5.0/dlls/msi/tests/msi.c:1354:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1384:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1386:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1387:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1388:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1389:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1391:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1409:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1431:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1433:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1464:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1466:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1473:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:1474:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1475:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1476:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1478:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1485:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1486:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1487:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1488:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1490:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1497:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1513:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1515:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1517:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1522:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1523:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1525:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1537:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1538:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1539:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1541:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1548:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1564:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1566:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1568:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1647:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:1714:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Features\\"); data/wine-5.0/dlls/msi/tests/msi.c:1715:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1737:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1738:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1739:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1740:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1741:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Features"); data/wine-5.0/dlls/msi/tests/msi.c:1743:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1797:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1798:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1799:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:1800:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1802:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1805:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1806:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1807:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:1808:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed2); data/wine-5.0/dlls/msi/tests/msi.c:1810:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey2, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1889:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1890:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey2, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1901:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:1902:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1903:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Features\\"); data/wine-5.0/dlls/msi/tests/msi.c:1904:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1906:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1920:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1921:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1922:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:1923:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1924:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Features"); data/wine-5.0/dlls/msi/tests/msi.c:1926:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1957:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1958:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1959:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:1960:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:1962:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1965:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:1966:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:1967:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:1968:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed2); data/wine-5.0/dlls/msi/tests/msi.c:1970:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey2, NULL); data/wine-5.0/dlls/msi/tests/msi.c:1996:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:1997:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey2, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2000:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2008:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Features\\"); data/wine-5.0/dlls/msi/tests/msi.c:2009:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2011:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2031:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2032:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2033:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2034:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Features"); data/wine-5.0/dlls/msi/tests/msi.c:2036:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2067:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2068:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2069:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2071:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2074:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2075:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2076:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed2); data/wine-5.0/dlls/msi/tests/msi.c:2078:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey2, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2104:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2105:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey2, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2108:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2145:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:2209:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2210:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2212:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2229:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2233:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2234:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2235:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2237:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2266:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2267:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2269:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2364:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2366:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2377:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2378:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2392:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2393:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2394:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2395:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2397:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2410:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2411:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2412:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2413:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2415:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2449:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2450:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2463:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:2464:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2465:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2466:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2468:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2476:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2479:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2480:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2481:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2482:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2483:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2485:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2498:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2500:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2527:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:2579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2580:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2581:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2583:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2621:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2622:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2623:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2624:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2626:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &installprop, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2680:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2682:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(installprop, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2687:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2688:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2689:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2690:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2691:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2693:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2725:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2726:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2727:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2728:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2730:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &installprop, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2770:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2772:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(installprop, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2777:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2778:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:2779:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2780:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2781:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2783:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2797:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2798:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2799:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2800:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2801:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2803:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2835:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2836:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2837:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2838:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:2840:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &installprop, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2880:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2881:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2883:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(installprop, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2889:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2890:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2906:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2907:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:2908:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:2909:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2910:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2912:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2963:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:2968:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:2969:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2971:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:2991:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:2992:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:2993:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:2995:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3045:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3046:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3070:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:3112:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3113:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\S-1-5-18\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3114:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, comp_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3116:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_comp, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3141:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3142:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\S-1-5-18\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3143:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3144:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "\\InstallProperties" ); data/wine-5.0/dlls/msi/tests/msi.c:3146:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_installprop, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3179:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_comp, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3181:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_installprop, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3186:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3187:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3198:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3199:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3200:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:3201:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3202:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, comp_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3204:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_comp, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3236:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_comp, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3241:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3242:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\Managed\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3243:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:3244:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3245:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3247:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_prod, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3255:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3256:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3257:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:3258:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3259:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, comp_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3261:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_comp, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3280:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3281:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\S-1-5-18\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3282:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3283:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "\\InstallProperties" ); data/wine-5.0/dlls/msi/tests/msi.c:3285:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_installprop, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3311:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_prod, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3312:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_comp, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3314:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_installprop, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3319:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Classes\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3320:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3322:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_prod, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3337:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( path_key, "Software\\Microsoft\\Windows\\CurrentVersion\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3338:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, "Installer\\UserData\\S-1-5-18\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3339:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path_key, comp_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3341:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, path_key, 0, NULL, 0, access, NULL, &key_comp, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3372:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_prod, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3373:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key_comp, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3499:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( keypath, "Software\\Classes\\Installer\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3500:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, comp_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3502:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:3503:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3506:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( desc, prod_base85 ); data/wine-5.0/dlls/msi/tests/msi.c:3521:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( keypath, "Software\\Classes\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3522:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3524:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey2, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3533:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( keypath, "Software\\Classes\\Installer\\Features\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3534:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3536:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey3, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3555:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\S-1-5-18\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3556:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, prod_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3557:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, "\\Features" ); data/wine-5.0/dlls/msi/tests/msi.c:3559:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey4, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3568:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\S-1-5-18\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:3569:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( keypath, comp2_squashed ); data/wine-5.0/dlls/msi/tests/msi.c:3571:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey5, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:3584:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path, "\\msitest" ); data/wine-5.0/dlls/msi/tests/msi.c:3586:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( path, "\\test.txt" ); data/wine-5.0/dlls/msi/tests/msi.c:3602:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( hkey5, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3604:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( hkey4, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3606:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( hkey3, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3608:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( hkey2, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3610:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( hkey, "", access & KEY_WOW64_64KEY ); data/wine-5.0/dlls/msi/tests/msi.c:3637:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:3640:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3646:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3652:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3658:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3664:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3670:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3676:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3681:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3682:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:3683:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3684:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:3685:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3687:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3697:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3706:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3714:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3715:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:3716:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3717:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3718:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3720:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3724:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3729:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3732:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3733:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3739:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3747:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3748:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3750:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3760:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3765:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3768:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3769:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:3770:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3771:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3772:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod2_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3774:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3778:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3783:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3787:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3790:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3791:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:3792:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3794:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3798:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3807:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3815:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3816:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:3817:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3818:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3819:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3821:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3825:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3830:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3833:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3834:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3840:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3848:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3849:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3851:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3861:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3866:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3869:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3870:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:3871:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3872:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:3873:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod2_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3875:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:3879:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(product, "prod"); data/wine-5.0/dlls/msi/tests/msi.c:3884:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3888:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:3916:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:3940:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:3941:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:3942:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:3943:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:3944:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:3946:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4015:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4018:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:4019:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Components\\"); data/wine-5.0/dlls/msi/tests/msi.c:4020:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, comp_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4022:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &compkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4085:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(compkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4132:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4133:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4150:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4151:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4165:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4166:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4180:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4181:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4195:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4196:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4210:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4211:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4225:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4226:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4250:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4267:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4268:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4283:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\kernel32.dll"); data/wine-5.0/dlls/msi/tests/msi.c:4290:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4291:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4308:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4317:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4340:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4349:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4358:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(version, "version"); data/wine-5.0/dlls/msi/tests/msi.c:4368:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lang, "lang"); data/wine-5.0/dlls/msi/tests/msi.c:4408:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:4412:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4421:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4430:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4439:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4449:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4459:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4469:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4478:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4487:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4496:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4503:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:4504:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:4505:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4506:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4508:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4519:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4526:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4529:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:4530:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:4531:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4532:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4534:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4545:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4552:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:4553:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:4554:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4555:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4557:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4562:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4569:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4574:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4585:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4609:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4617:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4629:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4638:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4639:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4640:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4645:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4646:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4653:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4660:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:4661:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:4662:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4663:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4665:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4670:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4677:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4682:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4693:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4700:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4701:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4707:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4708:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4710:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4721:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4728:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:4729:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:4730:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4731:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4733:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4738:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4745:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4750:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4757:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4758:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:4762:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:4763:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "S-1-5-18\\\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:4764:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:4766:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4771:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4778:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:4783:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4794:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4806:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4817:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4829:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4840:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4852:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4863:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4875:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4886:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4898:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4909:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4921:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4932:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4944:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4955:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4967:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4978:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:4990:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5001:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5013:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5024:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5036:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5047:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5059:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5070:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5082:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5093:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5105:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5116:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5128:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5139:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5151:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5162:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5174:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5185:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5197:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5208:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5220:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5231:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5243:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5254:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5266:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5277:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5289:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5300:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5312:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5323:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5335:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5346:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5358:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5369:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5381:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5392:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5404:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5415:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5428:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5439:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5450:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5462:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5473:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5485:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5496:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5508:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5519:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5531:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5539:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5547:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/msi.c:5552:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5563:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5575:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5586:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5601:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5615:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5630:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5664:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:5665:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:5676:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:5677:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:5712:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:5716:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5726:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5736:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5746:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5757:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5767:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5777:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5787:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5798:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5809:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5820:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5831:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:5832:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:5833:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:5834:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:5836:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:5847:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5856:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:5861:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5875:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5887:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5901:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5914:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5927:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5943:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5969:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5983:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:5997:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6010:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6023:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6036:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6049:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6062:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6075:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6088:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6101:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6114:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6127:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6140:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6153:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6166:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6179:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6193:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6207:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6223:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6237:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6265:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6279:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6333:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:6334:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:6335:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:6336:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:6338:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:6343:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6355:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:6356:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:6358:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_CURRENT_USER, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:6362:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6370:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/msi.c:6382:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6396:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6410:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6424:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6438:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6452:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6466:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6480:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6494:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6508:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6522:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6536:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6550:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6564:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6578:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6592:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6606:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6619:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6632:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6647:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6662:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6679:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6692:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6705:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6722:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6756:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:6761:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:6762:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:6763:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:6764:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:6766:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:6771:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6780:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:6785:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6799:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6812:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6825:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6838:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6851:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6864:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6877:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6890:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6903:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6916:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6929:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6942:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6955:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6968:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6981:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:6994:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7007:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7020:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7034:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7048:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7064:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7078:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7092:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7106:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7120:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7134:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7169:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:7171:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:7174:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:7175:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:7176:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:7177:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:7179:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:7184:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7192:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:7195:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:7196:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:7203:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7217:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7226:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:7227:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:7228:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:7229:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:7231:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:7239:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7253:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7267:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7281:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7295:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7309:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7323:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7337:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7351:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7379:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7393:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7407:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7421:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7435:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7449:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7463:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7476:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7489:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7504:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7519:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7536:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7549:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7562:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7612:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:7614:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:7621:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7630:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:7631:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:7633:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &localkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:7638:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7647:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(localkey, "InstallProperties", 0, NULL, 0, access, NULL, &propkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:7652:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7666:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7679:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7692:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7705:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7718:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7731:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7744:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7757:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7770:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7783:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7796:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7809:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7822:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7835:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7848:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7861:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7874:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7887:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7901:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7915:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7931:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7945:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7959:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7973:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:7987:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8001:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8036:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(propkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8038:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(localkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8041:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8042:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8044:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8055:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8068:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8082:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8096:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8110:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8124:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8138:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8152:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8166:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8180:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8194:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8208:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8222:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8236:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8250:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8264:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8278:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8292:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8305:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8318:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8333:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8348:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8378:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8408:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:8441:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8447:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(user, "apple"); \ data/wine-5.0/dlls/msi/tests/msi.c:8448:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(org, "orange"); \ data/wine-5.0/dlls/msi/tests/msi.c:8449:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(serial, "banana"); \ data/wine-5.0/dlls/msi/tests/msi.c:8471:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:8634:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:8635:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:8636:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8637:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8639:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8660:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:8661:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:8662:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:8663:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8664:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8666:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8675:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8798:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8800:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8802:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8808:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8809:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8826:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:8827:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:8828:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:8829:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8830:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8832:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8835:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8916:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8918:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:8926:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8927:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8929:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8950:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:8951:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18"); data/wine-5.0/dlls/msi/tests/msi.c:8952:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:8953:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:8955:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:8958:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9039:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9041:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9043:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9066:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/msi.c:9072:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:9128:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:9129:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:9130:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:9131:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9132:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9134:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9150:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:9151:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:9152:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:9153:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9154:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9156:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9172:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9182:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, path); data/wine-5.0/dlls/msi/tests/msi.c:9183:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, "\\winetest.msi"); data/wine-5.0/dlls/msi/tests/msi.c:9203:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9205:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9207:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9212:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9213:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9225:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:9226:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:9227:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:9228:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9229:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9231:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9241:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, path); data/wine-5.0/dlls/msi/tests/msi.c:9252:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, "\\winetest.msi"); data/wine-5.0/dlls/msi/tests/msi.c:9272:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9274:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9281:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9282:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9284:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9300:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:9301:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9302:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9304:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9314:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9324:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, path); data/wine-5.0/dlls/msi/tests/msi.c:9325:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, "\\winetest.msi"); data/wine-5.0/dlls/msi/tests/msi.c:9348:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, path); data/wine-5.0/dlls/msi/tests/msi.c:9349:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, "\\winetest.msi"); data/wine-5.0/dlls/msi/tests/msi.c:9364:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9366:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9368:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9392:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:9396:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9397:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9399:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9420:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:9421:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, expectedsid); data/wine-5.0/dlls/msi/tests/msi.c:9422:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9423:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9425:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9434:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9435:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9437:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9453:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9457:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9458:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9460:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9482:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9483:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9485:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9507:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9508:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9510:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9534:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9535:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9537:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9558:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9559:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9561:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9580:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9582:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9599:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9600:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9602:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9620:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9622:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9638:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9640:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9656:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9657:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9658:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9674:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9675:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9692:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9693:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9695:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9713:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9714:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9716:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9734:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9735:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9750:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9751:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9753:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9769:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:9770:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, expectedsid); data/wine-5.0/dlls/msi/tests/msi.c:9771:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:9772:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:9774:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9783:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9784:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9786:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9802:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9806:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9807:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9809:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9825:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udpatch, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:9829:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9830:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9832:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9855:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9856:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9858:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9877:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9878:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9880:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9902:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9903:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9905:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9928:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9929:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9931:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9949:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:9950:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:9952:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:9969:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9971:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9973:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9976:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:9978:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10000:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:10004:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10005:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10007:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10023:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:10024:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:10030:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10031:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10033:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10053:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10054:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10056:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10078:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10079:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10081:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10103:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10104:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10106:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10130:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10131:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10133:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10156:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10157:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10159:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10177:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:10178:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, expectedsid); data/wine-5.0/dlls/msi/tests/msi.c:10179:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:10180:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:10182:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10191:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10192:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10194:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10213:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10214:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10216:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10232:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:10233:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, expectedsid); data/wine-5.0/dlls/msi/tests/msi.c:10234:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:10235:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:10237:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10246:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10247:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10249:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10265:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10269:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10270:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10272:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10288:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udpatch, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10292:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10295:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10318:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10319:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10321:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10340:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10341:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10343:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10366:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10368:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10392:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10394:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10412:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10413:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10415:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10432:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10434:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10436:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10438:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10468:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:10472:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10473:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10475:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10491:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:10492:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:10494:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10503:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10504:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10506:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10522:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10526:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10527:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10529:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10551:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10552:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10554:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10576:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10577:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10603:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10604:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10606:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10627:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10628:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10630:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10645:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:10646:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:10647:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:10649:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10658:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10659:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10661:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10677:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10681:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10682:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10684:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10700:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udpatch, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:10704:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10705:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10707:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10729:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10730:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10732:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10750:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10751:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10753:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10775:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10776:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10778:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10795:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10796:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10798:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10820:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10821:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10823:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10844:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10845:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10847:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10863:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10864:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10866:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10882:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10885:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10887:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10893:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10895:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:10919:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10920:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10922:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10940:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10941:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10943:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10961:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10962:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10964:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:10983:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:10984:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:10986:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11005:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11006:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11008:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11027:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11028:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11030:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11048:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11049:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11051:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11069:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11070:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11072:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11090:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11091:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11093:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11111:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11112:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11114:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11132:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patchcode, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11133:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetprod, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11135:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(targetsid, "kiwi"); data/wine-5.0/dlls/msi/tests/msi.c:11180:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:11184:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11185:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11197:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11198:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11210:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11211:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11223:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11224:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11237:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11238:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11252:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11266:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11267:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11277:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:11278:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:11279:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:11280:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:11282:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11294:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11303:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11308:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11309:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11327:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11328:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11345:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11346:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11364:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11383:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11384:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11395:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11405:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11414:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11415:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11426:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11427:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11439:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11440:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11451:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11452:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11462:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11464:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11470:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11471:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11481:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:11482:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:11489:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11490:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11504:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11505:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11523:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11524:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11541:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11542:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11560:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11561:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11580:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11593:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:11594:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:11595:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:11596:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:11598:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11603:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11604:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11613:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11625:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11626:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11636:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:11637:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:11639:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11650:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11651:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11660:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11665:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11666:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11684:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11685:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11702:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11703:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11721:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11722:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11740:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11741:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11750:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:11751:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:11752:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:11754:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11759:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11760:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11769:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11774:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11775:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11784:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udpatch, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:11789:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11790:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11810:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(patch, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11811:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(transforms, "banana"); data/wine-5.0/dlls/msi/tests/msi.c:11854:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11857:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11859:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11861:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11863:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:11892:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:11895:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11907:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11918:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11930:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11942:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11954:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11965:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11977:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:11988:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12000:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12012:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12024:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12036:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12048:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12060:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12072:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12084:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12096:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12108:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12120:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12130:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:12131:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:12132:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12133:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12135:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12146:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12156:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12161:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12170:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12175:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12184:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(patches, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12189:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12198:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:12199:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:12200:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12201:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12203:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12208:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12217:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &prodpatches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12222:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12237:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12246:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:12247:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:12248:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:12249:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12251:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12256:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12270:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12279:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12307:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12321:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12336:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12351:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12379:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12389:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12407:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12423:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12434:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12452:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodpatches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12454:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12461:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12473:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12487:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12489:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12491:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12493:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12495:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12501:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12511:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:12512:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:12513:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12514:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12516:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12521:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12531:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12536:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12545:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12550:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12559:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(patches, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12564:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12573:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12574:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12581:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12595:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12610:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12619:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\"); data/wine-5.0/dlls/msi/tests/msi.c:12620:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/msi.c:12621:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:12622:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12624:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12629:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12643:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12652:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12661:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodpatches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12670:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12682:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12691:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12693:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12695:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12697:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12699:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12705:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12715:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer"); data/wine-5.0/dlls/msi/tests/msi.c:12716:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12717:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12719:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udprod, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12724:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12734:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12739:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12748:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(udprod, "Patches", 0, NULL, 0, access, NULL, &patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12753:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12762:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(patches, patch_squashed, 0, NULL, 0, access, NULL, &hpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12767:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12776:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12777:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12779:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12790:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12799:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "Patches", 0, NULL, 0, access, NULL, &prodpatches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12804:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12819:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12828:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer"); data/wine-5.0/dlls/msi/tests/msi.c:12829:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\UserData\\S-1-5-18\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:12830:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12832:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12837:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12851:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12860:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12869:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodpatches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12871:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12878:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12890:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12899:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12901:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12903:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12905:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12907:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(udprod, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:12929:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:12947:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12948:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12950:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey_product, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12960:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12966:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_product, "Patches", 0, NULL, 0, access, NULL, &hkey_patches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12971:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12977:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_patches, patch_squashed, 0, NULL, 0, access, NULL, &hkey_patch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:12982:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:12988:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer"); data/wine-5.0/dlls/msi/tests/msi.c:12989:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:12990:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/msi.c:12992:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey_udproduct, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13002:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13008:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_udproduct, "InstallProperties", 0, NULL, 0, access, NULL, &hkey_udprops, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13013:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13019:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_udproduct, "Patches", 0, NULL, 0, access, NULL, &hkey_udpatches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13024:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13030:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_udproduct, "Patches", 0, NULL, 0, access, NULL, &hkey_udproductpatches, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13033:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(hkey_udproductpatches, patch_squashed, 0, NULL, 0, access, NULL, &hkey_udproductpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13038:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13044:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer"); data/wine-5.0/dlls/msi/tests/msi.c:13045:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\UserData\\S-1-5-18\\Patches\\"); data/wine-5.0/dlls/msi/tests/msi.c:13046:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, patch_squashed); data/wine-5.0/dlls/msi/tests/msi.c:13048:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &hkey_udpatch, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13056:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13063:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/msi.c:13083:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udproductpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13085:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udproductpatches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13087:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udpatch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13089:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udpatches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13091:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udprops, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13093:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_udproduct, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13097:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_patches, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13099:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_product, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13101:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(hkey_patch, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13129:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:13132:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(keypath2, usersid); data/wine-5.0/dlls/msi/tests/msi.c:13134:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(keypath2, product_squashed2); data/wine-5.0/dlls/msi/tests/msi.c:13136:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath2, 0, NULL, 0, access, NULL, &key2, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13146:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(keypath1, product_squashed1); data/wine-5.0/dlls/msi/tests/msi.c:13148:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath1, 0, NULL, 0, access, NULL, &key1, NULL); data/wine-5.0/dlls/msi/tests/msi.c:13158:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(keypath3, product_squashed3); data/wine-5.0/dlls/msi/tests/msi.c:13191:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(key1, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13192:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(key2, "", access & KEY_WOW64_64KEY); data/wine-5.0/dlls/msi/tests/msi.c:13267:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:13270:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:13272:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, product_squashed2 ); data/wine-5.0/dlls/msi/tests/msi.c:13274:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath2, 0, NULL, 0, access, NULL, &key2, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13283:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath1, product_squashed1 ); data/wine-5.0/dlls/msi/tests/msi.c:13285:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath1, 0, NULL, 0, access, NULL, &key1, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13293:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( keypath3, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:13295:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath3, product_squashed3 ); data/wine-5.0/dlls/msi/tests/msi.c:13297:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_USERS, keypath3, 0, NULL, 0, access, NULL, &key3, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13411:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key1, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13412:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key2, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13413:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key3, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13441:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:13445:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath1, comp_squashed1 ); data/wine-5.0/dlls/msi/tests/msi.c:13447:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath1, 0, NULL, 0, access, NULL, &key1, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13456:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:13458:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, comp_squashed2 ); data/wine-5.0/dlls/msi/tests/msi.c:13460:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath2, 0, NULL, 0, access, NULL, &key2, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13486:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key1, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13487:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key2, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13520:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (is_wow64) access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:13524:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath1, comp_squashed1 ); data/wine-5.0/dlls/msi/tests/msi.c:13526:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath1, 0, NULL, 0, access, NULL, &key1, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13535:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, usersid ); data/wine-5.0/dlls/msi/tests/msi.c:13537:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( keypath2, comp_squashed2 ); data/wine-5.0/dlls/msi/tests/msi.c:13539:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. r = RegCreateKeyExA( HKEY_LOCAL_MACHINE, keypath2, 0, NULL, 0, access, NULL, &key2, NULL ); data/wine-5.0/dlls/msi/tests/msi.c:13591:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key1, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13592:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key( key2, "", access ); data/wine-5.0/dlls/msi/tests/msi.c:13621:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/msi.c:13758:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:13759:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13760:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "83374883CBB1401418CAF2AA7CCEDDDC\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:13762:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &props); data/wine-5.0/dlls/msi/tests/msi.c:13808:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/msi.c:13809:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13810:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "83374883CBB1401418CAF2AA7CCEDDDC\\InstallProperties"); data/wine-5.0/dlls/msi/tests/msi.c:13812:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &props); data/wine-5.0/dlls/msi/tests/msi.c:13825:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "SOFTWARE\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13826:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "83374883CBB1401418CAF2AA7CCEDDDC\\SourceList"); data/wine-5.0/dlls/msi/tests/msi.c:13828:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, access, &source); data/wine-5.0/dlls/msi/tests/msi.c:13897:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, CURR_DIR ); data/wine-5.0/dlls/msi/tests/msi.c:13899:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, msifile ); data/wine-5.0/dlls/msi/tests/msi.c:13979:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, CURR_DIR ); data/wine-5.0/dlls/msi/tests/msi.c:13981:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, msifile ); data/wine-5.0/dlls/msi/tests/msi.c:14170:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14184:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/msi.c:14185:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/msi.c:14188:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14201:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14210:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/msi.c:14211:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/msi.c:14214:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14225:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14239:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14250:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/msi.c:14401:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/msi.c:14402:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\msitest\\concurrent.msi"); data/wine-5.0/dlls/msi/tests/msi.c:14609:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/msi/tests/package.c:120:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/package.c:123:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/package.c:147:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LSTATUS package_RegDeleteTreeW(HKEY hKey, LPCWSTR lpszSubKey, REGSAM access) data/wine-5.0/dlls/msi/tests/package.c:157:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = RegOpenKeyExW(hKey, lpszSubKey, 0, access, &hSubKey); data/wine-5.0/dlls/msi/tests/package.c:185:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = package_RegDeleteTreeW(hSubKey, lpszName, access); data/wine-5.0/dlls/msi/tests/package.c:192:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = pRegDeleteKeyExW(hKey, lpszSubKey, access, 0); data/wine-5.0/dlls/msi/tests/package.c:280:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/package.c:289:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:292:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prodpath, data/wine-5.0/dlls/msi/tests/package.c:299:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:302:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(prodpath, data/wine-5.0/dlls/msi/tests/package.c:310:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:313:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(prodpath, data/wine-5.0/dlls/msi/tests/package.c:319:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RegCreateKeyExA(HKEY_LOCAL_MACHINE, comppath, 0, NULL, 0, access, NULL, &hkey, NULL); data/wine-5.0/dlls/msi/tests/package.c:321:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:322:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:323:15: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!dir) lstrcatA(path, filename); data/wine-5.0/dlls/msi/tests/package.c:328:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RegCreateKeyExA(HKEY_LOCAL_MACHINE, prodpath, 0, NULL, 0, access, NULL, &hkey, NULL); data/wine-5.0/dlls/msi/tests/package.c:343:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/package.c:351:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:354:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prodpath, data/wine-5.0/dlls/msi/tests/package.c:360:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:363:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(prodpath, data/wine-5.0/dlls/msi/tests/package.c:370:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comppath, data/wine-5.0/dlls/msi/tests/package.c:373:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(prodpath, data/wine-5.0/dlls/msi/tests/package.c:380:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. package_RegDeleteTreeW(HKEY_LOCAL_MACHINE, substrW, access); data/wine-5.0/dlls/msi/tests/package.c:383:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. package_RegDeleteTreeW(HKEY_LOCAL_MACHINE, substrW, access); data/wine-5.0/dlls/msi/tests/package.c:755:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(query, insert, values); data/wine-5.0/dlls/msi/tests/package.c:872:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( query, insert, sig, root, path, name, type ); data/wine-5.0/dlls/msi/tests/package.c:1027:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\version.dll"); data/wine-5.0/dlls/msi/tests/package.c:1070:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(spec.szDescription, "msitest restore point"); data/wine-5.0/dlls/msi/tests/package.c:1295:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( file, "%srootfile.txt", tempdir ); data/wine-5.0/dlls/msi/tests/package.c:1302:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( tempdir, "%s\\subdir", buffer ); data/wine-5.0/dlls/msi/tests/package.c:1325:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( tempdir, "\\" ); data/wine-5.0/dlls/msi/tests/package.c:1330:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( file, "%srootfile.txt", tempdir ); data/wine-5.0/dlls/msi/tests/package.c:1338:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( tempdir, "TestParent\\" ); data/wine-5.0/dlls/msi/tests/package.c:2304:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/package.c:2311:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/package.c:2318:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/package.c:2325:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, booW); data/wine-5.0/dlls/msi/tests/package.c:2478:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buffer, "aaa"); data/wine-5.0/dlls/msi/tests/package.c:2877:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( expected, "1: %sfrontal.txt ", root); data/wine-5.0/dlls/msi/tests/package.c:2893:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( expected, "1: %sI am a really long directory\\temporal.txt ", root); data/wine-5.0/dlls/msi/tests/package.c:2913:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( expected, "%sI am a really long directory\\temporal.txt", root); data/wine-5.0/dlls/msi/tests/package.c:2920:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%sI am a really long directory", root ); data/wine-5.0/dlls/msi/tests/package.c:2923:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( buf, "\\temporal.txt" ); data/wine-5.0/dlls/msi/tests/package.c:2985:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( expected, "1: %sI am a really long directory\\ ", root); data/wine-5.0/dlls/msi/tests/package.c:2998:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( expected, "1: " ); data/wine-5.0/dlls/msi/tests/package.c:2999:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( expected, curr_dir ); data/wine-5.0/dlls/msi/tests/package.c:3000:31: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (strlen(curr_dir) > 3) lstrcatA( expected, "\\" ); data/wine-5.0/dlls/msi/tests/package.c:3001:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( expected, " " ); data/wine-5.0/dlls/msi/tests/package.c:3008:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%sI am a really long directory\\temporal.txt", root ); data/wine-5.0/dlls/msi/tests/package.c:3011:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%sI am a really long directory", root ); data/wine-5.0/dlls/msi/tests/package.c:4281:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:4285:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4291:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName2", expected); data/wine-5.0/dlls/msi/tests/package.c:4297:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName3", expected); data/wine-5.0/dlls/msi/tests/package.c:4303:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName4", expected); data/wine-5.0/dlls/msi/tests/package.c:4309:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName5", expected); data/wine-5.0/dlls/msi/tests/package.c:4315:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:4321:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:4337:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName8.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4348:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName10.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4483:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:4487:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4492:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName2", expected); data/wine-5.0/dlls/msi/tests/package.c:4497:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, expected); data/wine-5.0/dlls/msi/tests/package.c:4507:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName3.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4513:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName4.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4519:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName5.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4524:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "\"%s\\FileName1\" -option", expected); data/wine-5.0/dlls/msi/tests/package.c:4530:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1 -option", expected); data/wine-5.0/dlls/msi/tests/package.c:4701:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature26', '%s', '', '', '', '', '', '', ''", ptr); data/wine-5.0/dlls/msi/tests/package.c:4771:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "#xCDAB3412EF907856"); data/wine-5.0/dlls/msi/tests/package.c:4783:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4794:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:4805:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:4855:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName3.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4866:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName5.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:4875:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, expected); data/wine-5.0/dlls/msi/tests/package.c:4883:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:4907:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4913:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4967:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:4968:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/msi/tests/package.c:4990:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:4994:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:4999:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\IDontExist", expected); data/wine-5.0/dlls/msi/tests/package.c:5003:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName2.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5007:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName3.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5011:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName4.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5106:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:5117:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:5123:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:5131:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, expected); data/wine-5.0/dlls/msi/tests/package.c:5146:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName2.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5157:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName4.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5187:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(absolute, "A:\\"); data/wine-5.0/dlls/msi/tests/package.c:5197:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(absolute + 3, relative, size + 1); data/wine-5.0/dlls/msi/tests/package.c:5203:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(absolute, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5253:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:5257:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature1', '', '%s', 0", expected); data/wine-5.0/dlls/msi/tests/package.c:5261:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature2', '', '%s', 0", expected); data/wine-5.0/dlls/msi/tests/package.c:5265:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature3', '', '%s', 0", expected + 3); data/wine-5.0/dlls/msi/tests/package.c:5269:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature4', '', '%s', 2", expected); data/wine-5.0/dlls/msi/tests/package.c:5273:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature5', '', '%s', 3", expected); data/wine-5.0/dlls/msi/tests/package.c:5277:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature6', '', '%s', 1", expected); data/wine-5.0/dlls/msi/tests/package.c:5285:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature8', '', '%s', 0", expected); data/wine-5.0/dlls/msi/tests/package.c:5289:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature9', '', '%s', 0", expected); data/wine-5.0/dlls/msi/tests/package.c:5293:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "'NewSignature10', '', '%s', 0", expected); data/wine-5.0/dlls/msi/tests/package.c:5333:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName1", expected); data/wine-5.0/dlls/msi/tests/package.c:5339:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\", expected); data/wine-5.0/dlls/msi/tests/package.c:5356:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\one\\two\\three\\FileName2", expected); data/wine-5.0/dlls/msi/tests/package.c:5367:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\one\\two\\three\\FileName2", expected); data/wine-5.0/dlls/msi/tests/package.c:5375:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\FileName3.dll", expected); data/wine-5.0/dlls/msi/tests/package.c:5602:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/package.c:5604:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:5605:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5606:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, msifile); data/wine-5.0/dlls/msi/tests/package.c:5646:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RegOpenKeyExA(HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion", 0, access, &hkey2); data/wine-5.0/dlls/msi/tests/package.c:6029:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6030:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(expected, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6031:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(expected, "abelisaurus"); data/wine-5.0/dlls/msi/tests/package.c:6054:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6055:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(expected, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6098:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6099:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(expected, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6107:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(expected, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6108:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(expected, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6109:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(expected, "neosodon\\"); data/wine-5.0/dlls/msi/tests/package.c:6186:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cwd, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6187:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(cwd, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6189:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:6190:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "subsource"); data/wine-5.0/dlls/msi/tests/package.c:6191:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6193:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(sub2, subsrc); data/wine-5.0/dlls/msi/tests/package.c:6194:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(sub2, "sub2"); data/wine-5.0/dlls/msi/tests/package.c:6195:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(sub2, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6224:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6234:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6244:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6253:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6261:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6268:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6276:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6285:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6294:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6301:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6309:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6318:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6332:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6340:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6348:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6357:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6364:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6372:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6380:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6399:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6407:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6416:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6423:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6431:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6439:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6450:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6458:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6466:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6475:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6482:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6490:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6498:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6509:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6517:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6525:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6534:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6541:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6549:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6557:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6565:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6588:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6597:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6606:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6618:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6630:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6651:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6660:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6669:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6678:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6685:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6693:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6702:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6714:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6722:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6730:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6741:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6748:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6756:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6764:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6775:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6783:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6791:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6802:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6809:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6817:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6825:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6836:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6844:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6852:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6863:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6870:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6878:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6886:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6897:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6905:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6913:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6924:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6931:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6939:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6947:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:6966:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cwd, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:6967:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(cwd, "\\"); data/wine-5.0/dlls/msi/tests/package.c:6969:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:6970:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "long"); data/wine-5.0/dlls/msi/tests/package.c:6971:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7037:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7047:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7057:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7063:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7064:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "two"); data/wine-5.0/dlls/msi/tests/package.c:7065:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7069:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7075:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7076:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "four"); data/wine-5.0/dlls/msi/tests/package.c:7077:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7081:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7087:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7088:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "six"); data/wine-5.0/dlls/msi/tests/package.c:7089:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7093:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7099:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7100:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "eight"); data/wine-5.0/dlls/msi/tests/package.c:7101:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7105:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7111:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7112:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "ten"); data/wine-5.0/dlls/msi/tests/package.c:7113:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7117:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7123:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7124:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "twelve"); data/wine-5.0/dlls/msi/tests/package.c:7125:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7129:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7175:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7176:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "short"); data/wine-5.0/dlls/msi/tests/package.c:7177:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7181:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7191:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7201:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7207:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7208:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "one"); data/wine-5.0/dlls/msi/tests/package.c:7209:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7213:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7219:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7220:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "three"); data/wine-5.0/dlls/msi/tests/package.c:7221:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7225:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7231:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7232:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "five"); data/wine-5.0/dlls/msi/tests/package.c:7233:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7237:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7243:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7244:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "seven"); data/wine-5.0/dlls/msi/tests/package.c:7245:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7249:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7255:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7256:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "nine"); data/wine-5.0/dlls/msi/tests/package.c:7257:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7261:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7267:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7268:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "eleven"); data/wine-5.0/dlls/msi/tests/package.c:7269:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7273:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7301:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cwd, CURR_DIR); data/wine-5.0/dlls/msi/tests/package.c:7302:29: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!is_root(CURR_DIR)) lstrcatA(cwd, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7304:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(subsrc, cwd); data/wine-5.0/dlls/msi/tests/package.c:7305:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "long"); data/wine-5.0/dlls/msi/tests/package.c:7306:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(subsrc, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7326:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7334:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7347:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7355:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7366:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7374:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7385:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7393:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7400:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7408:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7421:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7429:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7437:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7454:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7464:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7473:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7484:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7494:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7503:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7517:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7527:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7535:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7543:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7551:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7563:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7571:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7579:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7591:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7599:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7607:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7619:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7627:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7635:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "kiwi"); data/wine-5.0/dlls/msi/tests/package.c:7741:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hfile = CreateFileA(file, access, share, NULL, OPEN_EXISTING, data/wine-5.0/dlls/msi/tests/package.c:7984:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:7991:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/package.c:8012:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(query, "'ProductCode', '%s'", prodcode); data/wine-5.0/dlls/msi/tests/package.c:8020:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/package.c:8021:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/package.c:8023:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/package.c:8032:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\"); data/wine-5.0/dlls/msi/tests/package.c:8033:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "Installer\\UserData\\S-1-5-18\\Products\\"); data/wine-5.0/dlls/msi/tests/package.c:8034:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/package.c:8036:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/package.c:8046:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "InstallProperties", 0, NULL, 0, access, NULL, &props, NULL); data/wine-5.0/dlls/msi/tests/package.c:8049:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, path); data/wine-5.0/dlls/msi/tests/package.c:8050:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, "\\"); data/wine-5.0/dlls/msi/tests/package.c:8051:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(val, msifile); data/wine-5.0/dlls/msi/tests/package.c:8063:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8072:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8082:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8091:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8101:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8108:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8116:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8125:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8147:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8156:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8167:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8176:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8186:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8195:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8205:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8214:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8224:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8231:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8242:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8249:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8260:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(val, "apple"); data/wine-5.0/dlls/msi/tests/package.c:8269:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(valW, appleW); data/wine-5.0/dlls/msi/tests/package.c:8280:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(props, "", access); data/wine-5.0/dlls/msi/tests/package.c:8282:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/package.c:8284:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/package.c:9067:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(msg.field[0], string); data/wine-5.0/dlls/msi/tests/package.c:9657:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(CURR_DIR, temp_path); data/wine-5.0/dlls/msi/tests/patch.c:227:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, PROG_FILES_DIR ); data/wine-5.0/dlls/msi/tests/patch.c:229:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, rel_path ); data/wine-5.0/dlls/msi/tests/patch.c:243:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, PROG_FILES_DIR ); data/wine-5.0/dlls/msi/tests/patch.c:245:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, filename ); data/wine-5.0/dlls/msi/tests/patch.c:750:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, CURR_DIR ); data/wine-5.0/dlls/msi/tests/patch.c:752:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, msifile ); data/wine-5.0/dlls/msi/tests/patch.c:949:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( query, fmt, table, entry ); data/wine-5.0/dlls/msi/tests/patch.c:1354:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( CURR_DIR, temp_path ); data/wine-5.0/dlls/msi/tests/record.c:418:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:425:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:445:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:455:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:509:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:528:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:547:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:557:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/record.c:598:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "apple"); data/wine-5.0/dlls/msi/tests/source.c:296:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:297:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:304:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:315:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:336:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:353:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:362:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:375:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:484:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:494:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:622:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:629:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Patches\\"); data/wine-5.0/dlls/msi/tests/source.c:630:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:639:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:651:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:665:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG delete_key( HKEY key, LPCSTR subkey, REGSAM access ) data/wine-5.0/dlls/msi/tests/source.c:668:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return pRegDeleteKeyExA( key, subkey, access, 0 ); data/wine-5.0/dlls/msi/tests/source.c:704:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:742:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:743:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:944:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:945:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:946:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:947:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:949:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:962:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &hkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:972:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(prodkey, "SourceList\\URL", 0, access, &url); data/wine-5.0/dlls/msi/tests/source.c:990:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(prodkey, "SourceList\\URL", 0, access, &url); data/wine-5.0/dlls/msi/tests/source.c:1022:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:1023:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:1025:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:1039:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &hkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:1053:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(prodkey, "SourceList\\URL", 0, access, &url); data/wine-5.0/dlls/msi/tests/source.c:1096:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:1140:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1148:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:1149:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:1156:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1169:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1182:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1201:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1211:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1233:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1242:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1262:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1272:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1282:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1293:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1303:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1314:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1324:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1334:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1344:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1355:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1372:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1385:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1398:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1417:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1425:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:1426:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:1427:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:1428:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:1430:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:1439:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1447:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:1452:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1460:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "URL", 0, NULL, 0, access, NULL, &url, NULL); data/wine-5.0/dlls/msi/tests/source.c:1465:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1478:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1488:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1497:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(url, "", access); data/wine-5.0/dlls/msi/tests/source.c:1502:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1510:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "Net", 0, NULL, 0, access, NULL, &net, NULL); data/wine-5.0/dlls/msi/tests/source.c:1515:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1528:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1537:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:1539:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:1541:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:1549:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1559:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1567:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:1568:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:1570:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:1580:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1588:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:1593:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1601:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "URL", 0, NULL, 0, access, NULL, &url, NULL); data/wine-5.0/dlls/msi/tests/source.c:1606:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1619:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1629:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1638:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(url, "", access); data/wine-5.0/dlls/msi/tests/source.c:1643:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1651:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "Net", 0, NULL, 0, access, NULL, &net, NULL); data/wine-5.0/dlls/msi/tests/source.c:1656:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1669:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(value, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:1678:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:1680:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:1682:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:1718:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:1807:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:1808:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2024:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:2025:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:2026:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2027:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2029:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:2043:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:2053:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Media", 0, access, &media); data/wine-5.0/dlls/msi/tests/source.c:2058:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:2060:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:2062:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:2068:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2069:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2071:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:2086:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:2101:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Media", 0, access, &media); data/wine-5.0/dlls/msi/tests/source.c:2112:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:2116:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:2118:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:2154:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:2216:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2217:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2345:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:2346:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:2347:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2348:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2350:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:2364:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:2374:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Media", 0, access, &media); data/wine-5.0/dlls/msi/tests/source.c:2380:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:2382:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:2384:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:2390:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2391:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2393:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:2408:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:2423:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Media", 0, access, &media); data/wine-5.0/dlls/msi/tests/source.c:2435:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:2439:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:2441:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:2474:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:2556:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:2557:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:2576:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2578:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2596:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2598:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2616:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2618:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2651:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2653:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2682:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2684:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2698:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2700:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2714:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2716:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2730:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2732:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2747:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2749:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2763:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2765:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2779:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2781:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2795:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2797:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2811:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2813:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2826:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2828:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2842:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2859:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2871:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2872:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2889:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2906:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2918:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2920:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2933:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2950:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2952:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2964:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2966:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:2982:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:2984:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3001:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3003:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3020:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3022:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3039:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3041:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3059:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3061:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3085:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:3086:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:3087:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:3088:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:3090:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:3104:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:3109:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3111:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3124:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "Media", 0, NULL, 0, access, NULL, &media, NULL); data/wine-5.0/dlls/msi/tests/source.c:3129:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3131:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3149:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3151:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3164:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:3166:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:3168:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:3174:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:3175:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:3177:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:3192:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:3197:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3199:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3212:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(source, "Media", 0, NULL, 0, access, NULL, &media, NULL); data/wine-5.0/dlls/msi/tests/source.c:3217:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3219:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3237:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3239:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3253:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(label, "aaa"); data/wine-5.0/dlls/msi/tests/source.c:3255:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(prompt, "bbb"); data/wine-5.0/dlls/msi/tests/source.c:3269:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(media, "", access); data/wine-5.0/dlls/msi/tests/source.c:3271:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:3273:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:3315:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_WOW64_64KEY; data/wine-5.0/dlls/msi/tests/source.c:3356:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/source.c:3357:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, usersid); data/wine-5.0/dlls/msi/tests/source.c:3358:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:3359:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:3361:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &userkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:3372:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(userkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:3380:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Net", 0, access, &net); data/wine-5.0/dlls/msi/tests/source.c:3390:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:3401:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Net", 0, access, &net); data/wine-5.0/dlls/msi/tests/source.c:3408:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:3419:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Net", 0, access, &net); data/wine-5.0/dlls/msi/tests/source.c:3448:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:3450:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:3452:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(userkey, "", access); data/wine-5.0/dlls/msi/tests/source.c:3461:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:3462:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:3502:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(keypath, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/source.c:3503:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(keypath, prod_squashed); data/wine-5.0/dlls/msi/tests/source.c:3505:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(HKEY_LOCAL_MACHINE, keypath, 0, NULL, 0, access, NULL, &prodkey, NULL); data/wine-5.0/dlls/msi/tests/source.c:3517:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegCreateKeyExA(prodkey, "SourceList", 0, NULL, 0, access, NULL, &source, NULL); data/wine-5.0/dlls/msi/tests/source.c:3525:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = RegOpenKeyExA(source, "Net", 0, access, &net); data/wine-5.0/dlls/msi/tests/source.c:3544:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(net, "", access); data/wine-5.0/dlls/msi/tests/source.c:3548:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(source, "", access); data/wine-5.0/dlls/msi/tests/source.c:3550:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. delete_key(prodkey, "", access); data/wine-5.0/dlls/msi/upgrade.c:99:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( newprop, prop ); data/wine-5.0/dlls/msi/upgrade.c:100:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( newprop, szSemiColon ); data/wine-5.0/dlls/msi/upgrade.c:103:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( newprop, product ); data/wine-5.0/dlls/mstask/task.c:752:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*comment, description); data/wine-5.0/dlls/mstask/task.c:809:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*creator, author); data/wine-5.0/dlls/mstask/task.c:939:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tmp_account_name, pwszAccountName); data/wine-5.0/dlls/mstask/task.c:964:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppwszAccountName, This->accountName); data/wine-5.0/dlls/mstask/task.c:1027:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*appname, path); data/wine-5.0/dlls/mstask/task.c:1072:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*params, args); data/wine-5.0/dlls/mstask/task.c:1116:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*workdir, dir); data/wine-5.0/dlls/mstask/task.c:1449:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, sharing, size, try; data/wine-5.0/dlls/mstask/task.c:1486:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file = CreateFileW(file_name, access, sharing, NULL, OPEN_EXISTING, 0, 0); data/wine-5.0/dlls/mstask/task.c:1819:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*file_name, This->task_name); data/wine-5.0/dlls/mstask/task.c:1899:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, tasksW); data/wine-5.0/dlls/mstask/task.c:1900:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, name); data/wine-5.0/dlls/mstask/task.c:1901:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, jobW); data/wine-5.0/dlls/mstask/task_scheduler.c:149:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/mstask/task_scheduler.c:188:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(list[enumerated], data.cFileName); data/wine-5.0/dlls/mstask/task_scheduler.c:356:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer + 2, bstr); data/wine-5.0/dlls/mstask/task_scheduler.c:429:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, tasksW); data/wine-5.0/dlls/mstask/task_scheduler.c:430:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, name); data/wine-5.0/dlls/mstask/task_scheduler.c:431:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, jobW); data/wine-5.0/dlls/mstask/task_scheduler.c:473:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, tasksW); data/wine-5.0/dlls/mstask/task_scheduler.c:474:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, name); data/wine-5.0/dlls/mstask/task_scheduler.c:475:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, jobW); data/wine-5.0/dlls/mstask/tests/task_scheduler.c:395:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task1_full_name, Task1_job); data/wine-5.0/dlls/mstask/tests/task_scheduler.c:397:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task2_full_name, Task2_job); data/wine-5.0/dlls/mstask/tests/task_scheduler.c:399:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task3_full_name, Task3_job); data/wine-5.0/dlls/msvcirt/msvcirt.c:2696:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. if (sprintf(number_str, sprintf_fmt, n) > 0) data/wine-5.0/dlls/msvcirt/msvcirt.c:2736:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. if (sprintf(number_str, sprintf_fmt, prec, d) > 0) data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1297:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(temp_wchar, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:735:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(current_path, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:761:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(current_path, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:768:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(current_path, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:950:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(longer_path, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:951:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(longer_path, test_dirW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:952:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(longer_path, backslashW); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:954:9: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(longer_path, sW); data/wine-5.0/dlls/msvcp60/tests/ios.c:1470:9: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(file, tests[i].str); data/wine-5.0/dlls/msvcp90/ios.c:14985:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(temppath, dest); data/wine-5.0/dlls/msvcp90/ios.c:14986:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(temppath, asterisk); data/wine-5.0/dlls/msvcp90/ios.c:15004:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(target, data.cFileName); data/wine-5.0/dlls/msvcp90/ios.c:15055:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(target, data.cFileName); data/wine-5.0/dlls/msvcp90/locale.c:7570:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_char__Ifmt(this, fmt, "ld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:7612:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_char__Ifmt(this, fmt, "lu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:7681:57: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. num_put_char_fput(this, ret, dest, base, fill, tmp, sprintf(tmp, fmt, prec, v)); data/wine-5.0/dlls/msvcp90/locale.c:7779:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_char__Ifmt(this, fmt, "lld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:7821:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_char__Ifmt(this, fmt, "llu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8485:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "ld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8504:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "ld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8548:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "lu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8567:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "lu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8630:53: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. num_put__fput(this, ret, dest, base, fill, tmp, sprintf(tmp, fmt, prec, v), data/wine-5.0/dlls/msvcp90/locale.c:8665:53: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. num_put__fput(this, ret, dest, base, fill, tmp, sprintf(tmp, fmt, prec, v), data/wine-5.0/dlls/msvcp90/locale.c:8787:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "lld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8806:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "lld", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8850:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "llu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/locale.c:8869:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, num_put_wchar__Ifmt(this, fmt, "llu", base->fmtfl), v)); data/wine-5.0/dlls/msvcp90/misc.c:2455:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. SECURITY_ATTRIBUTES *attribs, LPCWSTR name, DWORD flags, DWORD access) data/wine-5.0/dlls/msvcp90/misc.c:2457:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p %s 0x%08x 0x%08x)\n", attribs, debugstr_w(name), flags, access); data/wine-5.0/dlls/msvcp90/misc.c:2458:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateEventExW(attribs, name, flags, access); data/wine-5.0/dlls/msvcp90/misc.c:2490:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, DWORD access) data/wine-5.0/dlls/msvcp90/misc.c:2493:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. flags, access); data/wine-5.0/dlls/msvcp90/misc.c:2494:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateSemaphoreExW(attribs, initial_count, max_count, name, flags, access); data/wine-5.0/dlls/msvcp90/msvcp_main.c:128:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. int WINAPIV sprintf(char *buf, const char *fmt, ...) data/wine-5.0/dlls/msvcp90/tests/ios.c:1972:9: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(file, tests[i].str); data/wine-5.0/dlls/msvcrt/dir.c:55:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:75:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:95:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:115:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:135:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:155:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:175:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:195:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:215:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:235:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ft->name, fd->cFileName); data/wine-5.0/dlls/msvcrt/dir.c:783:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf,dir); data/wine-5.0/dlls/msvcrt/dir.c:810:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buf,dir); data/wine-5.0/dlls/msvcrt/dir.c:882:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf,dir); data/wine-5.0/dlls/msvcrt/dir.c:923:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buf,dir); data/wine-5.0/dlls/msvcrt/dir.c:1116:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ext, end ); data/wine-5.0/dlls/msvcrt/dir.c:1208:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ext, end ); data/wine-5.0/dlls/msvcrt/dir.c:1381:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, extension); data/wine-5.0/dlls/msvcrt/dir.c:1427:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(p, extension); data/wine-5.0/dlls/msvcrt/environ.c:231:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*buffer, e); data/wine-5.0/dlls/msvcrt/environ.c:256:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(*buffer, e); data/wine-5.0/dlls/msvcrt/environ.c:284:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, e); data/wine-5.0/dlls/msvcrt/environ.c:310:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, e); data/wine-5.0/dlls/msvcrt/errno.c:280:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( data->strerror_buffer, MSVCRT__sys_errlist[err] ); data/wine-5.0/dlls/msvcrt/errno.c:326:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( data->strerror_buffer, "%s: %s\n", str, MSVCRT__sys_errlist[err] ); data/wine-5.0/dlls/msvcrt/errno.c:328:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( data->strerror_buffer, "%s\n", MSVCRT__sys_errlist[err] ); data/wine-5.0/dlls/msvcrt/errno.c:423:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, str); data/wine-5.0/dlls/msvcrt/errno.c:424:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, colonW); data/wine-5.0/dlls/msvcrt/errno.c:429:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, nlW); data/wine-5.0/dlls/msvcrt/file.c:2220:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. case MSVCRT__O_RDONLY: access |= GENERIC_READ; break; data/wine-5.0/dlls/msvcrt/file.c:2221:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. case MSVCRT__O_WRONLY: access |= GENERIC_WRITE; break; data/wine-5.0/dlls/msvcrt/file.c:2222:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. case MSVCRT__O_RDWR: access |= GENERIC_WRITE | GENERIC_READ; break; data/wine-5.0/dlls/msvcrt/file.c:2272:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= DELETE; data/wine-5.0/dlls/msvcrt/file.c:2282:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && !(access&GENERIC_READ)) data/wine-5.0/dlls/msvcrt/file.c:2295:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hand = CreateFileW(path, access, sharing, &sa, creation, attrib, 0); data/wine-5.0/dlls/msvcrt/file.c:2304:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((access & GENERIC_WRITE) && (creation==CREATE_NEW data/wine-5.0/dlls/msvcrt/file.c:2338:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if (access & GENERIC_READ) data/wine-5.0/dlls/msvcrt/locale.c:173:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, _country_synonyms[i+1]); data/wine-5.0/dlls/msvcrt/locale.c:317:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(search.search_language, locale, MAX_ELEM_LEN); data/wine-5.0/dlls/msvcrt/locale.c:319:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(search.search_country, region+1, MAX_ELEM_LEN); data/wine-5.0/dlls/msvcrt/locale.c:326:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(search.search_codepage, cp+1, MAX_ELEM_LEN); data/wine-5.0/dlls/msvcrt/locale.c:391:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(data->cached_locale, locale); data/wine-5.0/dlls/msvcrt/locale.c:511:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(current_lc_all, data/wine-5.0/dlls/msvcrt/mbcs.c:242:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufA, format, newcp); data/wine-5.0/dlls/msvcrt/mbcs.c:660:12: [4] (buffer) _mbccpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). void CDECL _mbccpy(unsigned char* dest, const unsigned char* src) data/wine-5.0/dlls/msvcrt/mbcs.c:689:22: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). unsigned char* CDECL _mbsncpy(unsigned char* dst, const unsigned char* src, MSVCRT_size_t n) data/wine-5.0/dlls/msvcrt/mbcs.c:1144:23: [4] (buffer) _mbscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). unsigned char * CDECL _mbscat( unsigned char *dst, const unsigned char *src ) data/wine-5.0/dlls/msvcrt/mbcs.c:1146:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( (char *)dst, (const char *)src ); data/wine-5.0/dlls/msvcrt/mbcs.c:1203:22: [4] (buffer) _mbscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. unsigned char* CDECL _mbscpy( unsigned char *dst, const unsigned char *src ) data/wine-5.0/dlls/msvcrt/mbcs.c:1205:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (char *)dst, (const char *)src ); data/wine-5.0/dlls/msvcrt/printf.h:666:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, inf_str); data/wine-5.0/dlls/msvcrt/printf.h:668:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, ind_str); data/wine-5.0/dlls/msvcrt/printf.h:670:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, nan_str); data/wine-5.0/dlls/msvcrt/printf.h:675:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(tmp, float_fmt, val); data/wine-5.0/dlls/msvcrt/process.c:65:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullname, buffer); data/wine-5.0/dlls/msvcrt/process.c:80:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullname, buffer); data/wine-5.0/dlls/msvcrt/process.c:110:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullname, buffer); data/wine-5.0/dlls/msvcrt/process.c:122:11: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullname, buffer); data/wine-5.0/dlls/msvcrt/process.c:294:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ret + pos, arg ); data/wine-5.0/dlls/msvcrt/process.c:351:54: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!GetEnvironmentVariableW(comspec, ret, len)) strcpyW(ret, cmd); data/wine-5.0/dlls/msvcrt/process.c:1120:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullcmd, comspec); data/wine-5.0/dlls/msvcrt/process.c:1253:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fullcmd, comspec); data/wine-5.0/dlls/msvcrt/string.c:48:16: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, str ); data/wine-5.0/dlls/msvcrt/string.c:2227:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, format, d); data/wine-5.0/dlls/msvcrt/tests/data.c:145:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%s*\\*", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:147:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test/*", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:163:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%s*\\*", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:165:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test/a", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:168:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test/test", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:172:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test/test", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:184:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test/b", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:204:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s data %s*\\* %swine_test/*", name, tmppath, tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:206:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:209:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test\\a", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:213:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test\\test", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:224:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test\\a", tmppath); data/wine-5.0/dlls/msvcrt/tests/data.c:226:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filepath, "%swine_test", tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:106:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, p->buffer); data/wine-5.0/dlls/msvcrt/tests/dir.c:262:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, p->buffer); data/wine-5.0/dlls/msvcrt/tests/dir.c:305:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, p->buffer); data/wine-5.0/dlls/msvcrt/tests/dir.c:356:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(level1,tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:363:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(level2,level1); data/wine-5.0/dlls/msvcrt/tests/dir.c:371:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(teststring,level2); data/wine-5.0/dlls/msvcrt/tests/dir.c:380:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(teststring,level1); data/wine-5.0/dlls/msvcrt/tests/dir.c:387:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(teststring,level2); data/wine-5.0/dlls/msvcrt/tests/dir.c:461:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path+path_len, dirs[i]); data/wine-5.0/dlls/msvcrt/tests/dir.c:466:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path+path_len, files[i]); data/wine-5.0/dlls/msvcrt/tests/dir.c:475:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(env1, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:476:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(env1, dirs[i]); data/wine-5.0/dlls/msvcrt/tests/dir.c:479:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(env2, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:480:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(env2, dirs[i]); data/wine-5.0/dlls/msvcrt/tests/dir.c:500:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exp, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:501:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(exp, files[0]); data/wine-5.0/dlls/msvcrt/tests/dir.c:525:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exp, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:526:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(exp, files[3]); data/wine-5.0/dlls/msvcrt/tests/dir.c:551:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exp, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:552:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(exp, files[0]); data/wine-5.0/dlls/msvcrt/tests/dir.c:576:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exp, tmppath); data/wine-5.0/dlls/msvcrt/tests/dir.c:577:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(exp, files[3]); data/wine-5.0/dlls/msvcrt/tests/dir.c:603:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path+path_len, files[i]); data/wine-5.0/dlls/msvcrt/tests/dir.c:608:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path+path_len, dirs[i]); data/wine-5.0/dlls/msvcrt/tests/environ.c:70:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. int ret = system(NULL); data/wine-5.0/dlls/msvcrt/tests/environ.c:73:11: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ret = system("echo OK"); data/wine-5.0/dlls/msvcrt/tests/file.c:1494:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s file inherit 1", selfname); data/wine-5.0/dlls/msvcrt/tests/file.c:1647:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s file stdin", selfname); data/wine-5.0/dlls/msvcrt/tests/file.c:2216:8: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(expected, pipe_string); data/wine-5.0/dlls/msvcrt/tests/locale.c:75:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, ret); data/wine-5.0/dlls/msvcrt/tests/misc.c:346:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "\"%s\" misc popen", name); data/wine-5.0/dlls/msvcrt/tests/printf.c:413:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer,TwentyThreePoint15e,pnumber); data/wine-5.0/dlls/msvcrt/tests/printf.c:415:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer,I64d,((ULONGLONG)0xffffffff)*0xffffffff); data/wine-5.0/dlls/msvcrt/tests/printf.c:417:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer,S,string); data/wine-5.0/dlls/msvcrt/tests/printf.c:419:4: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, hs, string); data/wine-5.0/dlls/msvcrt/tests/printf.c:441:28: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. const int n = _snprintf (buffer, bufsiz, fmt); data/wine-5.0/dlls/msvcrt/tests/printf.c:470:11: [4] (format) fwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. ret = fwprintf(fp, utf16_test); data/wine-5.0/dlls/msvcrt/tests/printf.c:510:11: [4] (format) fwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. ret = fwprintf(fp, utf16_test); data/wine-5.0/dlls/msvcrt/tests/printf.c:1114:12: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. START_TEST(printf) data/wine-5.0/dlls/msvcrt/tests/scanf.c:43:11: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. ret = fprintf(fp, contents); data/wine-5.0/dlls/msvcrt/tests/scanf.c:47:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(fp, "%s", buf); data/wine-5.0/dlls/msvcrt/tests/scanf.c:50:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(fp, "%s", buf); data/wine-5.0/dlls/msvcrt/tests/scanf.c:53:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(fp, "%s", buf); data/wine-5.0/dlls/msvcrt/tests/scanf.c:450:12: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. START_TEST(scanf) data/wine-5.0/dlls/msvcrt/tests/string.c:411:5: [4] (buffer) _mbccpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbccpy(buf, mbstring); data/wine-5.0/dlls/msvcrt/tests/string.c:449:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbstring, 1); data/wine-5.0/dlls/msvcrt/tests/string.c:452:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbstring, 2); data/wine-5.0/dlls/msvcrt/tests/string.c:455:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbstring, 3); data/wine-5.0/dlls/msvcrt/tests/string.c:458:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbstring, 4); data/wine-5.0/dlls/msvcrt/tests/string.c:461:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbstring, 5); data/wine-5.0/dlls/msvcrt/tests/string.c:464:5: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). _mbsncpy(buf, mbsonlylead, 6); data/wine-5.0/dlls/msvcrt/tests/string.c:1257:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(testBuffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1265:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(testBuffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1271:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(testBuffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1279:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(testBuffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1344:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1352:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1358:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1366:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buffer, mixedString); data/wine-5.0/dlls/msvcrt/tests/string.c:1662:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( teststr, testcases_strtok[i].string); data/wine-5.0/dlls/msvcrt/tests/string.c:3819:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str1, tests[i].str1); data/wine-5.0/dlls/msvcrt/tests/string.c:3822:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str2, tests[i].str2); data/wine-5.0/dlls/msvcrt/tests/string.c:3902:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str1, tests[i].str1); data/wine-5.0/dlls/msvcrt/tests/string.c:3905:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str2, tests[i].str2); data/wine-5.0/dlls/msvcrt/tests/string.c:4158:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mem,xilstring); data/wine-5.0/dlls/msvcrt/time.c:122:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(MSVCRT__tzname[0], tz, 3); data/wine-5.0/dlls/msvcrt/time.c:141:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(MSVCRT__tzname[1], tz, 3); data/wine-5.0/dlls/msvcrt/time.c:951:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, timezone); data/wine-5.0/dlls/msvcrt/time.c:1809:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( res, MSVCRT_asctime( t ) ); data/wine-5.0/dlls/msvcrt/time.c:1838:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( res, MSVCRT_asctime( t ) ); data/wine-5.0/dlls/msvcrt/undname.c:334:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(ptr, "%s%u", sgn ? "-" : "", ret); data/wine-5.0/dlls/msvcrt/undname.c:1135:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sym->result = str_printf(sym, "%s%s%s%s%s%s%s%s", access, data/wine-5.0/dlls/msvcrt/undname.c:1223:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = str_printf(sym, "[thunk]:%s", access ? access : " "); data/wine-5.0/dlls/msvcrt/undname.c:1223:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = str_printf(sym, "[thunk]:%s", access ? access : " "); data/wine-5.0/dlls/msvcrt/undname.c:1328:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, member_type, ct_ret.left, data/wine-5.0/dlls/msvcrt/undname.c:1630:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( buffer, result, buflen); data/wine-5.0/dlls/msvcrt/undname.c:1635:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (buffer) strcpy(buffer, result); data/wine-5.0/dlls/msvfw32/mciwnd.c:202:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, mwi->lpName); data/wine-5.0/dlls/msvfw32/mciwnd.c:211:22: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (*buffer) lstrcatW(buffer, spaceW); data/wine-5.0/dlls/msvfw32/mciwnd.c:212:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, l_braceW); data/wine-5.0/dlls/msvfw32/mciwnd.c:221:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, posW); data/wine-5.0/dlls/msvfw32/mciwnd.c:227:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, dashW); data/wine-5.0/dlls/msvfw32/mciwnd.c:236:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, modeW); data/wine-5.0/dlls/msvfw32/mciwnd.c:242:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, r_braceW); data/wine-5.0/dlls/msvfw32/mciwnd.c:593:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mwi->lpName, (LPWSTR)lParam); data/wine-5.0/dlls/msvfw32/mciwnd.c:1002:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdW, (WCHAR *)lParam + pos); data/wine-5.0/dlls/msvfw32/mciwnd.c:1028:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW((LPWSTR)lParam, mwi->return_string, wParam); data/wine-5.0/dlls/msvfw32/mciwnd.c:1119:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW((LPWSTR)lParam, mwi->lpName, wParam); data/wine-5.0/dlls/msvfw32/mciwnd.c:1184:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdW, (WCHAR *)lParam); data/wine-5.0/dlls/msvfw32/msvideo_main.c:624:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(picinfo->szDriver, ii.szDriver); data/wine-5.0/dlls/msvfw32/msvideo_main.c:1648:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szFunctionName, (bSave ? "GetSaveFileName" : "GetOpenFileName")); data/wine-5.0/dlls/msvfw32/msvideo_main.c:1649:3: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szFunctionName, (bUnicode ? "W" : "A")); data/wine-5.0/dlls/msvfw32/tests/mciwnd.c:132:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(fname, ".avi"); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:946:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buf2, fn, buf2len); /* msvideo.dll appears to copy fn*/ data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:963:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buf1, fn, buf1len); /* msvideo.dll appears to copy fn*/ data/wine-5.0/dlls/msxml3/bsc.c:256:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(fileUrl, url, ARRAY_SIZE(fileUrl)); data/wine-5.0/dlls/msxml3/domdoc.c:566:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "version=\"%s\"", doc->version ? (char*)doc->version : "1.0"); data/wine-5.0/dlls/msxml3/domdoc.c:571:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, " encoding=\"%s\"", doc->encoding); data/wine-5.0/dlls/msxml3/domdoc.c:577:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, " standalone=\"%s\"", doc->standalone == 0 ? "no" : "yes"); data/wine-5.0/dlls/msxml3/httprequest.c:401:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pbindinfo->szCustomVerb, This->request->custom); data/wine-5.0/dlls/msxml3/httprequest.c:518:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, content_type_utf8W); data/wine-5.0/dlls/msxml3/httprequest.c:524:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, refererW); data/wine-5.0/dlls/msxml3/httprequest.c:534:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, entry->header); data/wine-5.0/dlls/msxml3/httprequest.c:537:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, colspaceW); data/wine-5.0/dlls/msxml3/httprequest.c:540:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, entry->value); data/wine-5.0/dlls/msxml3/httprequest.c:543:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, crlfW); data/wine-5.0/dlls/msxml3/main.c:88:11: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = vsnprintf(buff, max_size, msg, ap); data/wine-5.0/dlls/msxml3/mxnamespace.c:314:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(prefix, prfx); data/wine-5.0/dlls/msxml3/mxnamespace.c:342:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(prefix, prfx); data/wine-5.0/dlls/msxml3/mxnamespace.c:378:12: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(uri, urib); data/wine-5.0/dlls/msxml3/saxreader.c:459:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, prefix); data/wine-5.0/dlls/msxml3/saxreader.c:462:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, local); data/wine-5.0/dlls/msxml3/saxreader.c:1940:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(message, msg, args); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1328:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "(null)"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:7037:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sXSL, sPart1); data/wine-5.0/dlls/msxml3/tests/domdoc.c:7038:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sXSL, sFileName); data/wine-5.0/dlls/msxml3/tests/domdoc.c:7039:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sXSL, sPart2); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10241:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path2, path); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10250:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path2, path); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10273:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path2, path); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2084:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pv, ret_str); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2507:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(seqname, "%s: cdata test", table->name); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2526:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(seqname, "%s: cdata test 2", table->name); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2545:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(seqname, "%s: cdata test 3", table->name); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4512:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(expectedA, enc); data/wine-5.0/dlls/msxml3/tests/xmlview.c:208:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, res); data/wine-5.0/dlls/msxml3/tests/xmlview.c:210:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, xmlview_xmlW); data/wine-5.0/dlls/netapi32/netapi32.c:1716:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ui->wkui1_username, ui0->wkui0_username); data/wine-5.0/dlls/netapi32/netapi32.c:1719:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ui->wkui1_logon_domain, DomainInfo->DomainName.Buffer, data/wine-5.0/dlls/netapi32/netapi32.c:1905:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*Name, workgroupW); data/wine-5.0/dlls/netapi32/netapi32.c:2061:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(su->user_name, ui->usri1_name); data/wine-5.0/dlls/netapi32/netapi32.c:2069:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(su->user_password, ui->usri1_password); data/wine-5.0/dlls/netapi32/netapi32.c:2164:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ui->usri0_name, username); data/wine-5.0/dlls/netapi32/netapi32.c:2203:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ui->usri10_name, ui0->usri0_name); data/wine-5.0/dlls/netapi32/netapi32.c:2245:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ui->usri1_name, ui0->usri0_name); data/wine-5.0/dlls/netapi32/netapi32.c:2345:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->lgrui0_name, admins); data/wine-5.0/dlls/netapi32/netapi32.c:2398:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(info->usri0_name, user); data/wine-5.0/dlls/netapi32/netapi32.c:2438:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(info->usri20_name, user); data/wine-5.0/dlls/netapi32/netapi32.c:2488:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(usr->usri1_name, sAdminUserName); data/wine-5.0/dlls/netapi32/netapi32.c:2527:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(usr->usri1_name, sGuestUserName); data/wine-5.0/dlls/netapi32/netapi32.c:2545:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src->usri1_name, dest->usri1_name); data/wine-5.0/dlls/netapi32/netapi32.c:2550:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src->usri1_comment, dest->usri1_comment); data/wine-5.0/dlls/netapi32/netapi32.c:2557:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src->usri1_full_name, dest->usri1_full_name); data/wine-5.0/dlls/netapi32/netapi32.c:2649:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(inf->usri1_name, name); data/wine-5.0/dlls/netapi32/netapi32.c:2843:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(umi->usrmod2_domain_name, data/wine-5.0/dlls/netapi32/netapi32.c:2928:9: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execvp( "smbpasswd", argv ); data/wine-5.0/dlls/netapi32/netapi32.c:2999:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(user->user_password, newpassword); data/wine-5.0/dlls/netapi32/netapi32.c:3144:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(basic->DomainNameFlat, DomainInfo->DomainName.Buffer); data/wine-5.0/dlls/netapi32/netapi32.c:3279:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->lgrpi1_name, groupname); data/wine-5.0/dlls/netapi32/netapi32.c:3282:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->lgrpi1_comment, commentW); data/wine-5.0/dlls/netapi32/netapi32.c:3335:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr->lgrmi3_domainandname,userName); data/wine-5.0/dlls/netapi32/tests/access.c:488:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. START_TEST(access) data/wine-5.0/dlls/newdev/main.c:131:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(params.DriverPath, inf_path); data/wine-5.0/dlls/ntdll/actctx.c:740:12: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpyW(ptr, str); data/wine-5.0/dlls/ntdll/actctx.c:1078:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ret, arch ); data/wine-5.0/dlls/ntdll/actctx.c:1101:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, str ); data/wine-5.0/dlls/ntdll/actctx.c:1132:19: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ai->name) strcpyW( ret, ai->name ); data/wine-5.0/dlls/ntdll/actctx.c:3067:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, filename ); data/wine-5.0/dlls/ntdll/actctx.c:3186:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( path, user_shared_data->NtSystemRoot ); data/wine-5.0/dlls/ntdll/actctx.c:3226:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( path + path_us.Length/sizeof(WCHAR) + 1, file ); data/wine-5.0/dlls/ntdll/actctx.c:3282:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, acl->actctx->appdir.info ); data/wine-5.0/dlls/ntdll/actctx.c:3293:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, ai->name ); data/wine-5.0/dlls/ntdll/actctx.c:3296:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, dotDllW ); data/wine-5.0/dlls/ntdll/actctx.c:3311:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, dotManifestW ); data/wine-5.0/dlls/ntdll/actctx.c:5593:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, res ); data/wine-5.0/dlls/ntdll/debugtools.c:101:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( debug_options[pos].name, name ); data/wine-5.0/dlls/ntdll/directory.c:340:14: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ptr) strcpy( ptr, name ); data/wine-5.0/dlls/ntdll/directory.c:348:14: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ptr) strcpyW( ptr, name ); data/wine-5.0/dlls/ntdll/directory.c:415:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dir->name, name ); data/wine-5.0/dlls/ntdll/directory.c:426:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, dir->name ); data/wine-5.0/dlls/ntdll/directory.c:573:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, config_dir ); data/wine-5.0/dlls/ntdll/directory.c:790:18: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, device ); data/wine-5.0/dlls/ntdll/directory.c:818:18: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, device ); data/wine-5.0/dlls/ntdll/directory.c:854:18: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, device ); data/wine-5.0/dlls/ntdll/directory.c:891:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(ret, mntStat[i].f_mntfromname+sizeof("/dev/")-1); data/wine-5.0/dlls/ntdll/directory.c:958:26: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, entry->mnt_dir ); data/wine-5.0/dlls/ntdll/directory.c:979:22: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) strcpy( ret, entry[i].f_mntonname ); data/wine-5.0/dlls/ntdll/directory.c:2113:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name + pos, kde[1].d_name ); data/wine-5.0/dlls/ntdll/directory.c:2123:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name + pos, data/wine-5.0/dlls/ntdll/directory.c:2157:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name + pos, de->d_name ); data/wine-5.0/dlls/ntdll/directory.c:2171:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name + pos, de->d_name ); data/wine-5.0/dlls/ntdll/directory.c:2232:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dir, config_dir ); data/wine-5.0/dlls/ntdll/directory.c:2233:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( dir, windows_dir ); data/wine-5.0/dlls/ntdll/directory.c:2297:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name + pos, redirects[i].unix_target ); data/wine-5.0/dlls/ntdll/directory.c:2350:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name, config_dir ); data/wine-5.0/dlls/ntdll/directory.c:2459:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name->Buffer + pos, de->d_name ); data/wine-5.0/dlls/ntdll/directory.c:2824:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( unix_name, config_dir ); data/wine-5.0/dlls/ntdll/directory.c:2958:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( cmd, umount ); data/wine-5.0/dlls/ntdll/directory.c:2959:21: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( cmd, mount_point ); data/wine-5.0/dlls/ntdll/directory.c:2960:21: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. system( cmd ); data/wine-5.0/dlls/ntdll/env.c:548:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). *envptr++ = strcpy( dst, unix_vars[i] ); data/wine-5.0/dlls/ntdll/env.c:550:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( dst, p ); data/wine-5.0/dlls/ntdll/env.c:564:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( dst, p ); data/wine-5.0/dlls/ntdll/env.c:568:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). *envptr++ = strcpy( dst, p ); data/wine-5.0/dlls/ntdll/env.c:714:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( full_name, system_dir ); data/wine-5.0/dlls/ntdll/env.c:750:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, image->Buffer ); data/wine-5.0/dlls/ntdll/env.c:837:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, *arg ); data/wine-5.0/dlls/ntdll/file.c:176:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS FILE_CreateFile( PHANDLE handle, ACCESS_MASK access, POBJECT_ATTRIBUTES attr, data/wine-5.0/dlls/ntdll/file.c:186:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle, access, debugstr_us(attr->ObjectName), attr->Attributes, data/wine-5.0/dlls/ntdll/file.c:203:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/file.c:240:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/file.c:304:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenFile( PHANDLE handle, ACCESS_MASK access, data/wine-5.0/dlls/ntdll/file.c:308:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return FILE_CreateFile( handle, access, attr, io, NULL, 0, data/wine-5.0/dlls/ntdll/file.c:336:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateFile( PHANDLE handle, ACCESS_MASK access, POBJECT_ATTRIBUTES attr, data/wine-5.0/dlls/ntdll/file.c:341:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return FILE_CreateFile( handle, access, attr, io, alloc_size, attributes, data/wine-5.0/dlls/ntdll/file.c:3489:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateNamedPipeFile( PHANDLE handle, ULONG access, data/wine-5.0/dlls/ntdll/file.c:3504:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle, access, debugstr_us(attr->ObjectName), iosb, sharing, dispo, data/wine-5.0/dlls/ntdll/file.c:3516:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/loader.c:1779:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( fullname, nt_prefixW ); data/wine-5.0/dlls/ntdll/loader.c:2240:51: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (flags & LOAD_LIBRARY_SEARCH_SYSTEM32) strcpyW( p, system_dir ); data/wine-5.0/dlls/ntdll/loader.c:2509:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( *so_name, name ); data/wine-5.0/dlls/ntdll/loader.c:2784:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, libname ); data/wine-5.0/dlls/ntdll/loader.c:2797:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, user_shared_data->NtSystemRoot ); data/wine-5.0/dlls/ntdll/loader.c:2804:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, libname ); data/wine-5.0/dlls/ntdll/loader.c:2841:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( name + len, search ); data/wine-5.0/dlls/ntdll/loader.c:2856:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( name, system_dir ); data/wine-5.0/dlls/ntdll/loader.c:2892:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( dllname, libname ); data/wine-5.0/dlls/ntdll/loadorder.c:348:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( str, AppDefaultsW ); data/wine-5.0/dlls/ntdll/loadorder.c:459:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( module+1, path ); /* reserve module[0] for the wildcard char */ data/wine-5.0/dlls/ntdll/locale.c:496:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( win_name, buffer ); data/wine-5.0/dlls/ntdll/locale.c:521:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( win_name, buffer ); data/wine-5.0/dlls/ntdll/locale.c:532:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, country ); data/wine-5.0/dlls/ntdll/locale.c:1236:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( lang, name ); data/wine-5.0/dlls/ntdll/nt.c:217:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenProcessTokenEx( HANDLE process, DWORD access, DWORD attributes, data/wine-5.0/dlls/ntdll/nt.c:222:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p,0x%08x,0x%08x,%p)\n", process, access, attributes, handle); data/wine-5.0/dlls/ntdll/nt.c:227:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/nt.c:254:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenThreadTokenEx( HANDLE thread, DWORD access, BOOLEAN as_self, DWORD attributes, data/wine-5.0/dlls/ntdll/nt.c:259:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p,0x%08x,%u,0x%08x,%p)\n", thread, access, as_self, attributes, handle ); data/wine-5.0/dlls/ntdll/nt.c:264:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/nt.c:1745:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, core_info, i, "physical_package_id"); data/wine-5.0/dlls/ntdll/nt.c:1774:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, core_info, i, "thread_siblings"); data/wine-5.0/dlls/ntdll/nt.c:1783:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, core_info, i, "thread_siblings_list"); data/wine-5.0/dlls/ntdll/nt.c:1807:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "shared_cpu_map"); data/wine-5.0/dlls/ntdll/nt.c:1810:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "level"); data/wine-5.0/dlls/ntdll/nt.c:1817:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "ways_of_associativity"); data/wine-5.0/dlls/ntdll/nt.c:1824:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "coherency_line_size"); data/wine-5.0/dlls/ntdll/nt.c:1831:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "size"); data/wine-5.0/dlls/ntdll/nt.c:1840:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, cache_info, i, j, "type"); data/wine-5.0/dlls/ntdll/nt.c:1843:21: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s", name); data/wine-5.0/dlls/ntdll/nt.c:1886:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(name, numa_info, i); data/wine-5.0/dlls/ntdll/nt.c:2152:35: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. struct smbios_system *system; data/wine-5.0/dlls/ntdll/nt.c:2785:33: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. count = sscanf(line, "%s %lu %lu %lu %lu %lu %lu %lu %lu %lu %lu %lu %lu", data/wine-5.0/dlls/ntdll/nt.c:2878:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. shi->Handle[i].AccessMask = info[i].access; data/wine-5.0/dlls/ntdll/ntdll_misc.h:111:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern int server_get_unix_fd( HANDLE handle, unsigned int access, int *unix_fd, data/wine-5.0/dlls/ntdll/om.c:76:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. p->GrantedAccess = reply->access; data/wine-5.0/dlls/ntdll/om.c:352:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ACCESS_MASK access, ULONG attributes, ULONG options ) data/wine-5.0/dlls/ntdll/om.c:360:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/om.c:455:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenDirectoryObject( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr) data/wine-5.0/dlls/ntdll/om.c:462:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p,0x%08x,%s)\n", handle, access, debugstr_ObjectAttributes(attr)); data/wine-5.0/dlls/ntdll/om.c:466:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/om.c:602:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenSymbolicLinkObject( HANDLE *handle, ACCESS_MASK access, data/wine-5.0/dlls/ntdll/om.c:607:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p,0x%08x,%s)\n", handle, access, debugstr_ObjectAttributes(attr)); data/wine-5.0/dlls/ntdll/om.c:614:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/path.c:401:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ntpath->Buffer, NTDosPrefixW); data/wine-5.0/dlls/ntdll/path.c:520:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(&name[needed], search); data/wine-5.0/dlls/ntdll/path.c:839:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, DeviceRootW); data/wine-5.0/dlls/ntdll/printf.c:664:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( x, fmt, va_arg(valist, double) ); data/wine-5.0/dlls/ntdll/printf.c:669:17: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( x, fmt, va_arg(valist, int) ); data/wine-5.0/dlls/ntdll/process.c:750:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenProcess(PHANDLE handle, ACCESS_MASK access, data/wine-5.0/dlls/ntdll/process.c:758:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/process.c:1021:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( env, loader_env ); data/wine-5.0/dlls/ntdll/process.c:1028:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( env, loader_env ); data/wine-5.0/dlls/ntdll/reg.c:52:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateKey( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/reg.c:64:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. debugstr_us(class), options, access, retkey ); data/wine-5.0/dlls/ntdll/reg.c:70:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/reg.c:85:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateKeyTransacted( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/reg.c:90:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. debugstr_us(class), options, access, transacted, retkey ); data/wine-5.0/dlls/ntdll/reg.c:105:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI RtlpNtCreateKey( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/reg.c:118:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return NtCreateKey(retkey, access, attr, 0, NULL, 0, dispos); data/wine-5.0/dlls/ntdll/reg.c:121:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS open_key( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, ULONG options ) data/wine-5.0/dlls/ntdll/reg.c:129:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. debugstr_us(attr->ObjectName), access, retkey ); data/wine-5.0/dlls/ntdll/reg.c:136:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/reg.c:151:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenKeyEx( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, ULONG options ) data/wine-5.0/dlls/ntdll/reg.c:153:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_key( retkey, access, attr, options ); data/wine-5.0/dlls/ntdll/reg.c:164:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenKey( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/reg.c:166:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_key( retkey, access, attr, 0 ); data/wine-5.0/dlls/ntdll/reg.c:169:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenKeyTransactedEx( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/reg.c:172:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME( "(%p %x %p %x %p)\n", retkey, access, attr, options, transaction ); data/wine-5.0/dlls/ntdll/reg.c:176:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenKeyTransacted( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/reg.c:179:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return NtOpenKeyTransactedEx( retkey, access, attr, 0, transaction ); data/wine-5.0/dlls/ntdll/reg.c:187:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI RtlpNtOpenKey( PHANDLE retkey, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/reg.c:191:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return NtOpenKey(retkey, access, attr); data/wine-5.0/dlls/ntdll/reg.c:1195:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(str->Buffer, base); data/wine-5.0/dlls/ntdll/relay.c:128:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( str, buffer ); data/wine-5.0/dlls/ntdll/relay.c:1091:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (*dll)->name, name ); data/wine-5.0/dlls/ntdll/rtl.c:1122:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, tmp_ip); data/wine-5.0/dlls/ntdll/rtl.c:1155:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, tmp_ip); data/wine-5.0/dlls/ntdll/serial.c:1144:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((status = server_get_unix_fd( hDevice, access, &fd, &needs_close, &type, NULL ))) data/wine-5.0/dlls/ntdll/server.c:144:81: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void fatal_error( const char *err, ... ) __attribute__((noreturn, format(printf,1,2))); data/wine-5.0/dlls/ntdll/server.c:145:82: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void fatal_perror( const char *err, ... ) __attribute__((noreturn, format(printf,1,2))); data/wine-5.0/dlls/ntdll/server.c:156:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/dlls/ntdll/server.c:168:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/dlls/ntdll/server.c:184:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/dlls/ntdll/server.c:826:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access : 3; data/wine-5.0/dlls/ntdll/server.c:853:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int options ) data/wine-5.0/dlls/ntdll/server.c:879:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. cache.s.access = access; data/wine-5.0/dlls/ntdll/server.c:891:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int *access, unsigned int *options ) data/wine-5.0/dlls/ntdll/server.c:906:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access) *access = cache.s.access; data/wine-5.0/dlls/ntdll/server.c:906:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access) *access = cache.s.access; data/wine-5.0/dlls/ntdll/server.c:948:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = get_cached_fd( handle, &fd, type, &access, options ); data/wine-5.0/dlls/ntdll/server.c:952:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = get_cached_fd( handle, &fd, type, &access, options ); data/wine-5.0/dlls/ntdll/server.c:962:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = reply->access; data/wine-5.0/dlls/ntdll/server.c:968:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->access, reply->options )); data/wine-5.0/dlls/ntdll/server.c:982:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!ret && ((access & wanted_access) != wanted_access)) data/wine-5.0/dlls/ntdll/server.c:1006:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int CDECL wine_server_fd_to_handle( int fd, unsigned int access, unsigned int attributes, HANDLE *handle ) data/wine-5.0/dlls/ntdll/server.c:1015:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/server.c:1039:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int CDECL wine_server_handle_to_fd( HANDLE handle, unsigned int access, int *unix_fd, data/wine-5.0/dlls/ntdll/server.c:1042:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int needs_close, ret = server_get_unix_fd( handle, access, unix_fd, &needs_close, NULL, options ); data/wine-5.0/dlls/ntdll/server.c:1269:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( addr.sun_path, SOCKETNAME ); data/wine-5.0/dlls/ntdll/string.c:90:12: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). return strcat( dst, src ); data/wine-5.0/dlls/ntdll/string.c:117:12: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy( dst, src ); data/wine-5.0/dlls/ntdll/string.c:1329:14: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ext) strcpy( ext, end ); data/wine-5.0/dlls/ntdll/sync.c:240:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. IN ACCESS_MASK access, data/wine-5.0/dlls/ntdll/sync.c:256:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:272:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenSemaphore( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:280:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:381:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenEvent( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:389:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:513:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. IN ACCESS_MASK access, data/wine-5.0/dlls/ntdll/sync.c:525:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:541:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenMutant( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:549:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:624:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateJobObject( PHANDLE handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:634:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:649:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenJobObject( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:657:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:873:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. IN ACCESS_MASK access, data/wine-5.0/dlls/ntdll/sync.c:888:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:905:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenTimer( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:913:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:1190:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateKeyedEvent( HANDLE *handle, ACCESS_MASK access, data/wine-5.0/dlls/ntdll/sync.c:1201:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:1215:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenKeyedEvent( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:1223:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/sync.c:1453:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenIoCompletion( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/sync.c:1462:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/tests/change.c:54:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/ntdll/tests/change.c:55:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/ntdll/tests/change.c:56:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/ntdll/tests/change.c:182:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, szBoo ); data/wine-5.0/dlls/ntdll/tests/change.c:183:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( subdir, path ); data/wine-5.0/dlls/ntdll/tests/change.c:184:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( subdir, szHoo ); data/wine-5.0/dlls/ntdll/tests/directory.c:99:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buf, testdir ); data/wine-5.0/dlls/ntdll/tests/directory.c:100:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buf, backslashW ); data/wine-5.0/dlls/ntdll/tests/directory.c:101:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buf, testfiles[i].name ); data/wine-5.0/dlls/ntdll/tests/directory.c:134:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buf, testdir ); data/wine-5.0/dlls/ntdll/tests/directory.c:135:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buf, backslashW ); data/wine-5.0/dlls/ntdll/tests/directory.c:136:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buf, testfiles[i].name ); data/wine-5.0/dlls/ntdll/tests/directory.c:312:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( prev, name ); data/wine-5.0/dlls/ntdll/tests/directory.c:746:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s\\%s", testdir, "TesT"); data/wine-5.0/dlls/ntdll/tests/directory.c:758:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s\\%s", testdir, "TesT"); data/wine-5.0/dlls/ntdll/tests/exception.c:338:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access) data/wine-5.0/dlls/ntdll/tests/exception.c:352:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access) data/wine-5.0/dlls/ntdll/tests/exception.c:353:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. VirtualProtect(code_mem, code_size, access, &oldaccess); data/wine-5.0/dlls/ntdll/tests/exception.c:359:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access) data/wine-5.0/dlls/ntdll/tests/exception.c:992:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s %p", my_argv[0], my_argv[1], "debuggee", &test_stage); data/wine-5.0/dlls/ntdll/tests/exception.c:2434:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access) data/wine-5.0/dlls/ntdll/tests/exception.c:2463:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access) data/wine-5.0/dlls/ntdll/tests/exception.c:2464:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. VirtualProtect(code_mem, code_size, access, &oldaccess); data/wine-5.0/dlls/ntdll/tests/exception.c:2470:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access) data/wine-5.0/dlls/ntdll/tests/exception.c:3342:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_name, "%s exception suspend_process", argv[0]); data/wine-5.0/dlls/ntdll/tests/file.c:405:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, testdirW ); data/wine-5.0/dlls/ntdll/tests/file.c:561:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, testdirW); data/wine-5.0/dlls/ntdll/tests/file.c:562:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathsubW, pathW); data/wine-5.0/dlls/ntdll/tests/file.c:563:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathsubW, subdirW); data/wine-5.0/dlls/ntdll/tests/file.c:1712:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( newpath, oldpath ); data/wine-5.0/dlls/ntdll/tests/file.c:1713:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( newpath, foo_txtW ); data/wine-5.0/dlls/ntdll/tests/file.c:1743:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( oldpath, newpath ); data/wine-5.0/dlls/ntdll/tests/file.c:1744:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( oldpath, foo_txtW ); data/wine-5.0/dlls/ntdll/tests/file.c:2344:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( newpath, oldpath ); data/wine-5.0/dlls/ntdll/tests/file.c:2345:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( newpath, foo_txtW ); data/wine-5.0/dlls/ntdll/tests/file.c:3103:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( buffer + dirpos, "\\tst" ); data/wine-5.0/dlls/ntdll/tests/file.c:3128:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA( buffer + dirpos, "\\tst" ); data/wine-5.0/dlls/ntdll/tests/file.c:3731:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD res, access; data/wine-5.0/dlls/ntdll/tests/file.c:3795:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= GENERIC_WRITE | DELETE; data/wine-5.0/dlls/ntdll/tests/file.c:3798:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = pNtOpenFile(&file, access, &attr, &io, 0, option_tests[i].options); data/wine-5.0/dlls/ntdll/tests/info.c:1502:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], "debuggee"); data/wine-5.0/dlls/ntdll/tests/info.c:1708:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], "debuggee"); data/wine-5.0/dlls/ntdll/tests/info.c:1847:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], "debuggee"); data/wine-5.0/dlls/ntdll/tests/path.c:230:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, test->path); data/wine-5.0/dlls/ntdll/tests/path.c:245:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( str, test->path ); data/wine-5.0/dlls/ntdll/tests/path.c:349:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rbufferW, deadbeefW); data/wine-5.0/dlls/ntdll/tests/path.c:359:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rbufferW, deadbeefW); data/wine-5.0/dlls/ntdll/tests/pipe.c:68:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS (WINAPI *pNtCreateNamedPipeFile) (PHANDLE handle, ULONG access, data/wine-5.0/dlls/ntdll/tests/pipe.c:137:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS create_pipe(PHANDLE handle, ULONG access, ULONG sharing, ULONG options) data/wine-5.0/dlls/ntdll/tests/pipe.c:156:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = pNtCreateNamedPipeFile(handle, FILE_READ_ATTRIBUTES | SYNCHRONIZE | access, &attr, &iosb, sharing, data/wine-5.0/dlls/ntdll/tests/pipe.c:245:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static const DWORD access[] = { 0, GENERIC_READ, GENERIC_WRITE, GENERIC_READ | GENERIC_WRITE}; data/wine-5.0/dlls/ntdll/tests/pipe.c:250:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. for (k = 0; k < ARRAY_SIZE(access); k++) { data/wine-5.0/dlls/ntdll/tests/pipe.c:268:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hclient = CreateFileW(testpipe, access[k], 0, 0, OPEN_EXISTING, 0, 0); data/wine-5.0/dlls/ntdll/tests/pipe.c:272:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res, access[k], sharing[j]); data/wine-5.0/dlls/ntdll/tests/pipe.c:281:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access[k] & GENERIC_WRITE) data/wine-5.0/dlls/ntdll/tests/pipe.c:283:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access[k] & GENERIC_READ) data/wine-5.0/dlls/ntdll/tests/pipe.c:288:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sharing[j], access[k], GetLastError()); data/wine-5.0/dlls/ntdll/tests/pipe.c:290:118: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(hclient == INVALID_HANDLE_VALUE, "CreateFile succeeded for sharing %x, access: %x\n", sharing[j], access[k]); data/wine-5.0/dlls/ntdll/tests/port.c:202:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg64.Data, REPLY); data/wine-5.0/dlls/ntdll/tests/port.c:217:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg.Data, REPLY); data/wine-5.0/dlls/ntdll/tests/port.c:256:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg64.Data, REQUEST1); data/wine-5.0/dlls/ntdll/tests/port.c:268:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg64.Data, REQUEST2); data/wine-5.0/dlls/ntdll/tests/port.c:284:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg.Data, REQUEST1); data/wine-5.0/dlls/ntdll/tests/port.c:296:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)LpcMessage->msg.Data, REQUEST2); data/wine-5.0/dlls/ntdll/tests/reg.c:130:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS (WINAPI * pNtCreateKey)( PHANDLE retkey, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/tests/rtl.c:192:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)src_aligned_block, src_src); data/wine-5.0/dlls/ntdll/tests/rtl.c:209:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dest, src); data/wine-5.0/dlls/ntdll/tests/rtl.c:294:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dest, src); pRtlMoveMemory(dest, dest + 1, strlen(src) - 1); data/wine-5.0/dlls/ntdll/tests/rtl.c:296:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dest, src); pRtlMoveMemory(dest + 1, dest, strlen(src)); data/wine-5.0/dlls/ntdll/tests/rtl.c:300:62: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define FILL(len) memset(dest,0,sizeof(dest_aligned_block)); strcpy(dest, src); pRtlFillMemory(dest,len,'x') data/wine-5.0/dlls/ntdll/tests/rtl.c:325:63: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define LFILL(len) memset(dest,0,sizeof(dest_aligned_block)); strcpy(dest, src); pRtlFillMemoryUlong(dest,len,val) data/wine-5.0/dlls/ntdll/tests/rtl.c:351:62: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define ZERO(len) memset(dest,0,sizeof(dest_aligned_block)); strcpy(dest, src); pRtlZeroMemory(dest,len) data/wine-5.0/dlls/ntdll/tests/string.c:1333:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, origstring); data/wine-5.0/dlls/ntdll/tests/string.c:1338:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, origstring); data/wine-5.0/dlls/ntdll/tests/virtual.c:46:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/ntdll/thread.c:434:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateThreadEx( HANDLE *handle_ptr, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/thread.c:439:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME( "%p, %x, %p, %p, %p, %p, %x, %x, %x, %x, %p semi-stub!\n", handle_ptr, access, attr, data/wine-5.0/dlls/ntdll/thread.c:621:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenThread( HANDLE *handle, ACCESS_MASK access, data/wine-5.0/dlls/ntdll/thread.c:629:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/time.c:687:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(key.key_name, reg_tzi->TimeZoneKeyName); data/wine-5.0/dlls/ntdll/version.c:507:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( appversion, appdefaultsW ); data/wine-5.0/dlls/ntdll/version.c:598:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szCSDVersion, current_version->szCSDVersion ); data/wine-5.0/dlls/ntdll/virtual.c:1070:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((view->protect & access) != access) return STATUS_INVALID_PAGE_PROTECTION; data/wine-5.0/dlls/ntdll/virtual.c:1070:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((view->protect & access) != access) return STATUS_INVALID_PAGE_PROTECTION; data/wine-5.0/dlls/ntdll/virtual.c:1519:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS map_image( HANDLE hmapping, ACCESS_MASK access, int fd, int top_down, unsigned short zero_bits_64, data/wine-5.0/dlls/ntdll/virtual.c:1738:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/virtual.c:1775:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ACCESS_MASK access; data/wine-5.0/dlls/ntdll/virtual.c:1811:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/virtual.c:1831:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = map_image( handle, access, unix_handle, alloc_type & MEM_TOP_DOWN, zero_bits_64, image_info, data/wine-5.0/dlls/ntdll/virtual.c:1838:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = map_image( handle, access, unix_handle, alloc_type & MEM_TOP_DOWN, zero_bits_64, image_info, data/wine-5.0/dlls/ntdll/virtual.c:1893:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/virtual.c:3240:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtCreateSection( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntdll/virtual.c:3257:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/virtual.c:3277:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI NtOpenSection( HANDLE *handle, ACCESS_MASK access, const OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ntdll/virtual.c:3285:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntdll/wcstring.c:122:12: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpyW( dst, src ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:339:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI ObReferenceObjectByHandle( HANDLE handle, ACCESS_MASK access, data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:346:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "%p %x %p %d %p %p\n", handle, access, type, mode, ptr, info ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:363:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ACCESS_MASK access, POBJECT_TYPE type, data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:368:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "%p %x %p %x %p %d %p\n", obj, attr, access_state, access, type, mode, handle ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:385:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1354:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( str, servicesW ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1355:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( str, name ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1496:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( autoW, ARRAY_SIZE(autoW), auto_format, auto_idx++ ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1651:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI IoGetDeviceObjectPointer( UNICODE_STRING *name, ACCESS_MASK access, PFILE_OBJECT *file, PDEVICE_OBJECT *device ) data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1656:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME( "stub: %s %x %p %p\n", debugstr_us(name), access, file, device ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2549:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI MmCreateSection( HANDLE *handle, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2553:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("%p %#x %p %s %#x %#x %p %p: stub\n", handle, access, attr, data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2725:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI ObReferenceObjectByPointer(void *obj, ACCESS_MASK access, data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2729:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("(%p, %x, %p, %d): stub\n", obj, access, type, mode); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3555:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, buffer); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3556:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(str, path + 11); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3573:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, buffer); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3574:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, driversW); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3575:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, driver_name); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3576:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, postfixW); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3637:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( str, driverW ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3638:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( str + lstrlenW(driverW), service_name->Buffer + lstrlenW(servicesW), data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3729:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS WINAPI IoCreateFile(HANDLE *handle, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr, data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:155:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, id ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:164:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, backslashW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:165:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, id ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:209:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, servicesW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:210:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, driver ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:219:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, driverW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:220:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, driver ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:704:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, DeviceClassesW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:705:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( path + lstrlenW( path ), refstr - 38, 39 ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:706:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, slashW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:708:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( path + lstrlenW( path ), name->Buffer, (refstr - name->Buffer) + 1 ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:710:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, slashW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:711:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, hashW ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:713:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( path + lstrlenW( path ), refstr, name->Buffer + namelen - refstr + 1 ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:758:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( broadcast->dbcc_name, name->Buffer, namelen + 1 ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:942:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy( id, p + 1 ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:1041:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy( pnp_device->id, id ); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:71:15: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. int len = vsnprintf(buffer, sizeof(buffer), format, ap); data/wine-5.0/dlls/odbccp32/odbccp32.c:304:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, args); data/wine-5.0/dlls/odbccp32/odbccp32.c:608:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buf + written, value, size - written); data/wine-5.0/dlls/odbccp32/odbccp32.c:737:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff+ret, name); data/wine-5.0/dlls/odbccp32/odbccp32.c:751:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buff, defvalue, buff_len); data/wine-5.0/dlls/odbccp32/odbccp32.c:817:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buff+ret, name); data/wine-5.0/dlls/odbccp32/odbccp32.c:832:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buff, defvalue, buff_len); data/wine-5.0/dlls/odbccp32/odbccp32.c:927:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, path_in); data/wine-5.0/dlls/odbccp32/odbccp32.c:944:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(entry, p, divider - p + 1); data/wine-5.0/dlls/odbccp32/odbccp32.c:961:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(value, path); data/wine-5.0/dlls/odbccp32/odbccp32.c:962:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(value, slash); data/wine-5.0/dlls/odbccp32/odbccp32.c:963:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(value, divider); data/wine-5.0/dlls/odbccp32/odbccp32.c:969:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(value, divider); data/wine-5.0/dlls/odbccp32/odbccp32.c:1020:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPathOut, path); data/wine-5.0/dlls/odbccp32/odbccp32.c:1090:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath, path); data/wine-5.0/dlls/odbccp32/odbccp32.c:1258:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPathOut, path); data/wine-5.0/dlls/odbccp32/tests/misc.c:331:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, wine); data/wine-5.0/dlls/odbccp32/tests/misc.c:336:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, wine); data/wine-5.0/dlls/odbccp32/tests/misc.c:341:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, value); data/wine-5.0/dlls/odbccp32/tests/misc.c:361:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, value); data/wine-5.0/dlls/odbccp32/tests/misc.c:382:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, wine); data/wine-5.0/dlls/odbccp32/tests/misc.c:390:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, wine); data/wine-5.0/dlls/odbccp32/tests/misc.c:399:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, value); data/wine-5.0/dlls/odbccp32/tests/misc.c:407:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, value); data/wine-5.0/dlls/odbccp32/tests/misc.c:495:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(driverpath, syspath); data/wine-5.0/dlls/odbccp32/tests/misc.c:586:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(driverpath, syspath); data/wine-5.0/dlls/odbccp32/tests/misc.c:731:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, value); data/wine-5.0/dlls/ole2disp.dll16/ole2disp.c:341:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(BSTR_GetAddr(out),oleStr); data/wine-5.0/dlls/ole2disp.dll16/ole2disp.c:398:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(BSTR_GetAddr(out),oleStr); data/wine-5.0/dlls/ole32/antimoniker.c:457:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszDisplayName,back); data/wine-5.0/dlls/ole32/bindctx.c:346:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->bindCtxTable[This->bindCtxTableLastIndex].pkeyObj,pszkey); data/wine-5.0/dlls/ole32/comcat.c:147:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keyname + 45, type); data/wine-5.0/dlls/ole32/comcat.c:1246:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_this->keyname, This->keyname); data/wine-5.0/dlls/ole32/comcat.c:1281:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keyname, prefixW); data/wine-5.0/dlls/ole32/comcat.c:1282:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keyname, clsidW); data/wine-5.0/dlls/ole32/comcat.c:1283:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keyname, postfix); data/wine-5.0/dlls/ole32/compobj.c:307:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static NTSTATUS create_key( HKEY *retkey, ACCESS_MASK access, OBJECT_ATTRIBUTES *attr ) data/wine-5.0/dlls/ole32/compobj.c:309:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. NTSTATUS status = NtCreateKey( (HANDLE *)retkey, access, attr, 0, NULL, 0, NULL ); data/wine-5.0/dlls/ole32/compobj.c:328:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateKey( &subkey, access, attr, 0, NULL, 0, NULL ); data/wine-5.0/dlls/ole32/compobj.c:339:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. status = NtCreateKey( (PHANDLE)retkey, access, attr, 0, NULL, 0, NULL ); data/wine-5.0/dlls/ole32/compobj.c:352:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HKEY create_classes_root_hkey(DWORD access) data/wine-5.0/dlls/ole32/compobj.c:365:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create_key( &hkey, access, &attr )) return 0; data/wine-5.0/dlls/ole32/compobj.c:368:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & KEY_WOW64_64KEY)) data/wine-5.0/dlls/ole32/compobj.c:381:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline HKEY get_classes_root_hkey( HKEY hkey, REGSAM access ) data/wine-5.0/dlls/ole32/compobj.c:385:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. const BOOL force_wow32 = is_win64 && (access & KEY_WOW64_32KEY); data/wine-5.0/dlls/ole32/compobj.c:388:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ((access & KEY_WOW64_64KEY) || !(ret = classes_root_hkey))) data/wine-5.0/dlls/ole32/compobj.c:389:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = create_classes_root_hkey(MAXIMUM_ALLOWED | (access & KEY_WOW64_64KEY)); data/wine-5.0/dlls/ole32/compobj.c:393:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= ~KEY_WOW64_32KEY; data/wine-5.0/dlls/ole32/compobj.c:394:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (create_classes_key(classes_root_hkey, wow6432nodeW, access, &hkey)) data/wine-5.0/dlls/ole32/compobj.c:402:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS create_classes_key( HKEY hkey, const WCHAR *name, REGSAM access, HKEY *retkey ) data/wine-5.0/dlls/ole32/compobj.c:407:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_classes_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/ole32/compobj.c:417:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RtlNtStatusToDosError( create_key( retkey, access, &attr ) ); data/wine-5.0/dlls/ole32/compobj.c:420:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. LSTATUS open_classes_key( HKEY hkey, const WCHAR *name, REGSAM access, HKEY *retkey ) data/wine-5.0/dlls/ole32/compobj.c:425:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(hkey = get_classes_root_hkey( hkey, access ))) return ERROR_INVALID_HANDLE; data/wine-5.0/dlls/ole32/compobj.c:435:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RtlNtStatusToDosError( NtOpenKey( (HANDLE *)retkey, access, &attr ) ); data/wine-5.0/dlls/ole32/compobj.c:1437:15: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dst, src, dstlen); data/wine-5.0/dlls/ole32/compobj.c:2299:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buf, progid ); data/wine-5.0/dlls/ole32/compobj.c:2300:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buf, clsidW ); data/wine-5.0/dlls/ole32/compobj.c:2439:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( str, CHARS_IN_GUID, formatW, id->Data1, id->Data2, id->Data3, data/wine-5.0/dlls/ole32/compobj.c:2446:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT COM_OpenKeyForCLSID(REFCLSID clsid, LPCWSTR keyname, REGSAM access, HKEY *subkey) data/wine-5.0/dlls/ole32/compobj.c:2453:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, wszCLSIDSlash); data/wine-5.0/dlls/ole32/compobj.c:2455:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = open_classes_key(HKEY_CLASSES_ROOT, path, keyname ? KEY_READ : access, &key); data/wine-5.0/dlls/ole32/compobj.c:2467:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = open_classes_key(key, keyname, access, subkey); data/wine-5.0/dlls/ole32/compobj.c:2478:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT COM_OpenKeyForAppIdFromCLSID(REFCLSID clsid, REGSAM access, HKEY *subkey) data/wine-5.0/dlls/ole32/compobj.c:2503:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keyname, szAppIdKey); data/wine-5.0/dlls/ole32/compobj.c:2504:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(keyname, buf); data/wine-5.0/dlls/ole32/compobj.c:2505:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = open_classes_key(HKEY_CLASSES_ROOT, keyname, access, subkey); data/wine-5.0/dlls/ole32/compobj.c:2630:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static HRESULT get_ps_clsid_from_registry(const WCHAR* path, REGSAM access, CLSID *pclsid) data/wine-5.0/dlls/ole32/compobj.c:2636:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= KEY_READ; data/wine-5.0/dlls/ole32/compobj.c:2638:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (open_classes_key(HKEY_CLASSES_ROOT, path, access, &hkey)) data/wine-5.0/dlls/ole32/compobj.c:2734:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, wszInterface); data/wine-5.0/dlls/ole32/compobj.c:2736:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + ARRAY_SIZE(wszInterface) - 1 + CHARS_IN_GUID - 1, wszPSC); data/wine-5.0/dlls/ole32/compobj.c:4529:16: [4] (access) CoImpersonateClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. HRESULT WINAPI CoImpersonateClient(void) data/wine-5.0/dlls/ole32/compobj_private.h:192:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT COM_OpenKeyForCLSID(REFCLSID clsid, LPCWSTR keyname, REGSAM access, HKEY *key) DECLSPEC_HIDDEN; data/wine-5.0/dlls/ole32/compobj_private.h:193:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT COM_OpenKeyForAppIdFromCLSID(REFCLSID clsid, REGSAM access, HKEY *subkey) DECLSPEC_HIDDEN; data/wine-5.0/dlls/ole32/compositemoniker.c:1143:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*ppszDisplayName,tempStr); data/wine-5.0/dlls/ole32/defaulthandler.c:451:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->containerApp, szContainerApp ); data/wine-5.0/dlls/ole32/defaulthandler.c:458:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->containerObj, szContainerObj ); data/wine-5.0/dlls/ole32/filelockbytes.c:110:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(fullpath, pwcsName, MAX_PATH); data/wine-5.0/dlls/ole32/filelockbytes.c:119:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->pwcsName, fullpath); data/wine-5.0/dlls/ole32/filelockbytes.c:378:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pstatstg->pwcsName, This->pwcsName); data/wine-5.0/dlls/ole32/filemoniker.c:713:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(newStr,strDec1[j]); data/wine-5.0/dlls/ole32/filemoniker.c:716:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(newStr,bkSlash); data/wine-5.0/dlls/ole32/filemoniker.c:719:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(newStr,strDec2[j]); data/wine-5.0/dlls/ole32/filemoniker.c:1005:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(commonPath,stringTable1[i]); data/wine-5.0/dlls/ole32/filemoniker.c:1059:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(strgtable[tabIndex++],bSlash); data/wine-5.0/dlls/ole32/filemoniker.c:1079:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(strgtable[tabIndex++],word); data/wine-5.0/dlls/ole32/filemoniker.c:1159:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(relPath,back); data/wine-5.0/dlls/ole32/filemoniker.c:1163:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(relPath,tabStr2[j]); data/wine-5.0/dlls/ole32/filemoniker.c:1201:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszDisplayName,This->filePathName); data/wine-5.0/dlls/ole32/filemoniker.c:1366:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->filePathName,lpszPathName); data/wine-5.0/dlls/ole32/filemoniker.c:1400:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(This->filePathName,tabStr[i]); data/wine-5.0/dlls/ole32/filemoniker.c:1403:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(This->filePathName,bkSlash); data/wine-5.0/dlls/ole32/itemmoniker.c:753:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*ppszDisplayName, This->itemDelimiter); data/wine-5.0/dlls/ole32/itemmoniker.c:754:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*ppszDisplayName,This->itemName); data/wine-5.0/dlls/ole32/ole2.c:697:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(auxkeynameW, ARRAY_SIZE(auxkeynameW), auxusertypeW, form); data/wine-5.0/dlls/ole32/ole2.c:883:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(keyName, ARRAY_SIZE(keyName), dfmtW, dwAspect); data/wine-5.0/dlls/ole32/rpc.c:1683:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(command, embedding); data/wine-5.0/dlls/ole32/rpc.c:1799:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pipefn, wszPipeRef); data/wine-5.0/dlls/ole32/stg_prop.c:2769:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, szSummaryInfo); data/wine-5.0/dlls/ole32/stg_prop.c:2771:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, szDocSummaryInfo); data/wine-5.0/dlls/ole32/stg_prop.c:2773:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, szDocSummaryInfo); data/wine-5.0/dlls/ole32/storage32.c:299:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. switch (access) data/wine-5.0/dlls/ole32/storage32.c:1893:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(currentEntry.name, pwcsNewName); data/wine-5.0/dlls/ole32/storage32.c:2015:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(newStreamEntry.name, pwcsName); data/wine-5.0/dlls/ole32/storage32.c:2211:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(newEntry.name, pwcsName); data/wine-5.0/dlls/ole32/storage32.c:4770:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rootEntry.name, rootentryW); data/wine-5.0/dlls/ole32/storage32.c:7041:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(destination->pwcsName, source->name); data/wine-5.0/dlls/ole32/storage32.c:10051:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(IStorageCompObj.strOleTypeName, strOleTypeName); data/wine-5.0/dlls/ole32/storage32.c:10056:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(IStorageCompObj.strProgIDName, strOleTypeName); data/wine-5.0/dlls/ole32/storage32.c:10076:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(IStorageCompObj.strCLSIDName, strTemp); data/wine-5.0/dlls/ole32/storage32.c:10413:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pOleStreamData[1].strOleTypeName, strMetafilePictName); data/wine-5.0/dlls/ole32/tests/clipboard.c:438:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(GlobalLock(h), text); data/wine-5.0/dlls/ole32/tests/clipboard.c:457:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(GlobalLock(obj->text), cmpl_text_data); data/wine-5.0/dlls/ole32/tests/clipboard.c:480:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dm.dmDeviceName, device_name); data/wine-5.0/dlls/ole32/tests/clipboard.c:487:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((WCHAR*)obj->fmtetc[3].ptd->tdData, device_name); data/wine-5.0/dlls/ole32/tests/clipboard.c:1433:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dm.dmDeviceName, device_name); data/wine-5.0/dlls/ole32/tests/clipboard.c:1440:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((WCHAR*)fmt.ptd->tdData, device_name); data/wine-5.0/dlls/ole32/tests/compobj.c:493:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszCLSID_Broken, wszCLSID_StdFont); data/wine-5.0/dlls/ole32/tests/compobj.c:3925:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(testlib, "\\testlib.dll"); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:484:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, teststring); data/wine-5.0/dlls/ole32/tests/marshal.c:3789:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/ole32/tests/ole2.c:3474:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, clsidW); data/wine-5.0/dlls/ole32/tests/ole_server.c:295:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(server_path, server); data/wine-5.0/dlls/ole32/tests/ole_server.c:296:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(server_path, " ole_server"); data/wine-5.0/dlls/ole32/tests/ole_server.c:298:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, clsidW); data/wine-5.0/dlls/ole32/tests/ole_server.c:327:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, clsidW); data/wine-5.0/dlls/ole32/tests/ole_server.c:363:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" ole_server -server", argv0); data/wine-5.0/dlls/ole32/tests/storage32.c:3375:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/ole32/tests/storage32.c:3418:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static BOOL can_open(LPCWSTR filename, DWORD access, DWORD sharing) data/wine-5.0/dlls/ole32/tests/storage32.c:3422:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hfile = CreateFileW(filename, access, sharing, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL); data/wine-5.0/dlls/ole32/tests/storage32.c:3432:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, DWORD sharing, const char *desc, DWORD *open_mode, BOOL *any_failure) data/wine-5.0/dlls/ole32/tests/storage32.c:3434:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (can_open(filename, access, FILE_SHARE_READ|FILE_SHARE_WRITE|FILE_SHARE_DELETE)) data/wine-5.0/dlls/ole32/tests/storage32.c:3436:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. *open_mode = access; data/wine-5.0/dlls/ole32/tests/storage32.c:3462:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, DWORD sharing, const char *desc, DWORD open_mode, BOOL *any_failure) data/wine-5.0/dlls/ole32/tests/storage32.c:3466:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!current->todo || !(current->access & access)) data/wine-5.0/dlls/ole32/tests/storage32.c:3466:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!current->todo || !(current->access & access)) data/wine-5.0/dlls/ole32/tests/storage32.c:3467:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!(current->access & access), "file with mode %x should not be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3467:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(!(current->access & access), "file with mode %x should not be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3470:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. todo_wine ok(!(current->access & access), "file with mode %x should not be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3470:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. todo_wine ok(!(current->access & access), "file with mode %x should not be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3476:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!current->todo || (current->access & access)) data/wine-5.0/dlls/ole32/tests/storage32.c:3476:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!current->todo || (current->access & access)) data/wine-5.0/dlls/ole32/tests/storage32.c:3477:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(current->access & access, "file with mode %x should be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3477:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ok(current->access & access, "file with mode %x should be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3480:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. todo_wine ok(current->access & access, "file with mode %x should be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/storage32.c:3480:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. todo_wine ok(current->access & access, "file with mode %x should be openable without %s sharing\n", current->stg_mode, desc); data/wine-5.0/dlls/ole32/tests/usrmarshal.c:1050:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dataW, str1W); data/wine-5.0/dlls/ole32/tests/usrmarshal.c:1052:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dataW, str2W); data/wine-5.0/dlls/oleacc/main.c:322:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(atom_str+ARRAY_SIZE(lresult_atom_prefix), 3*8 + 3, atom_fmt, GetCurrentProcessId(), data/wine-5.0/dlls/oleacc/tests/main.c:546:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" main ObjectFromLresult %s", name, wine_dbgstr_longlong(lres)); data/wine-5.0/dlls/oleaut32/oleaut.c:873:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(typelibkey, "Typelib\\%s\\%s\\0\\win%u", tlguid, ver, sizeof(void *) == 8 ? 64 : 32); data/wine-5.0/dlls/oleaut32/oleaut.c:878:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(typelibkey, "Typelib\\%s\\%s\\0\\win32", tlguid, ver); data/wine-5.0/dlls/oleaut32/olefont.c:601:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(logFont.lfFaceName, This->description.lpstrName, LF_FACESIZE); data/wine-5.0/dlls/oleaut32/tests/typelib.c:3850:58: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define OLE_CHECK(x) { HRESULT hr = x; if (FAILED(hr)) { printf(#x "failed - %x\n", hr); return; } } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4011:68: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4043:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "sizeof(%s*)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4047:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "sizeof(struct %s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4051:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "sizeof(union %s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4055:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "sizeof(%s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4078:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "TYPE_ALIGNMENT(%s*)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4082:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "TYPE_ALIGNMENT(struct %s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4086:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "TYPE_ALIGNMENT(union %s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4090:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "TYPE_ALIGNMENT(%s)", dump_string(name)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4113:68: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4137:68: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:5108:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(key_name, "Interface\\%s", uuid); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5175:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(key_name, "Interface\\%s", uuid); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5603:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, wszGUID); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5633:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, wszguid); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5647:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, invalidW); data/wine-5.0/dlls/oleaut32/typelib.c:247:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer + lstrlenW(buffer), 20, VersionFormatW, wMaj, wMin ); data/wine-5.0/dlls/oleaut32/typelib.c:271:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, 16, LcidFormatW, lcid ); data/wine-5.0/dlls/oleaut32/typelib.c:274:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). case SYS_WIN16: lstrcatW( buffer, win16W ); break; data/wine-5.0/dlls/oleaut32/typelib.c:275:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). case SYS_WIN32: lstrcatW( buffer, win32W ); break; data/wine-5.0/dlls/oleaut32/typelib.c:276:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). case SYS_WIN64: lstrcatW( buffer, win64W ); break; data/wine-5.0/dlls/oleaut32/typelib.c:624:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), fmtver, libattr->wMajorVerNum, libattr->wMinorVerNum); data/wine-5.0/dlls/oleaut32/typelib.c:710:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, attr->wLibFlags); data/wine-5.0/dlls/oleaut32/typelib.c:3324:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszPath, file); data/wine-5.0/dlls/oleaut32/typelib.c:3353:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszPath + 2, info->FileName, cchPath - 2); data/wine-5.0/dlls/oleaut32/typelib.c:3411:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(impl->path, pszPath); data/wine-5.0/dlls/oleaut32/typelib.c:3956:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if(sscanf(pNameTable + lib_offs + 40, "}#%hd.%hd#%x#%s", data/wine-5.0/dlls/oleaut32/typelib.c:7893:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (swprintf(szPath + len, ARRAY_SIZE(szPath) - len, formatW, LOWORD(lpszName)) < 0) data/wine-5.0/dlls/oleaut32/typelib.c:8973:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->path, szFile); data/wine-5.0/dlls/oleaut32/varformat.c:1376:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pBuff, boolStr); data/wine-5.0/dlls/oleaut32/varformat.c:1418:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(pBuff, ARRAY_SIZE(buff) - (pBuff - buff), szPercentZeroStar_d, pToken[1], -exponent); data/wine-5.0/dlls/oleaut32/varformat.c:1424:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(pBuff, ARRAY_SIZE(buff) - (pBuff - buff), szPercentZeroStar_d, pToken[1], exponent); data/wine-5.0/dlls/oleaut32/varformat.c:1897:7: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(pBuff, ARRAY_SIZE(buff) - (pBuff - buff), szPrintFmt, dwVal); data/wine-5.0/dlls/oleaut32/varformat.c:2385:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff + dwLen, bBracket ? szPercentBracket : szPercent); data/wine-5.0/dlls/oleaut32/vartype.c:6515:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buff, ARRAY_SIZE(buff), lpszFormat, dblIn ); data/wine-5.0/dlls/oledb32/datainit.c:567:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, pair->name); data/wine-5.0/dlls/oledb32/datainit.c:568:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(str, eqW); data/wine-5.0/dlls/oledb32/datainit.c:569:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(str, pair->value); data/wine-5.0/dlls/oledb32/datainit.c:628:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/dlls/oledb32/datainit.c:820:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(str, V_BSTR(v)); data/wine-5.0/dlls/oledb32/datainit.c:828:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(str, V_BSTR(&vstr)); data/wine-5.0/dlls/oledb32/datainit.c:940:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, provW); data/wine-5.0/dlls/oledb32/datainit.c:941:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, progid); data/wine-5.0/dlls/oledb32/datainit.c:942:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, colW); data/wine-5.0/dlls/oledb32/datainit.c:955:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, descr); data/wine-5.0/dlls/oledb32/datainit.c:956:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, eqW); data/wine-5.0/dlls/oledb32/datainit.c:958:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*init_string, colW); data/wine-5.0/dlls/oledb32/dslocator.c:230:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(guidkey, provider); data/wine-5.0/dlls/oledb32/dslocator.c:231:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(guidkey, oledbprov); data/wine-5.0/dlls/oledlg/pastespl.c:77:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(flagstr, flag->name); data/wine-5.0/dlls/oledlg/tests/main.c:74:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(verbs->lpszVerbName, verbW); data/wine-5.0/dlls/oledlg/tests/main.c:229:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*usertype, testW); data/wine-5.0/dlls/oledlg/tests/main.c:460:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, cadabraW); data/wine-5.0/dlls/opcservices/factory.c:247:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, creation; data/wine-5.0/dlls/opcservices/factory.c:269:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. stream->hfile = CreateFileW(filename, access, 0, sa, creation, flags, NULL); data/wine-5.0/dlls/opcservices/tests/opcservices.c:277:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, temppathW); data/wine-5.0/dlls/opcservices/tests/opcservices.c:278:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, filereadW); data/wine-5.0/dlls/packager/packager_main.c:486:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extension, base_end); data/wine-5.0/dlls/packager/packager_main.c:503:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(base_end, extension); data/wine-5.0/dlls/packager/tests/oleobj.c:461:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename + len, filename3W); data/wine-5.0/dlls/pdh/pdh_main.c:55:70: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (lstrlenW( src ) + 1) * sizeof(WCHAR) ))) lstrcpyW( dst, src ); data/wine-5.0/dlls/pdh/pdh_main.c:937:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, p ); data/wine-5.0/dlls/pdh/pdh_main.c:1204:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, bslash); data/wine-5.0/dlls/pdh/pdh_main.c:1205:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, bslash); data/wine-5.0/dlls/pdh/pdh_main.c:1206:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, e->szMachineName); data/wine-5.0/dlls/pdh/pdh_main.c:1208:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, bslash); data/wine-5.0/dlls/pdh/pdh_main.c:1209:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, e->szObjectName); data/wine-5.0/dlls/pdh/pdh_main.c:1212:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, lparen); data/wine-5.0/dlls/pdh/pdh_main.c:1215:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, e->szParentInstance); data/wine-5.0/dlls/pdh/pdh_main.c:1216:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, fslash); data/wine-5.0/dlls/pdh/pdh_main.c:1218:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, e->szInstanceName); data/wine-5.0/dlls/pdh/pdh_main.c:1219:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(instance, ARRAY_SIZE(instance), fmt, e->dwInstanceIndex); data/wine-5.0/dlls/pdh/pdh_main.c:1220:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, instance); data/wine-5.0/dlls/pdh/pdh_main.c:1221:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, rparen); data/wine-5.0/dlls/pdh/pdh_main.c:1223:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, bslash); data/wine-5.0/dlls/pdh/pdh_main.c:1224:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, e->szCounterName); data/wine-5.0/dlls/pdh/pdh_main.c:1227:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (*buflen >= len) lstrcpyW(buffer, path); data/wine-5.0/dlls/pdh/tests/pdh.c:748:24: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. static const WCHAR system[] = {'\\','S','y','s','t','e','m',0}; data/wine-5.0/dlls/pdh/tests/pdh.c:756:29: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ret = PdhValidatePathW( system ); data/wine-5.0/dlls/pdh/tests/pdh.c:797:24: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. static const WCHAR system[] = {'\\','S','y','s','t','e','m',0}; data/wine-5.0/dlls/pdh/tests/pdh.c:805:38: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ret = pPdhValidatePathExW( NULL, system ); data/wine-5.0/dlls/propsys/propstore.c:477:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT WINAPI PSCreatePropertyStoreFromObject(IUnknown *obj, DWORD access, REFIID riid, void **ret) data/wine-5.0/dlls/propsys/propstore.c:481:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("(%p, %d, %s, %p)\n", obj, access, debugstr_guid(riid), ret); data/wine-5.0/dlls/propsys/propsys_main.c:308:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(psz, cch, guid_fmtW, pkey->fmtid.Data1, pkey->fmtid.Data2, data/wine-5.0/dlls/propsys/propsys_main.c:318:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(pidW, ARRAY_SIZE(pidW), pid_fmtW, pkey->pid); data/wine-5.0/dlls/propsys/propsys_main.c:322:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, pidW); data/wine-5.0/dlls/propsys/propvar.c:349:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ret, stringW, cch); data/wine-5.0/dlls/propsys/propvar.c:587:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(str, 39, format, guid->Data1, guid->Data2, guid->Data3, data/wine-5.0/dlls/propsys/tests/propsys.c:658:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(prop.u.pszVal, topic); data/wine-5.0/dlls/propsys/tests/propsys.c:1306:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(src.u.pszVal, topic); data/wine-5.0/dlls/propsys/tests/propsys.c:1316:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src.u.pwszVal, topicW); data/wine-5.0/dlls/qcap/avimux.c:1862:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info.achName, output_name); data/wine-5.0/dlls/qcap/tests/avico.c:418:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->szName, nameW); data/wine-5.0/dlls/qcap/tests/avico.c:419:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->szDescription, nameW); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1292:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->filterInfo.achName, pName); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1707:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pInfo->achName, sourcePinName); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1728:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*id, sourcePinName); data/wine-5.0/dlls/qedit/tests/mediadet.c:173:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name + lstrlenW(name) - 3, avi); data/wine-5.0/dlls/qmgr/file.c:538:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file->tempFileName, tmpName); data/wine-5.0/dlls/qmgr/job.c:615:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->description, Val); data/wine-5.0/dlls/qmgr/qmgr.h:121:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyW(dst, src); data/wine-5.0/dlls/qmgr/qmgr.h:128:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyW(dst, src); data/wine-5.0/dlls/qmgr/qmgr.h:141:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ret, str); data/wine-5.0/dlls/qmgr/tests/job.c:417:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(urlA, prot); data/wine-5.0/dlls/qmgr/tests/job.c:418:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(urlA, test_remotePathA); data/wine-5.0/dlls/qmgr/tests/job.c:419:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(urlB, prot); data/wine-5.0/dlls/qmgr/tests/job.c:420:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(urlB, test_remotePathB); data/wine-5.0/dlls/quartz/filesource.c:229:9: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(extensions_path, ext); data/wine-5.0/dlls/quartz/filesource.c:486:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->pszFileName, pszFileName); data/wine-5.0/dlls/quartz/filesource.c:517:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszFileName, This->pszFileName); data/wine-5.0/dlls/quartz/filtergraph.c:587:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(wszFilterName, pName ? lstrlenW(pName) + 6 : 5, wszFmt1, pName, This->nameIndex); data/wine-5.0/dlls/quartz/filtergraph.c:589:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(wszFilterName, pName ? lstrlenW(pName) + 6 : 5, wszFmt2, This->nameIndex); data/wine-5.0/dlls/quartz/filtermapper.c:280:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:281:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wClsidAMCat); data/wine-5.0/dlls/quartz/filtermapper.c:282:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszSlashInstance); data/wine-5.0/dlls/quartz/filtermapper.c:283:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wClsidCategory); data/wine-5.0/dlls/quartz/filtermapper.c:334:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:335:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wClsidCategory); data/wine-5.0/dlls/quartz/filtermapper.c:336:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszSlashInstance); data/wine-5.0/dlls/quartz/filtermapper.c:338:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, szInstance); data/wine-5.0/dlls/quartz/filtermapper.c:343:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wFilter); data/wine-5.0/dlls/quartz/filtermapper.c:716:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwszParseName, wszDevice); data/wine-5.0/dlls/quartz/filtermapper.c:728:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pCurrent+1, szInstance); data/wine-5.0/dlls/quartz/filtermapper.c:736:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pCurrent+1, szClsidTemp); data/wine-5.0/dlls/quartz/filtermapper.c:1276:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszFilterSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1277:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1292:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1293:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1346:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1347:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1362:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszPinsKeyName, wszPins); data/wine-5.0/dlls/quartz/filtermapper.c:1363:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszPinsKeyName, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1364:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszPinsKeyName, szName); data/wine-5.0/dlls/quartz/filtermapper.c:1456:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszTypesKey, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1457:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1458:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1459:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszPins); data/wine-5.0/dlls/quartz/filtermapper.c:1460:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1461:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, szName); data/wine-5.0/dlls/quartz/filtermapper.c:1462:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1463:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszTypesKey, wszTypes); data/wine-5.0/dlls/quartz/filtermapper.c:1474:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidMajorType); data/wine-5.0/dlls/quartz/filtermapper.c:1475:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1476:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsidSubType); data/wine-5.0/dlls/quartz/filtermapper.c:1519:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1520:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1574:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszKeyName, wszClsidSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1575:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszKeyName, wszClsid); data/wine-5.0/dlls/quartz/filtermapper.c:1590:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszPinNameKey, wszPins); data/wine-5.0/dlls/quartz/filtermapper.c:1591:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszPinNameKey, wszSlash); data/wine-5.0/dlls/quartz/filtermapper.c:1592:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszPinNameKey, Name); data/wine-5.0/dlls/quartz/main.c:334:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, error); data/wine-5.0/dlls/quartz/tests/avisplit.c:51:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/quartz/tests/filesource.c:48:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/quartz/tests/filesource.c:1004:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, avifile); data/wine-5.0/dlls/quartz/tests/filtergraph.c:56:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/quartz/tests/filtergraph.c:959:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, pin->name); data/wine-5.0/dlls/quartz/tests/filtergraph.c:978:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*id, pin->id); data/wine-5.0/dlls/quartz/tests/filtergraph.c:1435:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, filter->name); data/wine-5.0/dlls/quartz/tests/filtergraph.c:1451:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filter->name, name); data/wine-5.0/dlls/quartz/tests/filtergraph.c:1784:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(filter->filename, filename); data/wine-5.0/dlls/quartz/tests/filtermapper.c:249:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(key_name, clsidW); data/wine-5.0/dlls/quartz/tests/filtermapper.c:250:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(key_name, clsidstring); data/wine-5.0/dlls/quartz/tests/mpegsplit.c:51:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/quartz/tests/waveparser.c:48:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/quartz/vmr9.c:1059:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(info->szDevice, mi.szDevice, ARRAY_SIZE(info->szDevice)); data/wine-5.0/dlls/quartz/vmr9.c:1076:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(info->szDevice, mi.szDevice, ARRAY_SIZE(info->szDevice)); data/wine-5.0/dlls/rasapi32/rasapi.c:264:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpRasDevinfo->szDeviceType, RASDT_Modem); data/wine-5.0/dlls/riched20/para.c:180:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cf.szFaceName, lf.lfFaceName); data/wine-5.0/dlls/riched20/para.c:315:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf( p, 20, fmtW, num ); data/wine-5.0/dlls/riched20/para.c:825:35: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (pFmt->dwMask & (mask)) p += sprintf(p, "%-22s" fmt "\n", name, pFmt->field); \ data/wine-5.0/dlls/riched20/para.c:826:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. else p += sprintf(p, "%-22sN/A\n", name); data/wine-5.0/dlls/riched20/para.c:830:8: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. p += sprintf(p, "%-22s%s\n", name, (pFmt->dwMask & (mask)) ? ((pFmt->wEffects & ((mask) >> 16)) ? "yes" : "no") : "N/A"); data/wine-5.0/dlls/riched20/reader.c:88:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return lstrcpyA (p, s); data/wine-5.0/dlls/riched20/reader.c:441:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA (info->pushedTextBuf, info->rtfTextBuf); data/wine-5.0/dlls/riched20/reader.c:477:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA (info->rtfTextBuf, info->pushedTextBuf); data/wine-5.0/dlls/riched20/reader.c:951:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(info->rtfTextBuf, "f"); data/wine-5.0/dlls/riched20/richole.c:637:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(fmt.szFaceName, str, ARRAY_SIZE(fmt.szFaceName)); data/wine-5.0/dlls/riched20/richole.c:821:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(fmt.szFaceName, value->str, ARRAY_SIZE(fmt.szFaceName)); data/wine-5.0/dlls/riched20/style.c:240:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. *p += sprintf(*p, "%-22s%s\n", name, (fmt->dwMask & mask) ? ((fmt->dwEffects & mask) ? "YES" : "no") : "N/A"); data/wine-5.0/dlls/riched20/style.c:305:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf->lfFaceName, s->fmt.szFaceName); data/wine-5.0/dlls/riched20/style.c:337:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fmt->szFaceName, lf->lfFaceName); data/wine-5.0/dlls/riched20/tests/editor.c:2093:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2094:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, templates_delim[j] + at_offset + 1); data/wine-5.0/dlls/riched20/tests/editor.c:2144:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2145:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, templates_non_delim[j] + at_offset + 1); data/wine-5.0/dlls/riched20/tests/editor.c:2185:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2186:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, templates_xten_delim[j] + at_offset + 1); data/wine-5.0/dlls/riched20/tests/editor.c:2242:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2243:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, templates_neutral_delim[j] + at_offset + 1); data/wine-5.0/dlls/riched20/tests/editor.c:2451:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2452:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, templates_delim[j] + at_offset + 1); data/wine-5.0/dlls/riched20/tests/txtsrv.c:566:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cf->szFaceName, lf.lfFaceName); data/wine-5.0/dlls/riched20/writer.c:131:9: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = vsnprintf(string, sizeof(string), format, valist); data/wine-5.0/dlls/riched20/writer.c:697:11: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(props, leader[fmt->rgxTabs[i] >> 28]); data/wine-5.0/dlls/riched20/writer.c:718:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(props, style[fmt->wShadingStyle & 0xF]); data/wine-5.0/dlls/riched20/writer.c:763:11: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( props, fmt->dwEffects & effects[i].effect ? effects[i].on : effects[i].off ); data/wine-5.0/dlls/riched32/tests/editor.c:423:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gl_text, gl[i].broken_text); data/wine-5.0/dlls/riched32/tests/editor.c:425:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gl_text, gl[i].text); data/wine-5.0/dlls/rpcrt4/cpsf.c:48:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, 39, clsid_formatW, clsid->Data1, clsid->Data2, clsid->Data3, data/wine-5.0/dlls/rpcrt4/cpsf.c:260:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keyname, interfaceW ); data/wine-5.0/dlls/rpcrt4/cpsf.c:267:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(num, ARRAY_SIZE(num), numformatW, proxy->header.DispatchTableCount); data/wine-5.0/dlls/rpcrt4/cpsf.c:276:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keyname, clsidW ); data/wine-5.0/dlls/rpcrt4/cpsf.c:277:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keyname, clsid ); data/wine-5.0/dlls/rpcrt4/cpsf.c:324:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keyname, interfaceW ); data/wine-5.0/dlls/rpcrt4/cpsf.c:332:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( keyname, clsidW ); data/wine-5.0/dlls/rpcrt4/cpsf.c:333:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( keyname, clsid ); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1052:19: [4] (access) RpcImpersonateClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. RPC_STATUS WINAPI RpcImpersonateClient(RPC_BINDING_HANDLE BindingHandle) data/wine-5.0/dlls/rpcrt4/rpc_message.c:282:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(server_address->string, ServerAddress); data/wine-5.0/dlls/rpcrt4/rpc_message.c:1139:18: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. sec_status = ImpersonateSecurityContext(&conn->ctx); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:184:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(strcpy(pipe_name, prefix), endpoint); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:184:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcat(strcpy(pipe_name, prefix), endpoint); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:244:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(strcpy(pipe_name, prefix), endpoint); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:244:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcat(strcpy(pipe_name, prefix), endpoint); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:594:11: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateNamedPipeClient(npc->pipe); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2069:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(header, ARRAY_SIZE(header), fmtW, len); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2780:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(url, wszColon); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3522:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*protseq, protseq_ops->name); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3655:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)pvector->Protseq[i], protseq_list[i].name); data/wine-5.0/dlls/rpcrt4/tests/cstub.c:1229:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/rpcrt4/tests/server.c:240:22: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fnprintf *p_printf = printf; data/wine-5.0/dlls/rpcrt4/tests/server.c:294:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(d, s); data/wine-5.0/dlls/rpcrt4/tests/server.c:801:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(list[0], helloW); data/wine-5.0/dlls/rpcrt4/tests/server.c:803:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(list[1], worldW); data/wine-5.0/dlls/rpcrt4/tests/server.c:1100:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s server %s", progname, test); data/wine-5.0/dlls/rpcrt4/tests/server.c:1821:18: [4] (access) RpcImpersonateClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. status = RpcImpersonateClient(NULL); data/wine-5.0/dlls/rpcrt4/tests/server.c:2259:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s server run %lx", progname, (UINT_PTR)ready_event); data/wine-5.0/dlls/rsaenh/rsaenh.c:39:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. WINE_DEFAULT_DEBUG_CHANNEL(crypt); data/wine-5.0/dlls/rsaenh/rsaenh.c:1087:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szRSABase, RSAENH_REGKEY, pKeyContainer->szName); data/wine-5.0/dlls/rsaenh/rsaenh.c:1113:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static BOOL open_container_key(LPCSTR pszContainerName, DWORD dwFlags, REGSAM access, HKEY *phKey) data/wine-5.0/dlls/rsaenh/rsaenh.c:1118:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szRSABase, RSAENH_REGKEY, pszContainerName); data/wine-5.0/dlls/rsaenh/rsaenh.c:1127:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegOpenKeyExA(hRootKey, szRSABase, 0, access, phKey) == data/wine-5.0/dlls/rsaenh/rsaenh.c:1145:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szRegKey, RSAENH_REGKEY, pszContainerName); data/wine-5.0/dlls/rsaenh/rsaenh.c:1277:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pKeyContainer->szName, pszContainerName, MAX_PATH); data/wine-5.0/dlls/rsaenh/rsaenh.c:1283:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pKeyContainer->szProvName, pVTable->pszProvName, MAX_PATH); data/wine-5.0/dlls/rsaenh/rsaenh.c:2083:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szKeyContainerName, pszContainer, MAX_PATH); data/wine-5.0/dlls/rsaenh/rsaenh.c:4704:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!open_container_key(pKeyContainer->szName, flags, access, &hKey)) data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:97:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(unique, szContainer_md5); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:98:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(unique, "_"); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:99:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(unique, guid); data/wine-5.0/dlls/sane.ds/capability.c:296:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mode, m); data/wine-5.0/dlls/sane.ds/ds_ctrl.c:447:9: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. system ("xscanimage"); data/wine-5.0/dlls/sane.ds/sane_main.c:425:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out, in); data/wine-5.0/dlls/sane.ds/sane_main.c:441:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out, p); data/wine-5.0/dlls/sane.ds/sane_main.c:467:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (self->Manufacturer, sane_devlist[cursanedev]->vendor, sizeof(self->Manufacturer) - 1); data/wine-5.0/dlls/sane.ds/sane_main.c:468:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (self->ProductFamily, sane_devlist[cursanedev]->model, sizeof(self->ProductFamily) - 1); data/wine-5.0/dlls/sane.ds/sane_main.c:509:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(name, sane_devlist[i]->vendor, sizeof(name)-1); data/wine-5.0/dlls/sane.ds/sane_main.c:512:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(name, sane_devlist[i]->model, sizeof(name)-1); data/wine-5.0/dlls/schedsvc/atsvc.c:646:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, windir); data/wine-5.0/dlls/schedsvc/atsvc.c:647:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/atsvc.c:648:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, allW); data/wine-5.0/dlls/schedsvc/atsvc.c:657:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, windir); data/wine-5.0/dlls/schedsvc/atsvc.c:658:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/atsvc.c:662:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, data.cFileName); data/wine-5.0/dlls/schedsvc/atsvc.c:1099:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(task_name, windir); data/wine-5.0/dlls/schedsvc/atsvc.c:1100:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), fmtW, current_jobid); data/wine-5.0/dlls/schedsvc/atsvc.c:1101:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(task_name, name); data/wine-5.0/dlls/schedsvc/schedsvc.c:55:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, tasksW); data/wine-5.0/dlls/schedsvc/schedsvc.c:59:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, path); data/wine-5.0/dlls/schedsvc/schedsvc.c:76:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_path, path); data/wine-5.0/dlls/schedsvc/schedsvc.c:419:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, full_name); data/wine-5.0/dlls/schedsvc/schedsvc.c:420:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, allW); data/wine-5.0/dlls/schedsvc/schedsvc.c:527:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, full_name); data/wine-5.0/dlls/schedsvc/schedsvc.c:528:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, allW); data/wine-5.0/dlls/schedsvc/svc_main.c:75:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/svc_main.c:170:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/svc_main.c:171:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, info.data.FileName); data/wine-5.0/dlls/schedsvc/svc_main.c:178:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/svc_main.c:179:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, info.data.FileName); data/wine-5.0/dlls/schedsvc/svc_main.c:187:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, tasksW); data/wine-5.0/dlls/schedsvc/svc_main.c:188:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, info.data.FileName); data/wine-5.0/dlls/scrobj/scrobj.c:778:13: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(name, member->name); data/wine-5.0/dlls/scrobj/scrobj.c:1424:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(factory->versioned_progid + progid_len, factory->version); data/wine-5.0/dlls/scrrun/filesystem.c:225:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, path); data/wine-5.0/dlls/scrrun/filesystem.c:227:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, bsW); data/wine-5.0/dlls/scrrun/filesystem.c:228:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, data->cFileName); data/wine-5.0/dlls/scrrun/filesystem.c:731:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. stream->file = CreateFileW(filename, access, 0, NULL, disposition, FILE_ATTRIBUTE_NORMAL, NULL); data/wine-5.0/dlls/scrrun/filesystem.c:1214:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, path); data/wine-5.0/dlls/scrrun/filesystem.c:1217:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, bsW); data/wine-5.0/dlls/scrrun/filesystem.c:1218:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, allW); data/wine-5.0/dlls/scrrun/filesystem.c:1787:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, This->path); data/wine-5.0/dlls/scrrun/filesystem.c:1788:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, allW); data/wine-5.0/dlls/scrrun/filesystem.c:1982:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, This->path); data/wine-5.0/dlls/scrrun/filesystem.c:1983:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, allW); data/wine-5.0/dlls/scrrun/filesystem.c:3075:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, Path); data/wine-5.0/dlls/scrrun/filesystem.c:3077:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret, Name); data/wine-5.0/dlls/scrrun/filesystem.c:3085:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, Path); data/wine-5.0/dlls/scrrun/filesystem.c:3087:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret, bsW); data/wine-5.0/dlls/scrrun/filesystem.c:3088:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret, Name); data/wine-5.0/dlls/scrrun/filesystem.c:3096:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, Path); data/wine-5.0/dlls/scrrun/filesystem.c:3097:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret, Name); data/wine-5.0/dlls/scrrun/filesystem.c:3341:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*pbstrResult, 12, fmt, random & 0xfffff); data/wine-5.0/dlls/scrrun/filesystem.c:3934:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ver, 30, fmtW, a, b, c, d); data/wine-5.0/dlls/scrrun/tests/filesystem.c:154:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file_path, windows_path); data/wine-5.0/dlls/scrrun/tests/filesystem.c:155:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(file_path, file_kernel32W); data/wine-5.0/dlls/scrrun/tests/filesystem.c:380:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filenameW, pathW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:381:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filenameW, k32W); data/wine-5.0/dlls/scrrun/tests/filesystem.c:390:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filenameW, pathW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:391:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filenameW, k33W); data/wine-5.0/dlls/scrrun/tests/filesystem.c:715:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, slW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1069:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1070:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, aW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1073:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1074:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, bW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1087:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1088:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, cW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1191:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1192:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, aW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1194:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1195:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, bW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1197:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1198:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, cW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1237:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1238:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, aW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1241:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1242:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, bW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1256:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, buffW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1257:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, cW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1498:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, scrrunW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1499:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir, path); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1500:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, filename); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1613:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff2W, nameW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1614:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2W, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1637:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2W, nameW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1638:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2W, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1706:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, nameW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1707:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1708:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, secondlineW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1709:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1740:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, secondlineW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1741:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1852:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, nameW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1853:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1854:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, secondlineW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1855:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1885:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, secondlineW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1886:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1898:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, nameW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1899:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1900:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, secondlineW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1901:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, crlfW); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1924:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, L"123"); data/wine-5.0/dlls/secur32/dispatcher.c:116:9: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execvp(prog, argv); data/wine-5.0/dlls/secur32/dispatcher.c:131:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm.a4i = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:132:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_a4i = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:133:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_a4i = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:134:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_sign_key = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:135:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seal_key = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:136:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_sign_key = NULL; data/wine-5.0/dlls/secur32/dispatcher.c:137:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seal_key = NULL; data/wine-5.0/dlls/secur32/ntlm.c:601:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(want_flags, "SF"); data/wine-5.0/dlls/secur32/ntlm.c:605:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SEAL"); data/wine-5.0/dlls/secur32/ntlm.c:614:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SIGN"); data/wine-5.0/dlls/secur32/ntlm.c:621:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SIGN"); data/wine-5.0/dlls/secur32/ntlm.c:626:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SIGN"); data/wine-5.0/dlls/secur32/ntlm.c:639:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "OK", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:649:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "PW AA==", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:652:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "OK", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:656:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "PW ", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:679:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, want_flags, max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:690:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "YR", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:770:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "TT ", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:857:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "GF", max_len - 1); data/wine-5.0/dlls/secur32/ntlm.c:874:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "GK", max_len - 1); data/wine-5.0/dlls/secur32/ntlm.c:897:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm.a4i = SECUR32_arc4Alloc(); data/wine-5.0/dlls/secur32/ntlm.c:898:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Init(helper->crypt.ntlm.a4i, helper->session_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:899:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm.seq_num = 0l; data/wine-5.0/dlls/secur32/ntlm.c:901:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_a4i = SECUR32_arc4Alloc(); data/wine-5.0/dlls/secur32/ntlm.c:902:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_a4i = SECUR32_arc4Alloc(); data/wine-5.0/dlls/secur32/ntlm.c:903:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Init(helper->crypt.ntlm2.send_a4i, data/wine-5.0/dlls/secur32/ntlm.c:904:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seal_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:905:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Init(helper->crypt.ntlm2.recv_a4i, data/wine-5.0/dlls/secur32/ntlm.c:906:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seal_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:907:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seq_no = 0l; data/wine-5.0/dlls/secur32/ntlm.c:908:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seq_no = 0l; data/wine-5.0/dlls/secur32/ntlm.c:1037:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(want_flags, "SF"); data/wine-5.0/dlls/secur32/ntlm.c:1044:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SEAL"); data/wine-5.0/dlls/secur32/ntlm.c:1049:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SESSION_KEY"); data/wine-5.0/dlls/secur32/ntlm.c:1058:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(want_flags, " NTLMSSP_FEATURE_SIGN"); data/wine-5.0/dlls/secur32/ntlm.c:1081:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, want_flags, max_len - 1); data/wine-5.0/dlls/secur32/ntlm.c:1096:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "YR ", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:1185:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "KK ", max_len-1); data/wine-5.0/dlls/secur32/ntlm.c:1236:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "GF", max_len - 1); data/wine-5.0/dlls/secur32/ntlm.c:1252:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "GK", max_len - 1); data/wine-5.0/dlls/secur32/ntlm.c:1289:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm.a4i = SECUR32_arc4Alloc(); data/wine-5.0/dlls/secur32/ntlm.c:1290:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Init(helper->crypt.ntlm.a4i, helper->session_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:1291:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm.seq_num = 0l; data/wine-5.0/dlls/secur32/ntlm.c:1334:33: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Cleanup(helper->crypt.ntlm.a4i); data/wine-5.0/dlls/secur32/ntlm.c:1335:33: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Cleanup(helper->crypt.ntlm2.send_a4i); data/wine-5.0/dlls/secur32/ntlm.c:1336:33: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Cleanup(helper->crypt.ntlm2.recv_a4i); data/wine-5.0/dlls/secur32/ntlm.c:1337:23: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. heap_free(helper->crypt.ntlm2.send_sign_key); data/wine-5.0/dlls/secur32/ntlm.c:1338:23: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. heap_free(helper->crypt.ntlm2.send_seal_key); data/wine-5.0/dlls/secur32/ntlm.c:1339:23: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. heap_free(helper->crypt.ntlm2.recv_sign_key); data/wine-5.0/dlls/secur32/ntlm.c:1340:23: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. heap_free(helper->crypt.ntlm2.recv_seal_key); data/wine-5.0/dlls/secur32/ntlm.c:1579:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[0] = (helper->crypt.ntlm2.send_seq_no >> 0) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1580:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[1] = (helper->crypt.ntlm2.send_seq_no >> 8) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1581:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[2] = (helper->crypt.ntlm2.send_seq_no >> 16) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1582:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[3] = (helper->crypt.ntlm2.send_seq_no >> 24) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1584:24: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ++(helper->crypt.ntlm2.send_seq_no); data/wine-5.0/dlls/secur32/ntlm.c:1586:48: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. HMACMD5Init(&hmac_md5_ctx, helper->crypt.ntlm2.send_sign_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:1590:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[0] = (helper->crypt.ntlm2.recv_seq_no >> 0) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1591:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[1] = (helper->crypt.ntlm2.recv_seq_no >> 8) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1592:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[2] = (helper->crypt.ntlm2.recv_seq_no >> 16) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1593:34: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. seq_no[3] = (helper->crypt.ntlm2.recv_seq_no >> 24) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1595:24: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ++(helper->crypt.ntlm2.recv_seq_no); data/wine-5.0/dlls/secur32/ntlm.c:1597:48: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. HMACMD5Init(&hmac_md5_ctx, helper->crypt.ntlm2.recv_sign_key, 16); data/wine-5.0/dlls/secur32/ntlm.c:1613:45: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm2.send_a4i, digest, 8); data/wine-5.0/dlls/secur32/ntlm.c:1615:45: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm2.recv_a4i, digest, 8); data/wine-5.0/dlls/secur32/ntlm.c:1652:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sig[12] = (helper->crypt.ntlm.seq_num >> 0) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1653:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sig[13] = (helper->crypt.ntlm.seq_num >> 8) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1654:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sig[14] = (helper->crypt.ntlm.seq_num >> 16) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1655:28: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sig[15] = (helper->crypt.ntlm.seq_num >> 24) & 0xff; data/wine-5.0/dlls/secur32/ntlm.c:1657:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ++(helper->crypt.ntlm.seq_num); data/wine-5.0/dlls/secur32/ntlm.c:1660:41: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm.a4i, sig+4, 12); data/wine-5.0/dlls/secur32/ntlm.c:1839:37: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm2.send_a4i, data/wine-5.0/dlls/secur32/ntlm.c:1844:41: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm2.send_a4i, data/wine-5.0/dlls/secur32/ntlm.c:1861:37: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm.a4i, data/wine-5.0/dlls/secur32/ntlm.c:1864:37: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm.a4i, sig+4, 12); data/wine-5.0/dlls/secur32/ntlm.c:1906:37: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm2.recv_a4i, data/wine-5.0/dlls/secur32/ntlm.c:1912:37: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SECUR32_arc4Process(helper->crypt.ntlm.a4i, data/wine-5.0/dlls/secur32/schannel.c:199:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(subkey_name, protocol_config_keys[i].key_name); data/wine-5.0/dlls/secur32/schannel_gnutls.c:219:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(priority, "NORMAL:-%s", protocol_priority_flags[i].gnutls_flag); data/wine-5.0/dlls/secur32/schannel_gnutls.c:273:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, protocol_priority_flags[i].gnutls_flag); data/wine-5.0/dlls/secur32/schannel_gnutls.c:621:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ret, rsabaseW); data/wine-5.0/dlls/secur32/schannel_gnutls.c:638:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ret, rsabaseW); data/wine-5.0/dlls/secur32/schannel_gnutls.c:645:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ret, rsabaseW); data/wine-5.0/dlls/secur32/secur32.c:110:5: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ImpersonateSecurityContext, data/wine-5.0/dlls/secur32/secur32.c:141:5: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ImpersonateSecurityContext, data/wine-5.0/dlls/secur32/secur32.c:183:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, str); data/wine-5.0/dlls/secur32/secur32.c:290:26: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. inFnTableW->ImpersonateSecurityContext; data/wine-5.0/dlls/secur32/secur32.c:361:26: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. inFnTableA->ImpersonateSecurityContext; data/wine-5.0/dlls/secur32/secur32.c:776:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nextString, package->infoW.Name); data/wine-5.0/dlls/secur32/secur32.c:785:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(nextString, package->infoW.Comment); data/wine-5.0/dlls/secur32/secur32.c:1008:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpNameBuffer, domainInfo->Name.Buffer); data/wine-5.0/dlls/secur32/secur32.c:1009:29: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, bs); data/wine-5.0/dlls/secur32/secur32.c:1013:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, name); data/wine-5.0/dlls/secur32/secur32.c:1014:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, ds); data/wine-5.0/dlls/secur32/secur32.c:1064:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpNameBuffer, cnW); data/wine-5.0/dlls/secur32/secur32.c:1065:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, name); data/wine-5.0/dlls/secur32/secur32.c:1066:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, commaW); data/wine-5.0/dlls/secur32/secur32.c:1067:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, ComputersW); data/wine-5.0/dlls/secur32/secur32.c:1070:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, commaW); data/wine-5.0/dlls/secur32/secur32.c:1071:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, dcW); data/wine-5.0/dlls/secur32/secur32.c:1072:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, domainInfo->DnsDomainName.Buffer); data/wine-5.0/dlls/secur32/secur32.c:1075:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, commaW); data/wine-5.0/dlls/secur32/secur32.c:1076:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, dcW); data/wine-5.0/dlls/secur32/secur32.c:1077:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpNameBuffer, suffix); data/wine-5.0/dlls/secur32/secur32.c:1192:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpNameBuffer, samname); data/wine-5.0/dlls/secur32/secur32_priv.h:86:7: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. } crypt; data/wine-5.0/dlls/secur32/tests/ntlm.c:989:29: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. SecBufferDesc crypt; data/wine-5.0/dlls/secur32/tests/ntlm.c:1064:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.ulVersion = SECBUFFER_VERSION; data/wine-5.0/dlls/secur32/tests/ntlm.c:1065:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.cBuffers = 2; data/wine-5.0/dlls/secur32/tests/ntlm.c:1067:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers = fake_data; data/wine-5.0/dlls/secur32/tests/ntlm.c:1077:51: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pMakeSignature(&client.ctxt, 0, &crypt, 0); data/wine-5.0/dlls/secur32/tests/ntlm.c:1082:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers = data; data/wine-5.0/dlls/secur32/tests/ntlm.c:1097:51: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pMakeSignature(&client.ctxt, 0, &crypt, 0); data/wine-5.0/dlls/secur32/tests/ntlm.c:1100:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[0].pvBuffer, message_signature, data/wine-5.0/dlls/secur32/tests/ntlm.c:1101:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[0].cbBuffer), "Signature is not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1107:50: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pVerifySignature(&client.ctxt, &crypt, 0, &qop); data/wine-5.0/dlls/secur32/tests/ntlm.c:1114:50: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pVerifySignature(&client.ctxt, &crypt, 0, &qop); data/wine-5.0/dlls/secur32/tests/ntlm.c:1119:52: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pEncryptMessage(&client.ctxt, 0, &crypt, 0); data/wine-5.0/dlls/secur32/tests/ntlm.c:1130:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[0].pvBuffer, crypt_trailer_client, 8), "Crypt trailer not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1133:17: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (!memcmp(crypt.pBuffers[0].pvBuffer, crypt_trailer_client, crypt.pBuffers[0].cbBuffer)) data/wine-5.0/dlls/secur32/tests/ntlm.c:1133:67: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (!memcmp(crypt.pBuffers[0].pvBuffer, crypt_trailer_client, crypt.pBuffers[0].cbBuffer)) data/wine-5.0/dlls/secur32/tests/ntlm.c:1135:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[0].pvBuffer, crypt_trailer_client, data/wine-5.0/dlls/secur32/tests/ntlm.c:1136:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[0].cbBuffer), "Crypt trailer not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1137:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[1].pvBuffer, crypt_message_client, data/wine-5.0/dlls/secur32/tests/ntlm.c:1138:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[1].cbBuffer), "Crypt message not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1139:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (memcmp(crypt.pBuffers[1].pvBuffer, crypt_message_client, data/wine-5.0/dlls/secur32/tests/ntlm.c:1140:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[1].cbBuffer)) data/wine-5.0/dlls/secur32/tests/ntlm.c:1143:29: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. for (i = 0; i < crypt.pBuffers[1].cbBuffer; i++) data/wine-5.0/dlls/secur32/tests/ntlm.c:1146:53: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. printf("0x%02x,", ((unsigned char *)crypt.pBuffers[1].pvBuffer)[i]); data/wine-5.0/dlls/secur32/tests/ntlm.c:1157:53: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pDecryptMessage(&client.ctxt, &crypt, 0, &qop); data/wine-5.0/dlls/secur32/tests/ntlm.c:1161:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[1].pvBuffer, message_binary, data/wine-5.0/dlls/secur32/tests/ntlm.c:1162:20: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[1].cbBuffer), data/wine-5.0/dlls/secur32/tests/ntlm.c:1170:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.cBuffers = ARRAY_SIZE(complex_data); data/wine-5.0/dlls/secur32/tests/ntlm.c:1171:5: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers = complex_data; data/wine-5.0/dlls/secur32/tests/ntlm.c:1191:51: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pMakeSignature(&client.ctxt, 0, &crypt, 0); data/wine-5.0/dlls/secur32/tests/ntlm.c:1194:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[3].pvBuffer, message_signature, data/wine-5.0/dlls/secur32/tests/ntlm.c:1195:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[3].cbBuffer), "Signature is not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1199:50: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pVerifySignature(&client.ctxt, &crypt, 0, &qop); data/wine-5.0/dlls/secur32/tests/ntlm.c:1204:52: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pEncryptMessage(&client.ctxt, 0, &crypt, 0); data/wine-5.0/dlls/secur32/tests/ntlm.c:1208:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[3].pvBuffer, crypt_trailer_client2, 8), "Crypt trailer not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1210:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (memcmp(crypt.pBuffers[3].pvBuffer, crypt_trailer_client2, data/wine-5.0/dlls/secur32/tests/ntlm.c:1211:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[3].cbBuffer)) goto end; data/wine-5.0/dlls/secur32/tests/ntlm.c:1213:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. ok(!memcmp(crypt.pBuffers[1].pvBuffer, crypt_message_client2, data/wine-5.0/dlls/secur32/tests/ntlm.c:1214:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[1].cbBuffer), "Crypt message not as expected.\n"); data/wine-5.0/dlls/secur32/tests/ntlm.c:1215:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. if (memcmp(crypt.pBuffers[1].pvBuffer, crypt_message_client2, data/wine-5.0/dlls/secur32/tests/ntlm.c:1216:16: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. crypt.pBuffers[1].cbBuffer)) data/wine-5.0/dlls/secur32/tests/ntlm.c:1219:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. for (i = 0; i < crypt.pBuffers[1].cbBuffer; i++) data/wine-5.0/dlls/secur32/tests/ntlm.c:1222:49: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. printf("0x%02x,", ((unsigned char *)crypt.pBuffers[1].pvBuffer)[i]); data/wine-5.0/dlls/secur32/tests/ntlm.c:1231:49: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. sec_status = pDecryptMessage(&client.ctxt, &crypt, 0, &qop); data/wine-5.0/dlls/secur32/tests/schannel.c:299:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ms_def_prov_w, MS_DEF_PROV_W); data/wine-5.0/dlls/secur32/util.c:96:13: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_sign_key = heap_alloc(16); data/wine-5.0/dlls/secur32/util.c:97:13: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seal_key = heap_alloc(16); data/wine-5.0/dlls/secur32/util.c:98:13: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_sign_key = heap_alloc(16); data/wine-5.0/dlls/secur32/util.c:99:13: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seal_key = heap_alloc(16); data/wine-5.0/dlls/secur32/util.c:104:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_sign_key); data/wine-5.0/dlls/secur32/util.c:106:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seal_key); data/wine-5.0/dlls/secur32/util.c:108:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_sign_key); data/wine-5.0/dlls/secur32/util.c:110:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seal_key); data/wine-5.0/dlls/secur32/util.c:115:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_sign_key); data/wine-5.0/dlls/secur32/util.c:117:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.send_seal_key); data/wine-5.0/dlls/secur32/util.c:119:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_sign_key); data/wine-5.0/dlls/secur32/util.c:121:25: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. helper->crypt.ntlm2.recv_seal_key); data/wine-5.0/dlls/secur32/wrapper.c:570:24: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. SECURITY_STATUS WINAPI ImpersonateSecurityContext(PCtxtHandle phContext) data/wine-5.0/dlls/secur32/wrapper.c:582:45: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. if (package->provider->fnTableW.ImpersonateSecurityContext) data/wine-5.0/dlls/secur32/wrapper.c:583:51: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = package->provider->fnTableW.ImpersonateSecurityContext( data/wine-5.0/dlls/secur32/wrapper.c:787:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(nextString, package->infoW.Name, nameLen); data/wine-5.0/dlls/secur32/wrapper.c:795:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(nextString, package->infoW.Comment, commentLen); data/wine-5.0/dlls/serialui/confdlg.c:353:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szTitle, ARRAY_SIZE(szTitle), format, info->lpszDevice); data/wine-5.0/dlls/serialui/confdlg.c:501:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szKeyName, ARRAY_SIZE(szKeyName), fmt, lpszCommKey, lpszDevice); data/wine-5.0/dlls/serialui/confdlg.c:557:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szKeyName, lpszDevice, r); /* simulate a lstrcmpnW */ data/wine-5.0/dlls/serialui/confdlg.c:574:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(szKeyName, ARRAY_SIZE(szKeyName), fmt, lpszCommKey, lpszDevice); data/wine-5.0/dlls/serialui/tests/confdlg.c:92:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_comA, i); data/wine-5.0/dlls/serialui/tests/confdlg.c:167:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_comA, i); data/wine-5.0/dlls/serialui/tests/confdlg.c:256:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_comA, i); data/wine-5.0/dlls/serialui/tests/confdlg.c:275:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(bufferA, str_colonA); data/wine-5.0/dlls/serialui/tests/confdlg.c:348:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufferA, fmt_comA, i); data/wine-5.0/dlls/serialui/tests/confdlg.c:368:13: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(bufferA, str_colonA); data/wine-5.0/dlls/serialui/tests/confdlg.c:369:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(bufferW, str_colonW); data/wine-5.0/dlls/setupapi/devinst.c:281:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(guidStr, 39, fmt, guid->Data1, guid->Data2, guid->Data3, data/wine-5.0/dlls/setupapi/devinst.c:298:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, DeviceClasses); data/wine-5.0/dlls/setupapi/devinst.c:299:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/setupapi/devinst.c:301:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/setupapi/devinst.c:303:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, iface->symlink); data/wine-5.0/dlls/setupapi/devinst.c:329:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, DeviceClasses); data/wine-5.0/dlls/setupapi/devinst.c:330:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/setupapi/devinst.c:332:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/setupapi/devinst.c:334:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, iface->symlink); data/wine-5.0/dlls/setupapi/devinst.c:341:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/setupapi/devinst.c:342:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, hashW); data/wine-5.0/dlls/setupapi/devinst.c:345:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, iface->refstr); data/wine-5.0/dlls/setupapi/devinst.c:392:23: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. int printed = swprintf(ret, len, fmt, instanceId, guidStr); data/wine-5.0/dlls/setupapi/devinst.c:401:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret + printed + 1, ReferenceString); data/wine-5.0/dlls/setupapi/devinst.c:537:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG open_driver_key(struct device *device, REGSAM access, HKEY *key) data/wine-5.0/dlls/setupapi/devinst.c:553:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(l = RegOpenKeyExW(class_key, path, 0, access, key))) data/wine-5.0/dlls/setupapi/devinst.c:586:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slash); data/wine-5.0/dlls/setupapi/devinst.c:591:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(path + 39, ARRAY_SIZE(path) - 39, formatW, i++); data/wine-5.0/dlls/setupapi/devinst.c:707:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id, device->instanceId); data/wine-5.0/dlls/setupapi/devinst.c:1601:17: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (swprintf(id, ARRAY_SIZE(id), formatW, name, instance_id) == -1) data/wine-5.0/dlls/setupapi/devinst.c:1629:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(id, name); data/wine-5.0/dlls/setupapi/devinst.c:1838:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(DeviceInstanceId, device->instanceId); data/wine-5.0/dlls/setupapi/devinst.c:1894:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szBuffer, InfSectionName); data/wine-5.0/dlls/setupapi/devinst.c:1900:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&szBuffer[dwLength], NtPlatformExtension); data/wine-5.0/dlls/setupapi/devinst.c:1906:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&szBuffer[dwLength], NtExtension); data/wine-5.0/dlls/setupapi/devinst.c:1913:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&szBuffer[dwLength], WinExtension); data/wine-5.0/dlls/setupapi/devinst.c:1930:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(InfSectionWithExt, szBuffer); data/wine-5.0/dlls/setupapi/devinst.c:2334:33: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (swprintf(id, ARRAY_SIZE(id), fmt, enumerator, data/wine-5.0/dlls/setupapi/devinst.c:2654:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static LONG create_iface_key(const struct device_iface *iface, REGSAM access, HKEY *key) data/wine-5.0/dlls/setupapi/devinst.c:2656:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return RegCreateKeyExW(iface->refstr_key, DeviceParameters, 0, NULL, 0, access, NULL, key, NULL); data/wine-5.0/dlls/setupapi/devinst.c:2663:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. SP_DEVICE_INTERFACE_DATA *iface_data, DWORD reserved, REGSAM access, data/wine-5.0/dlls/setupapi/devinst.c:2671:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. devinfo, iface_data, reserved, access, hinf, debugstr_w(section)); data/wine-5.0/dlls/setupapi/devinst.c:2682:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = create_iface_key(iface, access, ¶ms_key); data/wine-5.0/dlls/setupapi/devinst.c:2932:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(DeviceInterfaceDetailData->DevicePath, iface->symlink); data/wine-5.0/dlls/setupapi/devinst.c:3129:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(FullBuffer, ControlClass); data/wine-5.0/dlls/setupapi/devinst.c:3130:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(FullBuffer, slash); data/wine-5.0/dlls/setupapi/devinst.c:3131:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(FullBuffer, Buffer); data/wine-5.0/dlls/setupapi/devinst.c:3872:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(property_hkey_path + 38, ARRAY_SIZE(property_hkey_path) - 38, formatW, key->pid); data/wine-5.0/dlls/setupapi/devinst.c:4040:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, device->instanceId, len); data/wine-5.0/dlls/setupapi/devinst.c:4167:26: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dret < size) lstrcpyW(class_name, buffer); data/wine-5.0/dlls/setupapi/devinst.c:4220:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(key_path + 49, ARRAY_SIZE(key_path) - 49, formatW, prop_key->pid); data/wine-5.0/dlls/setupapi/devinst.c:4296:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(section_ext, dotInterfaces); data/wine-5.0/dlls/setupapi/devinst.c:4364:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(coinst_key_ext, coinstallersW); data/wine-5.0/dlls/setupapi/devinst.c:4455:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(mfg_key, mfg_name); data/wine-5.0/dlls/setupapi/devinst.c:4487:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(device->drivers[count - 1].inf_path, path); data/wine-5.0/dlls/setupapi/devinst.c:4488:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(device->drivers[count - 1].manufacturer, mfg_name); data/wine-5.0/dlls/setupapi/devinst.c:4489:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(device->drivers[count - 1].mfg_key, mfg_key_ext); data/wine-5.0/dlls/setupapi/devinst.c:4535:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir, device->params.DriverPath); data/wine-5.0/dlls/setupapi/devinst.c:4537:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir, default_path); data/wine-5.0/dlls/setupapi/devinst.c:4538:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dir, backslashW); data/wine-5.0/dlls/setupapi/devinst.c:4539:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dir, wildcardW); data/wine-5.0/dlls/setupapi/devinst.c:4547:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file, dir); data/wine-5.0/dlls/setupapi/devinst.c:4548:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file + lstrlenW(file) - 1, find_data.cFileName); data/wine-5.0/dlls/setupapi/devinst.c:4609:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver_data->Description, device->drivers[index].description); data/wine-5.0/dlls/setupapi/devinst.c:4610:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver_data->MfgName, device->drivers[index].manufacturer); data/wine-5.0/dlls/setupapi/devinst.c:4702:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(section_ext, dotInterfaces); data/wine-5.0/dlls/setupapi/devinst.c:4789:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subsection, section_ext); data/wine-5.0/dlls/setupapi/devinst.c:4790:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(subsection, dothwW); data/wine-5.0/dlls/setupapi/devinst.c:4795:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subsection, section_ext); data/wine-5.0/dlls/setupapi/devinst.c:4796:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(subsection, dotservicesW); data/wine-5.0/dlls/setupapi/dialog.c:116:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(params->PathBuffer, aux); data/wine-5.0/dlls/setupapi/dialog.c:134:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ofn.lpstrFile, params->FileSought); data/wine-5.0/dlls/setupapi/dialog.c:251:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(filepath, ARRAY_SIZE(filepath), L"%s\\%s", PathToSource, FileSought); data/wine-5.0/dlls/setupapi/dialog.c:262:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(PathBuffer, PathToSource); data/wine-5.0/dlls/setupapi/dirid.c:66:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( unknown_dirid, unknown_str ); data/wine-5.0/dlls/setupapi/dirid.c:103:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Drivers ); data/wine-5.0/dlls/setupapi/dirid.c:107:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Inf ); data/wine-5.0/dlls/setupapi/dirid.c:111:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Help ); data/wine-5.0/dlls/setupapi/dirid.c:115:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Fonts ); data/wine-5.0/dlls/setupapi/dirid.c:119:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Viewers ); data/wine-5.0/dlls/setupapi/dirid.c:130:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, System ); data/wine-5.0/dlls/setupapi/dirid.c:135:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, Spool ); data/wine-5.0/dlls/setupapi/diskspace.c:84:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(list->Drives[list->dwDriveCount].lpzName,ptr); data/wine-5.0/dlls/setupapi/diskspace.c:187:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driveW,DriveSpec); data/wine-5.0/dlls/setupapi/diskspace.c:188:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driveW,bkslsh); data/wine-5.0/dlls/setupapi/fakedll.c:386:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, name); data/wine-5.0/dlls/setupapi/fakedll.c:408:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), winedlldirW, idx ); data/wine-5.0/dlls/setupapi/fakedll.c:434:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file + pos, name ); data/wine-5.0/dlls/setupapi/fakedll.c:448:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file + pos + len + 1, fakeW ); data/wine-5.0/dlls/setupapi/fakedll.c:460:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file + pos + len + 1, fakeW ); data/wine-5.0/dlls/setupapi/fakedll.c:676:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path + pos, filename ); data/wine-5.0/dlls/setupapi/fakedll.c:709:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path + pos, extensionW ); data/wine-5.0/dlls/setupapi/fakedll.c:792:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( new_buffer + (arch.ptr - manifest), current_arch ); data/wine-5.0/dlls/setupapi/fakedll.c:881:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ext) lstrcpyW( end, ext ); data/wine-5.0/dlls/setupapi/fakedll.c:922:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, starW ); data/wine-5.0/dlls/setupapi/fakedll.c:930:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, data.name ); data/wine-5.0/dlls/setupapi/fakedll.c:933:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( name, backslashW ); data/wine-5.0/dlls/setupapi/fakedll.c:934:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( name, data.name ); data/wine-5.0/dlls/setupapi/fakedll.c:935:44: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!wcschr( data.name, '.' )) lstrcatW( name, default_ext ); data/wine-5.0/dlls/setupapi/fakedll.c:963:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dest, dirname ); data/wine-5.0/dlls/setupapi/fakedll.c:968:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, build_dir ); data/wine-5.0/dlls/setupapi/fakedll.c:969:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, dllsW ); data/wine-5.0/dlls/setupapi/fakedll.c:971:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, build_dir ); data/wine-5.0/dlls/setupapi/fakedll.c:972:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, programsW ); data/wine-5.0/dlls/setupapi/fakedll.c:977:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, path ); data/wine-5.0/dlls/setupapi/fakedll.c:979:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, path ); data/wine-5.0/dlls/setupapi/fakedll.c:980:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, fakedllsW ); data/wine-5.0/dlls/setupapi/install.c:161:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_root, PARSER_get_inf_filename( hinf ) ); data/wine-5.0/dlls/setupapi/install.c:563:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( cmd_line, len, format, path, args ); data/wine-5.0/dlls/setupapi/install.c:689:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, buffer ); data/wine-5.0/dlls/setupapi/install.c:737:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, buffer ); data/wine-5.0/dlls/setupapi/install.c:784:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry,buffer); data/wine-5.0/dlls/setupapi/install.c:786:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(string,divider); data/wine-5.0/dlls/setupapi/install.c:790:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry,buffer); data/wine-5.0/dlls/setupapi/install.c:877:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( lnkpath_end, dotlnk ); data/wine-5.0/dlls/setupapi/install.c:901:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( cmdline_end, dir ); data/wine-5.0/dlls/setupapi/install.c:1232:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( section, cmdline, MAX_PATH ); data/wine-5.0/dlls/setupapi/install.c:1268:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( section, servicesW ); data/wine-5.0/dlls/setupapi/install.c:1603:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filter, dir ); data/wine-5.0/dlls/setupapi/install.c:1628:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filter, infdir ); data/wine-5.0/dlls/setupapi/install.c:1630:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filter, inf ); data/wine-5.0/dlls/setupapi/install.c:1666:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( fullname, filter ); data/wine-5.0/dlls/setupapi/install.c:1669:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( fullname, finddata.cFileName ); data/wine-5.0/dlls/setupapi/install.c:1683:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ptr, finddata.cFileName ); data/wine-5.0/dlls/setupapi/misc.c:141:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpDst, lpSrc); data/wine-5.0/dlls/setupapi/misc.c:922:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, infW ); data/wine-5.0/dlls/setupapi/misc.c:923:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, wildcardW ); data/wine-5.0/dlls/setupapi/misc.c:928:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, infW ); data/wine-5.0/dlls/setupapi/misc.c:929:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, find_data.cFileName ); data/wine-5.0/dlls/setupapi/misc.c:1001:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, inf ); data/wine-5.0/dlls/setupapi/misc.c:1002:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, wcsrchr( source, '\\' ) + 1 ); data/wine-5.0/dlls/setupapi/misc.c:1010:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, inf ); data/wine-5.0/dlls/setupapi/misc.c:1011:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( target + lstrlenW(target), ARRAY_SIZE(target) - lstrlenW(target), formatW, i ); data/wine-5.0/dlls/setupapi/misc.c:1036:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( source_cat, source ); data/wine-5.0/dlls/setupapi/misc.c:1040:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, catalog_file ); data/wine-5.0/dlls/setupapi/misc.c:1075:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dest, target ); data/wine-5.0/dlls/setupapi/misc.c:1125:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, infW ); data/wine-5.0/dlls/setupapi/misc.c:1126:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( target, inf_file ); data/wine-5.0/dlls/setupapi/misc.c:1318:42: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (name && len >= nb_chars) lstrcpyA( name, nameA ); data/wine-5.0/dlls/setupapi/misc.c:1368:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, source ); data/wine-5.0/dlls/setupapi/misc.c:1513:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->FullTargetName, context_info->target ); data/wine-5.0/dlls/setupapi/misc.c:1672:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, setupactlog); data/wine-5.0/dlls/setupapi/misc.c:1685:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, setuperrlog); data/wine-5.0/dlls/setupapi/parser.c:439:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, string ); data/wine-5.0/dlls/setupapi/parser.c:1138:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, Inf ); data/wine-5.0/dlls/setupapi/parser.c:1139:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( p, name ); data/wine-5.0/dlls/setupapi/parser.c:1143:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, System32 ); data/wine-5.0/dlls/setupapi/parser.c:1144:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( p, name ); data/wine-5.0/dlls/setupapi/parser.c:1222:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( Buffer, Layout ); data/wine-5.0/dlls/setupapi/query.c:89:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((LPWSTR)&buffer->VersionData[0], filename); data/wine-5.0/dlls/setupapi/query.c:105:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inf_path, system32W); data/wine-5.0/dlls/setupapi/query.c:106:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inf_path, InfSpec); data/wine-5.0/dlls/setupapi/query.c:114:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(inf_path, infW); data/wine-5.0/dlls/setupapi/query.c:115:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inf_path, InfSpec); data/wine-5.0/dlls/setupapi/query.c:319:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ReturnBuffer, ptr); data/wine-5.0/dlls/setupapi/query.c:504:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( source_id_str, ARRAY_SIZE(source_id_str), fmt, source_id ); data/wine-5.0/dlls/setupapi/query.c:621:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, dir ); data/wine-5.0/dlls/setupapi/query.c:716:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(OriginalFileInfo->OriginalInfName, inf_name); data/wine-5.0/dlls/setupapi/queue.c:125:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, src1 ); data/wine-5.0/dlls/setupapi/queue.c:134:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, src2 ); data/wine-5.0/dlls/setupapi/queue.c:142:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, src3 ); data/wine-5.0/dlls/setupapi/queue.c:324:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( src_root, backslashW ); data/wine-5.0/dlls/setupapi/queue.c:384:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->FullTargetName, ctx->dst ); data/wine-5.0/dlls/setupapi/queue.c:395:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (WCHAR *)param2, info->CabinetPath ); data/wine-5.0/dlls/setupapi/queue.c:423:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, root); data/wine-5.0/dlls/setupapi/queue.c:424:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, backslashW); data/wine-5.0/dlls/setupapi/queue.c:425:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, cabinet); data/wine-5.0/dlls/setupapi/queue.c:531:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(queue->sources[i]->root, root); data/wine-5.0/dlls/setupapi/queue.c:673:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_root_buffer, src_root ); data/wine-5.0/dlls/setupapi/queue.c:818:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_root_buffer, src_root ); data/wine-5.0/dlls/setupapi/queue.c:829:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_root_buffer, src_root ); data/wine-5.0/dlls/setupapi/queue.c:835:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src_file, dst_file ); data/wine-5.0/dlls/setupapi/queue.c:978:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_path, path); data/wine-5.0/dlls/setupapi/queue.c:1253:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dest_path, dest_dir ); data/wine-5.0/dlls/setupapi/queue.c:1254:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest_path, backslashW ); data/wine-5.0/dlls/setupapi/queue.c:1276:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, root ); data/wine-5.0/dlls/setupapi/queue.c:1281:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, source ); data/wine-5.0/dlls/setupapi/queue.c:1283:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dest_path, dest ); data/wine-5.0/dlls/setupapi/queue.c:1415:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src_path, op->src_path); data/wine-5.0/dlls/setupapi/queue.c:1418:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(op->media->root, backslashW); data/wine-5.0/dlls/setupapi/queue.c:1419:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(op->media->root, op->src_path); data/wine-5.0/dlls/setupapi/queue.c:1443:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(op->media->root, newpath); data/wine-5.0/dlls/setupapi/queue.c:1481:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(op->media->root, newpath); data/wine-5.0/dlls/setupapi/queue.c:1511:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(op->media->root, newpath); data/wine-5.0/dlls/setupapi/queue.c:1763:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( (char *)param2, media->SourcePath ); data/wine-5.0/dlls/setupapi/queue.c:1832:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( (WCHAR *)param2, media->SourcePath ); data/wine-5.0/dlls/setupapi/setupcab.c:333:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( phsc->most_recent_target, fici.FullTargetName ); data/wine-5.0/dlls/setupapi/setupcab.c:371:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(phsc->most_recent_cabinet_name, pfdin->psz1); data/wine-5.0/dlls/setupapi/setupcab.c:379:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pfdin->psz3, mysterio, SIZEOF_MYSTERIO); data/wine-5.0/dlls/setupapi/setupcab.c:474:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( phsc->most_recent_target, fici.FullTargetName ); data/wine-5.0/dlls/setupapi/setupcab.c:579:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pszCabinet, p); data/wine-5.0/dlls/setupapi/setupcab.c:582:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pszCabinet, CabinetFile); data/wine-5.0/dlls/setupapi/setupcab.c:589:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(my_hsc.most_recent_cabinet_name, pszCabinet); data/wine-5.0/dlls/setupapi/setupcab.c:639:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(my_hsc.most_recent_cabinet_name, p); data/wine-5.0/dlls/setupapi/setupcab.c:645:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(my_hsc.most_recent_cabinet_name, CabinetFile); data/wine-5.0/dlls/setupapi/stringtable.c:422:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptrW, string); data/wine-5.0/dlls/setupapi/stringtable.c:567:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, ptrW); data/wine-5.0/dlls/setupapi/stubs.c:85:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DEVINST dnDevInst, REGSAM access, ULONG ulHardwareProfile, REGDISPOSITION disposition, data/wine-5.0/dlls/setupapi/stubs.c:88:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("0x%08x 0x%08x 0x%08x 0x%08x %p 0x%08x : stub\n", dnDevInst, access, ulHardwareProfile, data/wine-5.0/dlls/setupapi/tests/devinst.c:153:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, ptr + 1); data/wine-5.0/dlls/setupapi/tests/devinst.c:1827:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(filename, inffile); data/wine-5.0/dlls/setupapi/tests/devinst.c:2336:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(params.DriverPath, inf_path); data/wine-5.0/dlls/setupapi/tests/devinst.c:2387:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(inf_path, "%s/test1.inf", inf_dir); data/wine-5.0/dlls/setupapi/tests/devinst.c:2389:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(inf_path2, "%s/test2.inf", inf_dir); data/wine-5.0/dlls/setupapi/tests/devinst.c:2403:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(params.DriverPath, inf_dir); data/wine-5.0/dlls/setupapi/tests/install.c:99:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(pccab->szCab, pv, pccab->iCab); data/wine-5.0/dlls/setupapi/tests/install.c:197:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszTempName, tempname); data/wine-5.0/dlls/setupapi/tests/install.c:238:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/install.c:239:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/setupapi/tests/install.c:240:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file); data/wine-5.0/dlls/setupapi/tests/install.c:242:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(filename, file); data/wine-5.0/dlls/setupapi/tests/install.c:260:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cabParams.szCabPath, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/install.c:261:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cabParams.szCabPath, "\\"); data/wine-5.0/dlls/setupapi/tests/install.c:262:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cabParams.szCab, name); data/wine-5.0/dlls/setupapi/tests/install.c:311:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %d %s", section, mode, path); data/wine-5.0/dlls/setupapi/tests/install.c:337:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:346:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, infwithspaces); data/wine-5.0/dlls/setupapi/tests/install.c:350:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "\"%s\\%s\"", CURR_DIR, infwithspaces); data/wine-5.0/dlls/setupapi/tests/install.c:381:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:414:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:447:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:567:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:581:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:631:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(driver, windir); data/wine-5.0/dlls/setupapi/tests/install.c:632:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(driver, "\\system32\\drivers\\winetest.sys"); data/wine-5.0/dlls/setupapi/tests/install.c:640:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:692:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestDir", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:701:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:704:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestItem.lnk", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:705:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestDir", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:707:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestDir\\TestItem2.lnk", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:709:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestGroup", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:712:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestItem.lnk", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:714:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestDir\\TestItem2.lnk", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:716:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestItem2.lnk", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:718:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestDir", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:720:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\TestGroup", commonprogs); data/wine-5.0/dlls/setupapi/tests/install.c:955:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buffer, dirid_inf, dirid); data/wine-5.0/dlls/setupapi/tests/install.c:959:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:1038:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:1359:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:1458:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\%s", CURR_DIR, inffile); data/wine-5.0/dlls/setupapi/tests/install.c:2052:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(CURR_DIR, temp_path); data/wine-5.0/dlls/setupapi/tests/misc.c:71:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, ptr + 1); data/wine-5.0/dlls/setupapi/tests/misc.c:169:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/misc.c:207:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/misc.c:209:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:223:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(orig_dest, dest); data/wine-5.0/dlls/setupapi/tests/misc.c:292:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pnf, dest); data/wine-5.0/dlls/setupapi/tests/misc.c:307:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(orig_dest, dest); data/wine-5.0/dlls/setupapi/tests/misc.c:321:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pnf, dest); data/wine-5.0/dlls/setupapi/tests/misc.c:329:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pnf, dest); data/wine-5.0/dlls/setupapi/tests/misc.c:335:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(orig_dest, tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:657:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(p + 1, "wine"); data/wine-5.0/dlls/setupapi/tests/misc.c:691:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(p + 1, zip_multi_tests[i].filename); data/wine-5.0/dlls/setupapi/tests/parser.c:424:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, STD_HEADER "[Test]\n" ); data/wine-5.0/dlls/setupapi/tests/parser.c:425:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, key_names[i].data ); data/wine-5.0/dlls/setupapi/tests/parser.c:483:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, field ); data/wine-5.0/dlls/setupapi/tests/parser.c:650:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, STD_HEADER "[TestSection]\n" ); data/wine-5.0/dlls/setupapi/tests/parser.c:651:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, keys[i].key ); data/wine-5.0/dlls/setupapi/tests/parser.c:653:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, keys[i].fields ); data/wine-5.0/dlls/setupapi/tests/query.c:159:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_filename, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:160:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "\\"); data/wine-5.0/dlls/setupapi/tests/query.c:161:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:261:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_two, WIN_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:262:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_two, "\\system32\\"); data/wine-5.0/dlls/setupapi/tests/query.c:263:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_two, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:282:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_one, WIN_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:283:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_one, "\\inf\\"); data/wine-5.0/dlls/setupapi/tests/query.c:284:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_one, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:318:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_filename, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:319:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "\\"); data/wine-5.0/dlls/setupapi/tests/query.c:320:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:365:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_filename, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:366:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "\\"); data/wine-5.0/dlls/setupapi/tests/query.c:367:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:413:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(inf_filename, CURR_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:414:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "\\"); data/wine-5.0/dlls/setupapi/tests/query.c:415:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(inf_filename, "test.inf"); data/wine-5.0/dlls/setupapi/tests/query.c:435:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destfile, WIN_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:437:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(destfile, "LANCOM"); data/wine-5.0/dlls/setupapi/tests/query.c:453:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destfile, WIN_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:489:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destfile, WIN_DIR); data/wine-5.0/dlls/setupapi/tests/query.c:507:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(destfile, WIN_DIR); data/wine-5.0/dlls/setupx.dll16/devinst16.c:112:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpdi->szClassName, lpszClassName); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:342:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, LDID_Data[n].StdString); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:496:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( pCurrLDD->pszPath, pldd->pszPath ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:501:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( pCurrLDD->pszVolLabel, pldd->pszVolLabel ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:506:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( pCurrLDD->pszDiskName, pldd->pszDiskName ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:598:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPath, ldd.pszPath); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:150:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, lpszName); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:188:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lpszBuffer, vhstrlist[vhstr]->pStr); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:404:19: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, vsmGetStringRawName16(lpvfs->vhstrDir)); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:407:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buffer, vsmGetStringRawName16(lpvfs->vhstrFileName)); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:448:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fn_src, VcpExplain16(lpvn, VCPEX_SRC_FULL)); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:449:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fn_dst, VcpExplain16(lpvn, VCPEX_DST_FULL)); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:627:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, REG_INSTALLEDFILES); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:630:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, REGPART_RENAME); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:652:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, BackupDir); data/wine-5.0/dlls/shcore/main.c:403:19: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). argv[0] = d = lstrcpyW((WCHAR *)(argv + argc + 1), cmdline); data/wine-5.0/dlls/shcore/main.c:1057:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access, share, creation_disposition, len; data/wine-5.0/dlls/shcore/main.c:1115:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. hFile = CreateFileW(path, access, share, NULL, creation_disposition, attributes, 0); data/wine-5.0/dlls/shcore/main.c:1704:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dest, src, dest_len); data/wine-5.0/dlls/shcore/main.c:1749:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, src, dest_len); data/wine-5.0/dlls/shcore/tests/shcore.c:306:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, strW); data/wine-5.0/dlls/shcore/tests/shcore.c:312:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, strW); data/wine-5.0/dlls/shcore/tests/shcore.c:318:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, strW); data/wine-5.0/dlls/shcore/tests/shcore.c:324:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, strW); data/wine-5.0/dlls/shcore/tests/shcore.c:330:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff, strW); data/wine-5.0/dlls/shcore/tests/shcore.c:436:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:445:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:542:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:555:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:570:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:590:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:608:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shcore/tests/shcore.c:629:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, initial_buffer); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:361:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(out, buffer, outlen); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:408:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(out, buffer_out); data/wine-5.0/dlls/shell.dll16/shell.c:180:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (lpszFile, lpDrop, wLength); data/wine-5.0/dlls/shell32/assoc.c:688:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(keypath, shellexW); data/wine-5.0/dlls/shell32/assoc.c:947:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, urlassoc); data/wine-5.0/dlls/shell32/assoc.c:949:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, mimeassoc); data/wine-5.0/dlls/shell32/assoc.c:957:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slash); data/wine-5.0/dlls/shell32/assoc.c:958:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, query); data/wine-5.0/dlls/shell32/assoc.c:959:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slash); data/wine-5.0/dlls/shell32/assoc.c:960:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, choice); data/wine-5.0/dlls/shell32/brsfolder.c:599:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(p, pnmtv->item.pszText); data/wine-5.0/dlls/shell32/classes.c:66:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szTemp + (bPrependDot?1:0), szExtension, MAX_EXTENSION_LENGTH); data/wine-5.0/dlls/shell32/classes.c:100:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szTemp + (bPrependDot?1:0), szExtension, MAX_EXTENSION_LENGTH); data/wine-5.0/dlls/shell32/classes.c:134:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest, szVerb, len); data/wine-5.0/dlls/shell32/classes.c:143:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sTemp, swShell); data/wine-5.0/dlls/shell32/classes.c:144:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, szDest); data/wine-5.0/dlls/shell32/classes.c:145:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, swCommand); data/wine-5.0/dlls/shell32/classes.c:155:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sTemp, swShell); data/wine-5.0/dlls/shell32/classes.c:156:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, swOpen); data/wine-5.0/dlls/shell32/classes.c:157:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, swCommand); data/wine-5.0/dlls/shell32/classes.c:161:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest, swOpen, len); data/wine-5.0/dlls/shell32/classes.c:193:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sTemp, swShell); data/wine-5.0/dlls/shell32/classes.c:194:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, sTempVerb); data/wine-5.0/dlls/shell32/classes.c:195:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, swCommand); data/wine-5.0/dlls/shell32/classes.c:234:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest, sTemp, len); data/wine-5.0/dlls/shell32/classes.c:258:6: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szDest, sTemp, len); data/wine-5.0/dlls/shell32/classes.c:280:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(sTemp, szClass, MAX_PATH); data/wine-5.0/dlls/shell32/classes.c:281:2: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sTemp, swDefaultIcon); data/wine-5.0/dlls/shell32/classes.c:305:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(sTemp, "%s\\DefaultIcon",szClass); data/wine-5.0/dlls/shell32/clipboard.c:96:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wszFileName, wszRootPath); data/wine-5.0/dlls/shell32/clipboard.c:102:4: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(((WCHAR*)pDropFiles)+offset, wszFileName); data/wine-5.0/dlls/shell32/control.c:685:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, wszAllCpl); data/wine-5.0/dlls/shell32/control.c:689:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, fd.cFileName); data/wine-5.0/dlls/shell32/control.c:726:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). end = lstrcpyW(buffer, wszCmd); data/wine-5.0/dlls/shell32/cpanelfolder.c:262:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p->szName, name); data/wine-5.0/dlls/shell32/cpanelfolder.c:263:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p->szName+tmp.u.cpanel.offsDispName, displayName); data/wine-5.0/dlls/shell32/cpanelfolder.c:264:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p->szName+tmp.u.cpanel.offsComment, comment); data/wine-5.0/dlls/shell32/cpanelfolder.c:428:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, wfd.cFileName); data/wine-5.0/dlls/shell32/cpanelfolder.c:659:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szPath, pcpanel->szName+pcpanel->offsDispName); data/wine-5.0/dlls/shell32/cpanelfolder.c:688:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(strRet->u.cStr, szPath, MAX_PATH); data/wine-5.0/dlls/shell32/cpanelfolder.c:787:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(psd->str.u.cStr, pcpanel->szName+pcpanel->offsComment); data/wine-5.0/dlls/shell32/cpanelfolder.c:1080:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path+1, pcpanel->szName); data/wine-5.0/dlls/shell32/cpanelfolder.c:1083:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\" "); data/wine-5.0/dlls/shell32/cpanelfolder.c:1084:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, pcpanel->szName+pcpanel->offsDispName); data/wine-5.0/dlls/shell32/dde.c:93:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, programs); data/wine-5.0/dlls/shell32/dde.c:94:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, slashW); data/wine-5.0/dlls/shell32/dde.c:95:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, name); data/wine-5.0/dlls/shell32/dde.c:131:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(groups_data, finddata.cFileName); data/wine-5.0/dlls/shell32/dde.c:132:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(groups_data, newlineW); data/wine-5.0/dlls/shell32/dde.c:201:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path2, path); data/wine-5.0/dlls/shell32/dde.c:274:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, last_group); data/wine-5.0/dlls/shell32/dde.c:275:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, slashW); data/wine-5.0/dlls/shell32/dde.c:276:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, argv[1]); data/wine-5.0/dlls/shell32/dde.c:277:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, dotlnkW); data/wine-5.0/dlls/shell32/dde.c:284:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, last_group); data/wine-5.0/dlls/shell32/dde.c:285:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, slashW); data/wine-5.0/dlls/shell32/dde.c:286:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(name+strlenW(name), filename, len + 1); data/wine-5.0/dlls/shell32/dde.c:287:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, dotlnkW); data/wine-5.0/dlls/shell32/dde.c:305:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, last_group); data/wine-5.0/dlls/shell32/dde.c:306:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, slashW); data/wine-5.0/dlls/shell32/dde.c:307:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, argv[0]); data/wine-5.0/dlls/shell32/dde.c:308:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(name, dotlnkW); data/wine-5.0/dlls/shell32/debughlp.c:233:15: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szOut) lstrcpynA(szOut, "Desktop", uOutSize); data/wine-5.0/dlls/shell32/debughlp.c:238:15: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szOut) lstrcpynA(szOut, szSrc, uOutSize); data/wine-5.0/dlls/shell32/debughlp.c:245:15: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (szOut) lstrcpynA(szOut, tmp, uOutSize); data/wine-5.0/dlls/shell32/enumidlist.c:80:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szPath, lpszPath); data/wine-5.0/dlls/shell32/folders.c:171:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/folders.c:208:4: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/folders.c:232:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/folders.c:266:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/folders.c:277:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/folders.c:340:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szIconFile, swShell32Name, cchMax); data/wine-5.0/dlls/shell32/iconcache.c:315:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( entry->sSourceFile, path ); data/wine-5.0/dlls/shell32/iconcache.c:871:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). { lstrcpyW(lpIconPath,tempPath); data/wine-5.0/dlls/shell32/iconcache.c:1021:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sii->szPath, shell32dll); data/wine-5.0/dlls/shell32/pidl.c:1134:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pfd->cFileName, filename, sizeof(pfd->cFileName)); data/wine-5.0/dlls/shell32/pidl.c:1139:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pfd->cAlternateFileName, shortname, sizeof(pfd->cAlternateFileName)); data/wine-5.0/dlls/shell32/pidl.c:1946:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:1955:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szOut, szSrc, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:1965:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:1975:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2004:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szOut, pFileStructW->wszName, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2025:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2034:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szOut, szSrcW, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2044:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2054:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szOut, szTemp, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2394:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pOut, pPoint, uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2423:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (pOut, "File", uOutSize); data/wine-5.0/dlls/shell32/pidl.c:2432:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (pOut, sTemp, uOutSize - 6); data/wine-5.0/dlls/shell32/pidl.c:2438:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(pOut, "Folder", uOutSize); data/wine-5.0/dlls/shell32/recyclebin.c:633:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, data.cFileName); data/wine-5.0/dlls/shell32/recyclebin.c:786:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(arg,data.cFileName,MAX_PATH); data/wine-5.0/dlls/shell32/shell32_main.c:197:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFullPath, path, MAX_PATH); data/wine-5.0/dlls/shell32/shell32_main.c:265:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (psfi->szDisplayName, PathFindFileNameW(szFullPath)); data/wine-5.0/dlls/shell32/shell32_main.c:298:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sTemp,PathFindExtensionW(szFullPath)); data/wine-5.0/dlls/shell32/shell32_main.c:302:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (psfi->szTypeName, szFile, 64); data/wine-5.0/dlls/shell32/shell32_main.c:309:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (psfi->szTypeName, sTemp, 64); data/wine-5.0/dlls/shell32/shell32_main.c:314:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (psfi->szTypeName, szFile, 64); data/wine-5.0/dlls/shell32/shell32_main.c:349:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(psfi->szDisplayName, swShell32Name); data/wine-5.0/dlls/shell32/shell32_main.c:365:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(psfi->szDisplayName, sTemp); data/wine-5.0/dlls/shell32/shell32_main.c:369:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(psfi->szDisplayName, szFullPath); data/wine-5.0/dlls/shell32/shell32_main.c:390:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (psfi->szDisplayName, szLocation); data/wine-5.0/dlls/shell32/shell32_main.c:415:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(sTemp, szFullPath, MAX_PATH); data/wine-5.0/dlls/shell32/shell32_main.c:424:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(sTemp, szFullPath); data/wine-5.0/dlls/shell32/shell32_main.h:238:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/dlls/shell32/shelllink.c:319:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, app ); data/wine-5.0/dlls/shell32/shelllink.c:422:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(*filename, This->filepath); data/wine-5.0/dlls/shell32/shelllink.c:720:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( *str, buffer.szwDarwinID ); data/wine-5.0/dlls/shell32/shelllink.c:983:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer->szwDarwinID, string, MAX_PATH ); data/wine-5.0/dlls/shell32/shelllink.c:1152:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(final, sPathRel); data/wine-5.0/dlls/shell32/shelllink.c:1158:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(abs_path, buffer); data/wine-5.0/dlls/shell32/shelllink.c:1162:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, sWorkDir); data/wine-5.0/dlls/shell32/shelllink.c:1163:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(PathAddBackslashW(buffer), sPathRel); data/wine-5.0/dlls/shell32/shelllink.c:1167:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(abs_path, buffer); data/wine-5.0/dlls/shell32/shelllink.c:1173:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(abs_path, sPathRel); data/wine-5.0/dlls/shell32/shelllink.c:1179:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*psPath, abs_path); data/wine-5.0/dlls/shell32/shelllink.c:1291:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pfd->cFileName, PathFindFileNameA(path)); data/wine-5.0/dlls/shell32/shelllink.c:1295:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pfd->cAlternateFileName, PathFindFileNameA(path)); data/wine-5.0/dlls/shell32/shelllink.c:1688:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( pszFile, This->sPath, cchMaxPath ); data/wine-5.0/dlls/shell32/shelllink.c:1711:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pfd->cFileName, PathFindFileNameW(This->sPath)); data/wine-5.0/dlls/shell32/shelllink.c:1715:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pfd->cAlternateFileName, PathFindFileNameW(path)); data/wine-5.0/dlls/shell32/shelllink.c:1764:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->sPath, path); data/wine-5.0/dlls/shell32/shelllink.c:1780:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( pszName, This->sDescription, cchMaxName ); data/wine-5.0/dlls/shell32/shelllink.c:1798:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->sDescription, pszName ); data/wine-5.0/dlls/shell32/shelllink.c:1816:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( pszDir, This->sWorkDir, cchMaxPath ); data/wine-5.0/dlls/shell32/shelllink.c:1831:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->sWorkDir, pszDir ); data/wine-5.0/dlls/shell32/shelllink.c:1846:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( pszArgs, This->sArgs, cchMaxPath ); data/wine-5.0/dlls/shell32/shelllink.c:1863:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->sArgs, pszArgs ); data/wine-5.0/dlls/shell32/shelllink.c:1927:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszIconPath, This->sIcoPath, cchIconPath); data/wine-5.0/dlls/shell32/shelllink.c:1967:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( This->sPathRel, pszPathRel ); data/wine-5.0/dlls/shell32/shelllink.c:1994:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->sPath, buffer); data/wine-5.0/dlls/shell32/shelllink.c:2006:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->sIcoPath, This->sPath); data/wine-5.0/dlls/shell32/shelllink.c:2170:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(This->sPath, buffer); data/wine-5.0/dlls/shell32/shelllink.c:2521:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( args, This->sArgs ); data/wine-5.0/dlls/shell32/shelllink.c:2525:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( args, space ); data/wine-5.0/dlls/shell32/shelllink.c:2526:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( args, iciex->lpParametersW ); data/wine-5.0/dlls/shell32/shellole.c:154:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sKeyName, sCLSID); data/wine-5.0/dlls/shell32/shellole.c:155:2: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sKeyName, sClassID); data/wine-5.0/dlls/shell32/shellole.c:156:2: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sKeyName, sInProcServer32); data/wine-5.0/dlls/shell32/shellole.c:615:2: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (lpszFile, lpDrop, lLength); data/wine-5.0/dlls/shell32/shellole.c:671:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (lpszwFile, lpwDrop, lLength); data/wine-5.0/dlls/shell32/shellord.c:711:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ptr, doc_name); data/wine-5.0/dlls/shell32/shellord.c:720:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ptr, new_lnk_name); data/wine-5.0/dlls/shell32/shellord.c:887:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(doc_name, pv, MAX_PATH); data/wine-5.0/dlls/shell32/shellord.c:956:7: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(old_lnk_name, link_dir); data/wine-5.0/dlls/shell32/shellord.c:984:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(new_lnk_filepath, link_dir); data/wine-5.0/dlls/shell32/shellord.c:991:6: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(new_lnk_filepath, link_dir); data/wine-5.0/dlls/shell32/shellord.c:1049:6: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(desc, "Shortcut to "); data/wine-5.0/dlls/shell32/shellord.c:1050:6: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(desc, doc_name); data/wine-5.0/dlls/shell32/shellord.c:2028:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszName, pszDir, MAX_PATH); data/wine-5.0/dlls/shell32/shellpath.c:263:4: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszPath, path); data/wine-5.0/dlls/shell32/shellpath.c:278:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszPath, path); data/wine-5.0/dlls/shell32/shellpath.c:553:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(retW, pathW); data/wine-5.0/dlls/shell32/shellpath.c:567:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, retW); data/wine-5.0/dlls/shell32/shellpath.c:775:15: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(lpszBuff) strcpy(lpszBuff, lpszPath); data/wine-5.0/dlls/shell32/shellpath.c:791:15: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(lpszBuff) strcpyW(lpszBuff, lpszPath); data/wine-5.0/dlls/shell32/shellpath.c:3410:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(shellFolderPath, userPrefix); data/wine-5.0/dlls/shell32/shellpath.c:3414:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(userShellFolderPath, userPrefix); data/wine-5.0/dlls/shell32/shellpath.c:3450:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path, szTemp, MAX_PATH); data/wine-5.0/dlls/shell32/shellpath.c:3540:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, UserProfileW); data/wine-5.0/dlls/shell32/shellpath.c:3543:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, PublicProfileW); data/wine-5.0/dlls/shell32/shellpath.c:3546:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, ProgramDataVarW); data/wine-5.0/dlls/shell32/shellpath.c:3549:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, SystemDriveW); data/wine-5.0/dlls/shell32/shellpath.c:3809:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szValue, szDefault, MAX_PATH); data/wine-5.0/dlls/shell32/shellpath.c:3849:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szDest, szSrc); data/wine-5.0/dlls/shell32/shellpath.c:3861:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( def_val + 3, szDefaultProfileDirW ); data/wine-5.0/dlls/shell32/shellpath.c:3867:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szTemp, szSrc); data/wine-5.0/dlls/shell32/shellpath.c:3875:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( def_val + 3, UsersPublicW ); data/wine-5.0/dlls/shell32/shellpath.c:3886:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( def_val + 3, UsersPublicW ); data/wine-5.0/dlls/shell32/shellpath.c:3911:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( def_val + 3, ProgramDataW ); data/wine-5.0/dlls/shell32/shellpath.c:3923:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szDest, szProfilesPrefix); data/wine-5.0/dlls/shell32/shellpath.c:3931:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szDest + 3, szTemp + strlenW(SystemDriveW) + 1); data/wine-5.0/dlls/shell32/shellpath.c:3943:28: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (SUCCEEDED(hr)) strcpyW(szTemp, szDest); data/wine-5.0/dlls/shell32/shellpath.c:4127:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szBuildPath, szTemp); data/wine-5.0/dlls/shell32/shellpath.c:4143:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, szBuildPath); data/wine-5.0/dlls/shell32/shellpath.c:4341:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(userShellFolderPath, DefaultW); data/wine-5.0/dlls/shell32/shellpath.c:4345:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(shellFolderPath, DefaultW); data/wine-5.0/dlls/shell32/shellpath.c:4414:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, DocumentsW); data/wine-5.0/dlls/shell32/shellpath.c:4417:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, My_MusicW); data/wine-5.0/dlls/shell32/shellpath.c:4420:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, My_PicturesW); data/wine-5.0/dlls/shell32/shellpath.c:4423:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, My_VideosW); data/wine-5.0/dlls/shell32/shellpath.c:4426:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, DownloadsW); data/wine-5.0/dlls/shell32/shellpath.c:4429:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, TemplatesW); data/wine-5.0/dlls/shell32/shellpath.c:4437:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszSubPath, pwszSubPath); data/wine-5.0/dlls/shell32/shellpath.c:4519:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPersonalTarget, pszHome); data/wine-5.0/dlls/shell32/shellpath.c:4529:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, szPersonalTarget); data/wine-5.0/dlls/shell32/shellpath.c:4541:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPersonalTarget, xdg_results[num-2]); data/wine-5.0/dlls/shell32/shellpath.c:4546:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPersonalTarget, pszHome); data/wine-5.0/dlls/shell32/shellpath.c:4553:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPersonalTarget, pszHome); data/wine-5.0/dlls/shell32/shellpath.c:4567:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPersonalTarget, pszPersonal); data/wine-5.0/dlls/shell32/shellpath.c:4569:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, szPersonalTarget); data/wine-5.0/dlls/shell32/shellpath.c:4589:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, szPersonalTarget); data/wine-5.0/dlls/shell32/shellpath.c:4597:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, xdg_results[i]); data/wine-5.0/dlls/shell32/shellpath.c:4604:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, pszHome); data/wine-5.0/dlls/shell32/shellpath.c:4612:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szMyStuffTarget, szPersonalTarget); data/wine-5.0/dlls/shell32/shellpath.c:4621:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szDesktopTarget, pszHome); data/wine-5.0/dlls/shell32/shellpath.c:4623:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szDesktopTarget, pszPersonal); data/wine-5.0/dlls/shell32/shellpath.c:4746:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, clsidW ); data/wine-5.0/dlls/shell32/shellpath.c:5042:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pathW, tempW); data/wine-5.0/dlls/shell32/shellpath.c:5075:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(*ret_path, pathW); data/wine-5.0/dlls/shell32/shellpath.c:5105:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( path, buffer ); data/wine-5.0/dlls/shell32/shellpath.c:5136:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sGuid, lpStringGuid); data/wine-5.0/dlls/shell32/shellpath.c:5145:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*lpPath, szKnownFolderDescriptions); data/wine-5.0/dlls/shell32/shellpath.c:5146:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*lpPath, sBackslash); data/wine-5.0/dlls/shell32/shellpath.c:5147:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*lpPath, sGuid); data/wine-5.0/dlls/shell32/shellpath.c:5281:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(srcPath, lpSrcPath); data/wine-5.0/dlls/shell32/shellpath.c:5282:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(srcPath, sWildcard); data/wine-5.0/dlls/shell32/shellpath.c:5285:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dstPath, pszTargetPath); data/wine-5.0/dlls/shell32/shellpath.c:5303:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(srcPath, lpSrcPath); data/wine-5.0/dlls/shell32/shellpath.c:5491:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, parentPath); data/wine-5.0/dlls/shell32/shellpath.c:5492:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, sBackslash); data/wine-5.0/dlls/shell32/shellpath.c:5521:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszPath, path); data/wine-5.0/dlls/shell32/shellpath.c:5539:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszPath, path); data/wine-5.0/dlls/shell32/shellreg.c:156:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HRESULT WINAPI SHCreateSessionKey(REGSAM access, HKEY *hkey) data/wine-5.0/dlls/shell32/shellreg.c:168:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!access) data/wine-5.0/dlls/shell32/shellreg.c:177:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ret = RegCreateKeyExW(HKEY_CURRENT_USER, str, 0, NULL, REG_OPTION_VOLATILE, access, NULL, hkey, NULL); data/wine-5.0/dlls/shell32/shellstring.c:74:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dest, src->u.cStr, len); data/wine-5.0/dlls/shell32/shellstring.c:77:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dest, ((LPCSTR)&pidl->mkid)+src->u.uOffset, len); data/wine-5.0/dlls/shell32/shellstring.c:101:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dest, src->u.pOleStr, len); data/wine-5.0/dlls/shell32/shellstring.c:158:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW (lpWideCharStr, lpWString ); data/wine-5.0/dlls/shell32/shellstring.c:183:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (lstrcpynW (lpWide, lpStrW, nWide)) data/wine-5.0/dlls/shell32/shellstring.c:209:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (lstrcpynW ( lpwStr, lpOle, nwStr)) data/wine-5.0/dlls/shell32/shfldr_desktop.c:239:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPath, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_desktop.c:243:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pathPtr, lpszDisplayName, MAX_PATH - (pathPtr - szPath)); data/wine-5.0/dlls/shell32/shfldr_desktop.c:604:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(pszPath, This->sPathTarget); data/wine-5.0/dlls/shell32/shfldr_desktop.c:642:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (szRegPath, clsidW); data/wine-5.0/dlls/shell32/shfldr_desktop.c:644:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (szRegPath, shellfolderW); data/wine-5.0/dlls/shell32/shfldr_desktop.c:686:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszPath, This->sPathTarget, MAX_PATH - 1); data/wine-5.0/dlls/shell32/shfldr_desktop.c:972:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( sf->sPathTarget, szMyPath ); data/wine-5.0/dlls/shell32/shfldr_fs.c:262:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( &wfd.cFileName[0], path, MAX_PATH ); data/wine-5.0/dlls/shell32/shfldr_fs.c:331:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPath, This->sPathTarget, MAX_PATH - 1); data/wine-5.0/dlls/shell32/shfldr_fs.c:334:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPath + len, szElement, MAX_PATH - len); data/wine-5.0/dlls/shell32/shfldr_fs.c:807:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszPath, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:817:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszPath, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:874:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szSrc, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:881:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:884:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(ptr, lpName, MAX_PATH + 1 - (ptr - szDest)); data/wine-5.0/dlls/shell32/shfldr_fs.c:886:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest, lpName, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:892:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szDest + len, ext, MAX_PATH - len); data/wine-5.0/dlls/shell32/shfldr_fs.c:1096:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (pwszName, wszNewFolder, uLen); data/wine-5.0/dlls/shell32/shfldr_fs.c:1144:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszNewDir, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:1151:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszNewDir, pwszName); data/wine-5.0/dlls/shell32/shfldr_fs.c:1213:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszListPos, wszBasePath, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:1242:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszPath, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_fs.c:1316:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszDstPath, This->sPathTarget, MAX_PATH); data/wine-5.0/dlls/shell32/shfldr_mycomp.c:642:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (szRegPath, clsidW); data/wine-5.0/dlls/shell32/shfldr_mycomp.c:644:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (szRegPath, shellfolderW); data/wine-5.0/dlls/shell32/shfldr_mycomp.c:704:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (wszDrive + strlenW(wszDrive), pszPath, 3); data/wine-5.0/dlls/shell32/shfldr_mycomp.c:706:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW (pszPath, wszDrive); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:413:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dospath, pszDosPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:434:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(szPath, pszUnixPath + cDriveSymlinkLen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:440:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(szPath, mb_path); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:581:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pFileStructW->wszName, pwszComponentW); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:788:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pNextDir, szBasePath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:838:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwszSrc, pwszDosSrc); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:839:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pwszDst, pwszDosDst); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1144:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szAbsolutePath, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1255:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpName->u.pOleStr, pwszDosFileName); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1282:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpName->u.pOleStr, path); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1289:29: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpName->u.pOleStr, file); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1326:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpName->u.pOleStr, wszFileName); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1404:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpwszName, lpcwszName); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1406:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpwszName, pwszExt); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1502:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szPath, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1540:26: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pPasswd) strcpy(psd->str.u.cStr, pPasswd->pw_name); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1544:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (pGroup) strcpy(psd->str.u.cStr, pGroup->gr_name); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1708:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszTargetDosPath, ppfti->szTargetParsingName); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1726:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(This->m_pszPath, szTargetPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1805:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pftiTarget.szTargetParsingName, V_BSTR(&var)); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1809:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pftiTarget.szNetworkProvider, wszNull); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1873:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pwszName, wszNewFolder, uLen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1908:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szNewDir, This->m_pszPath, FILENAME_MAX); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1917:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(szMessage, szCaption, szNewDir); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1953:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szAbsolute, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1976:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszListPos, wszDosPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2008:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szAbsolute, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2040:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szAbsolute, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2082:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szAbsoluteDst, This->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2453:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pszRelativePath, pDirEntry->d_name); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2536:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(iterator->m_szFolder, pUnixFolder->m_pszPath); data/wine-5.0/dlls/shell32/shlexec.c:169:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(res, cmd); data/wine-5.0/dlls/shell32/shlexec.c:187:4: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(res, lpFile); data/wine-5.0/dlls/shell32/shlexec.c:210:4: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(res,buf); data/wine-5.0/dlls/shell32/shlexec.c:243:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( res, tmpBuffer ); data/wine-5.0/dlls/shell32/shlexec.c:252:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( res, tmpEnvBuff ); data/wine-5.0/dlls/shell32/shlexec.c:419:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p2 + len, path ); data/wine-5.0/dlls/shell32/shlexec.c:427:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p2, wPath ); data/wine-5.0/dlls/shell32/shlexec.c:457:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, wszKeyAppPaths); data/wine-5.0/dlls/shell32/shlexec.c:518:18: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (key) strcpyW(key, classname); data/wine-5.0/dlls/shell32/shlexec.c:622:8: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(classname, wszFolder); data/wine-5.0/dlls/shell32/shlexec.c:671:21: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpResult, xlpFile); data/wine-5.0/dlls/shell32/shlexec.c:741:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpResult, command); data/wine-5.0/dlls/shell32/shlexec.c:813:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(regkey, key); data/wine-5.0/dlls/shell32/shlexec.c:820:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(endkey, wApplication); data/wine-5.0/dlls/shell32/shlexec.c:839:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(command, start+1); data/wine-5.0/dlls/shell32/shlexec.c:870:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(app, ptr); data/wine-5.0/dlls/shell32/shlexec.c:888:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(endkey, wTopic); data/wine-5.0/dlls/shell32/shlexec.c:893:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(topic, wSystem); data/wine-5.0/dlls/shell32/shlexec.c:935:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(endkey, wIfexec); data/wine-5.0/dlls/shell32/shlexec.c:1025:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(tmp, wDdeexec); data/wine-5.0/dlls/shell32/shlexec.c:1030:24: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!param[0]) strcpyW(param, executable_name); data/wine-5.0/dlls/shell32/shlexec.c:1111:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpResult, res); data/wine-5.0/dlls/shell32/shlexec.c:1421:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(classname, psei->lpClass); data/wine-5.0/dlls/shell32/shlexec.c:1445:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszParameters, buffer, parametersLen); data/wine-5.0/dlls/shell32/shlexec.c:1449:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszApplicationName, wExplorer, dwApplicationNameLen); data/wine-5.0/dlls/shell32/shlexec.c:1458:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(target, buffer); data/wine-5.0/dlls/shell32/shlexec.c:1494:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wszQuotedCmd, wQuote); data/wine-5.0/dlls/shell32/shlexec.c:1645:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wszParameters, sei_tmp.lpParameters); data/wine-5.0/dlls/shell32/shlexec.c:1656:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wszDir, sei_tmp.lpDirectory); data/wine-5.0/dlls/shell32/shlexec.c:1825:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wcmd+len, wszParameters); data/wine-5.0/dlls/shell32/shlexec.c:1864:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpQuotedFile, wQuote); data/wine-5.0/dlls/shell32/shlexec.c:1887:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpstrTmpFile, wHttp); data/wine-5.0/dlls/shell32/shlfileop.c:749:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szTemp, path, MAX_PATH); data/wine-5.0/dlls/shell32/shlfileop.c:949:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(feFile->szFullPath, szFile); data/wine-5.0/dlls/shell32/shlfileop.c:956:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(feFile->szDirectory, szFile, dwLen); data/wine-5.0/dlls/shell32/shlfileop.c:960:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(feFile->szFilename, ptr + 1); /* skip over backslash */ data/wine-5.0/dlls/shell32/shlfileop.c:977:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFullPath, szWildCard, dwDirLen + 1); data/wine-5.0/dlls/shell32/shlfileop.c:978:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szFullPath, szFileName); data/wine-5.0/dlls/shell32/shlfileop.c:1045:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szCurFile, ptr); data/wine-5.0/dlls/shell32/shlfileop.c:1108:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szTo, szDestPath); data/wine-5.0/dlls/shell32/shlfileop.c:1175:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dir, szDestDir, ptr - szDestDir + 1); data/wine-5.0/dlls/shell32/shlfileop.c:1768:9: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(temppath, path, len); data/wine-5.0/dlls/shell32/shlfolder.c:140:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (pszOut, pszNext, (dwOut < dwCopy) ? dwOut : dwCopy); data/wine-5.0/dlls/shell32/shlfolder.c:222:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW (ppfti.szTargetParsingName, pathRoot, MAX_PATH - 1); data/wine-5.0/dlls/shell32/shlfolder.c:294:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszFolderPath, pathRoot, MAX_PATH); data/wine-5.0/dlls/shell32/shlfolder.c:629:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, path); data/wine-5.0/dlls/shell32/shlfolder.c:631:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(bufferW, desktop_iniW); data/wine-5.0/dlls/shell32/shlmenu.c:336:4: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW (myItem->szItemText, lpText); data/wine-5.0/dlls/shell32/shlview_cmenu.c:511:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(newpath, props->dir); data/wine-5.0/dlls/shell32/shlview_cmenu.c:520:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(props->path, newpath); data/wine-5.0/dlls/shell32/shlview_cmenu.c:521:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(props->dir, newpath); data/wine-5.0/dlls/shell32/shlview_cmenu.c:588:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(props->dir, props->path); data/wine-5.0/dlls/shell32/shlview_cmenu.c:664:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(wszFiletype, wszFolder, 64); data/wine-5.0/dlls/shell32/shlview_cmenu.c:671:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszFiletype, wszclsid); data/wine-5.0/dlls/shell32/shlview_cmenu.c:870:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW((WCHAR *)name, cmdW, maxlen); data/wine-5.0/dlls/shell32/shpolicy.c:856:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(regstr, strRegistryPolicyA); data/wine-5.0/dlls/shell32/shpolicy.c:857:2: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(regstr, "\\"); data/wine-5.0/dlls/shell32/shpolicy.c:858:2: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(regstr, p->appstr); data/wine-5.0/dlls/shell32/systray.c:224:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( data->szTip, nid->szTip, ARRAY_SIZE(data->szTip)); data/wine-5.0/dlls/shell32/systray.c:232:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( data->szInfo, nid->szInfo, ARRAY_SIZE(data->szInfo) ); data/wine-5.0/dlls/shell32/systray.c:233:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( data->szInfoTitle, nid->szInfoTitle, ARRAY_SIZE(data->szInfoTitle)); data/wine-5.0/dlls/shell32/tests/brsfolder.c:47:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(path_search_string, path, MAX_PATH - 1); data/wine-5.0/dlls/shell32/tests/brsfolder.c:190:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(test_folder_path, title); data/wine-5.0/dlls/shell32/tests/brsfolder.c:227:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(new_folder_path, test_folder_path); data/wine-5.0/dlls/shell32/tests/brsfolder.c:228:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(new_folder_path, new_folder_name); data/wine-5.0/dlls/shell32/tests/ebrowser.c:1305:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(child_path, current_path); data/wine-5.0/dlls/shell32/tests/ebrowser.c:1307:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(child_path, testfolderW); data/wine-5.0/dlls/shell32/tests/progman_dde.c:105:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ProgramsDir, commonprograms); data/wine-5.0/dlls/shell32/tests/progman_dde.c:107:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ProgramsDir, programs); data/wine-5.0/dlls/shell32/tests/progman_dde.c:160:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(title, ProgramsDir); data/wine-5.0/dlls/shell32/tests/progman_dde.c:162:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(title, name); data/wine-5.0/dlls/shell32/tests/progman_dde.c:165:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(title, name); data/wine-5.0/dlls/shell32/tests/progman_dde.c:185:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, ProgramsDir); data/wine-5.0/dlls/shell32/tests/progman_dde.c:187:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, name); data/wine-5.0/dlls/shell32/tests/progman_dde.c:404:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(programs, ProgramsDir); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:316:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(tempW, backslashW); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:699:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cstr, file_defs[i].name); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:701:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cstr, file_defs[i].name); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:1261:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, cadabraW); data/wine-5.0/dlls/shell32/tests/shelllink.c:626:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(lnkfileA, lnkfileA_name); data/wine-5.0/dlls/shell32/tests/shelllink.c:656:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mydir, mypath); data/wine-5.0/dlls/shell32/tests/shelllink.c:663:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( realpath, mypath ); data/wine-5.0/dlls/shell32/tests/shelllink.c:737:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mypath, mydir); data/wine-5.0/dlls/shell32/tests/shelllink.c:759:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(realpath, mypath); data/wine-5.0/dlls/shell32/tests/shelllink.c:781:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mypath, mydir); data/wine-5.0/dlls/shell32/tests/shelllink.c:787:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(realpath, mypath); data/wine-5.0/dlls/shell32/tests/shelllink.c:1253:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, nameW); data/wine-5.0/dlls/shell32/tests/shellpath.c:1666:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(selfname, myARGV[0]); data/wine-5.0/dlls/shell32/tests/shellpath.c:1782:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s tests/shellpath.c 1", selfname); data/wine-5.0/dlls/shell32/tests/shellpath.c:1797:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer, "%s tests/shellpath.c 2", selfname); data/wine-5.0/dlls/shell32/tests/shellpath.c:2095:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sExamplePath, sExample); data/wine-5.0/dlls/shell32/tests/shellpath.c:2098:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sExample2Path, sExample2); data/wine-5.0/dlls/shell32/tests/shellpath.c:2100:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sSubFolderPath, sExamplePath); data/wine-5.0/dlls/shell32/tests/shellpath.c:2101:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sSubFolderPath, sBackslash); data/wine-5.0/dlls/shell32/tests/shellpath.c:2102:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sSubFolderPath, sSubFolder); data/wine-5.0/dlls/shell32/tests/shellpath.c:2104:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sSubFolder2Path, sExample2Path); data/wine-5.0/dlls/shell32/tests/shellpath.c:2105:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sSubFolder2Path, sBackslash); data/wine-5.0/dlls/shell32/tests/shellpath.c:2106:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(sSubFolder2Path, sSubFolder); data/wine-5.0/dlls/shell32/tests/shellpath.c:2228:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfDefinition.pszName, sExample); data/wine-5.0/dlls/shell32/tests/shellpath.c:2230:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfDefinition.pszDescription, sExample); data/wine-5.0/dlls/shell32/tests/shellpath.c:2232:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfDefinition.pszRelativePath, sExamplePath); data/wine-5.0/dlls/shell32/tests/shellpath.c:2264:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfSubDefinition.pszName, sSubFolder); data/wine-5.0/dlls/shell32/tests/shellpath.c:2266:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfSubDefinition.pszDescription, sSubFolder); data/wine-5.0/dlls/shell32/tests/shellpath.c:2268:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfSubDefinition.pszRelativePath, sSubFolder); data/wine-5.0/dlls/shell32/tests/shellpath.c:2519:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(kfDefinition.pszName, sExample2); data/wine-5.0/dlls/shell32/tests/shellpath.c:2584:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(bufferA, names[i]); data/wine-5.0/dlls/shell32/tests/shellpath.c:2615:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(bufferA, names[i]); data/wine-5.0/dlls/shell32/tests/shellpath.c:2636:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(bufferA, names[i]); data/wine-5.0/dlls/shell32/tests/shellpath.c:2659:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(bufferA, names[i]); data/wine-5.0/dlls/shell32/tests/shellpath.c:2668:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(expectedW, bufferW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2680:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(bufferA, does_not_existA); data/wine-5.0/dlls/shell32/tests/shellpath.c:2738:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, pathW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2739:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, shortW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2749:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, pathW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2750:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, short2W); data/wine-5.0/dlls/shell32/tests/shellpath.c:2759:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, pathW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2760:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, longW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2769:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, pathW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2770:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, long2W); data/wine-5.0/dlls/shell32/tests/shellpath.c:2779:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffW, pathW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2780:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffW, longW); data/wine-5.0/dlls/shell32/tests/shellpath.c:2916:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(testfile, tempdir); data/wine-5.0/dlls/shell32/tests/shellpath.c:2917:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile, L"test"); data/wine-5.0/dlls/shell32/tests/shellpath.c:2918:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(testfile_lnk, testfile); data/wine-5.0/dlls/shell32/tests/shellpath.c:2919:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile_lnk, L".lnk"); data/wine-5.0/dlls/shell32/tests/shellpath.c:2924:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(regedit_in_testdir, tempdir); data/wine-5.0/dlls/shell32/tests/shellpath.c:2925:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(regedit_in_testdir, L"regedit"); data/wine-5.0/dlls/shell32/tests/shellpath.c:2926:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(regedit_cmd, regedit_in_testdir); data/wine-5.0/dlls/shell32/tests/shellpath.c:2927:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(regedit_cmd, L".cmd"); data/wine-5.0/dlls/shell32/tests/shellpath.c:2933:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, L"regedit"); data/wine-5.0/dlls/shell32/tests/shellpath.c:2941:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, tests[i].path); data/wine-5.0/dlls/shell32/tests/shlexec.c:127:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buffer, fmt, valist); data/wine-5.0/dlls/shell32/tests/shlexec.c:359:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, shell_call); data/wine-5.0/dlls/shell32/tests/shlexec.c:362:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buffer+strlen(buffer), msg, valist); data/wine-5.0/dlls/shell32/tests/shlexec.c:489:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, name); data/wine-5.0/dlls/shell32/tests/shlexec.c:491:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, param); data/wine-5.0/dlls/shell32/tests/shlexec.c:514:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(shell_call, assoc_desc); data/wine-5.0/dlls/shell32/tests/shlexec.c:599:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(shell_call, assoc_desc); data/wine-5.0/dlls/shell32/tests/shlexec.c:723:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(class, "shlexec%s", extension); data/wine-5.0/dlls/shell32/tests/shlexec.c:814:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(classname, "shlexec%s", extension); data/wine-5.0/dlls/shell32/tests/shlexec.c:840:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(shell, "%s\\shell", classname); data/wine-5.0/dlls/shell32/tests/shlexec.c:860:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd,"%s shlexec \"%s\" %s", argv0, child_file, cmdtail); data/wine-5.0/dlls/shell32/tests/shlexec.c:977:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tmplongpath + lp, shortpath + sp, tmplen + 1); data/wine-5.0/dlls/shell32/tests/shlexec.c:983:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmplongpath + lp, wfd.cFileName); data/wine-5.0/dlls/shell32/tests/shlexec.c:996:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(longpath, tmplongpath); data/wine-5.0/dlls/shell32/tests/shlexec.c:1109:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "%s\\drawback_file.noassoc foo.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1114:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "\"%s\\drawback_file.noassoc foo.shlexec\"", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1120:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "\"%s\\drawback_file.noassoc\" foo.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1125:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "\"\"%s\\simple.shlexec\"\"", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1131:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "%s\\drawback_nonexist.noassoc foo.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1562:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "shlexec \"%s\" %s", child_file, fileA); data/wine-5.0/dlls/shell32/tests/shlexec.c:1584:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fileA, "%s\\test file.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1633:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, test->basename, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1653:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(quoted, "\"%s\"", filename); data/wine-5.0/dlls/shell32/tests/shlexec.c:1678:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, test->basename, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1725:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "\"%s\\test file.shlexec\"", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1730:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1734:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "\"%s\\test file.sha\"", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1739:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.sha", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1820:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, test->basename, longtmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:1821:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fileurl, test->urlprefix); data/wine-5.0/dlls/shell32/tests/shlexec.c:1822:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(fileurl, filename); data/wine-5.0/dlls/shell32/tests/shlexec.c:1954:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(url, "shlproto://%s/bar", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2013:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.sfe", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2033:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.shl", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2037:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.shlfoo", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2065:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, test->basename, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2127:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_shlexec.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2132:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "%s\\test file.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2140:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "%s\\test file.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2146:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_exe.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2168:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_exe.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2182:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_exe.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2187:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(params+1, test->basename, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2201:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(params, test->basename, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2215:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "shlexec \"%s\" Exec", child_file); data/wine-5.0/dlls/shell32/tests/shlexec.c:2226:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.noassoc", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2241:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s shlexec \"%s\" Exec", argv0, child_file); data/wine-5.0/dlls/shell32/tests/shlexec.c:2245:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "\"%s\" shlexec \"%s\" Exec", argv0, child_file); data/wine-5.0/dlls/shell32/tests/shlexec.c:2399:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.sde", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2402:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(defApplication, strrchr(argv0, '\\')+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:2423:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(shared_block, test->application ? test->application : defApplication); data/wine-5.0/dlls/shell32/tests/shlexec.c:2424:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(shared_block + strlen(shared_block) + 1, test->topic ? test->topic : SZDDESYS_TOPIC); data/wine-5.0/dlls/shell32/tests/shlexec.c:2470:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(params, test->expectedDdeExec, filename); data/wine-5.0/dlls/shell32/tests/shlexec.c:2574:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.sde", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2595:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(params, test->command, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2719:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, *testfile, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2732:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_shlexec.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2736:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test file.shlexec", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2746:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s\\test_shortcut_exe.lnk", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2752:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "shlexec \"%s\" Lnk", child_file); data/wine-5.0/dlls/shell32/tests/shlexec.c:2794:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(filename, *testfile, tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2819:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s\\test2.exe", tmpdir); data/wine-5.0/dlls/shell32/tests/shlexec.c:2822:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(params, "shlexec \"%s\" Exec", child_file); data/wine-5.0/dlls/shell32/tests/shlexec.c:2860:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(dirpath, "%s:%s", curdir, tmpdir); data/wine-5.0/dlls/shell32/tests/shlfileop.c:534:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, CURR_DIR); data/wine-5.0/dlls/shell32/tests/shlfileop.c:538:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, files); data/wine-5.0/dlls/shell32/tests/shlfileop.c:553:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s\\%s", CURR_DIR, "test?.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:583:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s\\%s", CURR_DIR, "test4.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1522:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(from, "one.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1543:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "two.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1586:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(from, "one.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1587:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "two.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1608:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "two.txt"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1635:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "threedir"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1669:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "threedir"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1693:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "threedir"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1723:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(to, "threedir"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1725:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ptr, "fourdir"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:260:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslashW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:261:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, testdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:494:31: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if(buf[cChars-1] != '\\') lstrcatA(buf, "\\"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:501:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pathA, buf); data/wine-5.0/dlls/shell32/tests/shlfolder.c:502:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, filename_html); data/wine-5.0/dlls/shell32/tests/shlfolder.c:540:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pathA, buf); data/wine-5.0/dlls/shell32/tests/shlfolder.c:541:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, filename_txt); data/wine-5.0/dlls/shell32/tests/shlfolder.c:564:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(pathA, buf); data/wine-5.0/dlls/shell32/tests/shlfolder.c:565:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, filename_foo); data/wine-5.0/dlls/shell32/tests/shlfolder.c:589:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, "\\"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:590:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, filename_html); data/wine-5.0/dlls/shell32/tests/shlfolder.c:608:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, "\\"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:609:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(pathA, filename_foo); data/wine-5.0/dlls/shell32/tests/shlfolder.c:664:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szTestDir, "\\winetest"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:673:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szTestFile, szTestDir); data/wine-5.0/dlls/shell32/tests/shlfolder.c:674:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szTestFile, "\\"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:675:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szTestFile, szFileName); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1032:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cCurrDirA, "\\testdir"); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1126:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszFileName, wszTestFile); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1220:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cCurrDirA, cTestDirA); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1492:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(wszDesktopPath, wszSomeSubFolder); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1801:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(testpath, "%s\\%s", appdata, winetemp); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1808:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(testpath, "%s\\%s", appdata, wine); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1879:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(testpath, "%s\\%s", appdata, winetemp); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1881:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(testpath, "%s\\%s", appdata, wine); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2199:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fnbufW, curdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2201:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fnbufW, testfileW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2308:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile_path, desktop_path); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2310:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile_path, testfileW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2397:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile_path, desktop_path); data/wine-5.0/dlls/shell32/tests/shlfolder.c:2399:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(testfile_path, testfileW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:3294:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cTestDirW, testdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:3631:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(test1pathW, cTestDirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:3633:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(test1pathW, test1W); data/wine-5.0/dlls/shell32/tests/shlfolder.c:3721:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cTestDirW, testdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4073:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4074:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, testdir1W); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4081:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4082:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, testfile1W); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4145:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, curdirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4146:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, testfilesW[i]); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4453:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, filename); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5001:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, filename); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5263:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, somedirW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5266:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(iconpathW, pathW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5267:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(iconpathW, iconW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5291:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, pathW); data/wine-5.0/dlls/shell32/tests/shlfolder.c:5292:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(bufferW, desktop_iniW); data/wine-5.0/dlls/shell32/tests/string.c:75:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(U(strret).cStr, "Test"); data/wine-5.0/dlls/shell32/trash.c:78:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA((LPSTR)(pidl->mkid.abID+1+sizeof(WIN32_FIND_DATAW)+1), filename); data/wine-5.0/dlls/shell32/trash.c:212:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(trash_path, "/"); data/wine-5.0/dlls/shell32/trash.c:213:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(trash_path, base_name); data/wine-5.0/dlls/shell32/trash.c:524:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(filename_buffer, base_name); data/wine-5.0/dlls/shell32/trash.c:529:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename_buffer, "%s-%d", base_name, i+1); data/wine-5.0/dlls/shell32/trash.c:536:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename_buffer, "%s-%08x", base_name, RtlRandom(&seed)); data/wine-5.0/dlls/shell32/trash.c:552:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename_buffer, "%s%s%s", info_dir, base_name, trashinfo_suffix); data/wine-5.0/dlls/shell32/trash.c:575:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(trash_path, pBucket->files_dir); data/wine-5.0/dlls/shell32/trash.c:576:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(trash_path, trash_file_name); data/wine-5.0/dlls/shell32/trash.c:664:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(data->cFileName, original_dos_name, MAX_PATH); data/wine-5.0/dlls/shell32/trash.c:812:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_path,"%s%s",home_trash->files_dir,filename); data/wine-5.0/dlls/shell32/trash.c:816:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_path,"%s%s",home_trash->info_dir,filename); data/wine-5.0/dlls/shell32/trash.c:843:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_path,"%s%s",home_trash->info_dir,filename); data/wine-5.0/dlls/shell32/trash.c:846:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_path,"%s%s",home_trash->files_dir,filename); data/wine-5.0/dlls/shell32/xdg.c:120:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret, env); data/wine-5.0/dlls/shell32/xdg.c:133:2: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret, home); data/wine-5.0/dlls/shell32/xdg.c:137:2: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(ret, paths[path_id].default_value+5); data/wine-5.0/dlls/shell32/xdg.c:143:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret, paths[path_id].default_value); data/wine-5.0/dlls/shell32/xdg.c:204:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret_buffer, root_path); data/wine-5.0/dlls/shell32/xdg.c:206:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ret_buffer+root_len+1, subpath); data/wine-5.0/dlls/shell32/xdg.c:235:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buffer, path); data/wine-5.0/dlls/shell32/xdg.c:498:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(string, keyName); data/wine-5.0/dlls/shell32/xdg.c:761:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*config_file, home_dir); data/wine-5.0/dlls/shell32/xdg.c:770:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*config_file, config_home); data/wine-5.0/dlls/shell32/xdg.c:854:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(out, home_dir); data/wine-5.0/dlls/shlwapi/ordinal.c:500:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(xguid, ARRAY_SIZE(xguid), wszFormat, guid->Data1, guid->Data2, guid->Data3, data/wine-5.0/dlls/shlwapi/ordinal.c:606:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:613:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:619:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:625:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:631:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:637:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:643:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, buff, dwDestLen); data/wine-5.0/dlls/shlwapi/ordinal.c:2755:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(out, buf); data/wine-5.0/dlls/shlwapi/ordinal.c:3083:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr+1, new_mod); data/wine-5.0/dlls/shlwapi/ordinal.c:3107:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr+1, new_mod); data/wine-5.0/dlls/shlwapi/ordinal.c:4431:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(&buf[ret-1], sep1); data/wine-5.0/dlls/shlwapi/ordinal.c:4436:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(&buf[ret-1], sep2); data/wine-5.0/dlls/shlwapi/ordinal.c:4668:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(strW, ARRAY_SIZE(strW), compatpathW, clsid_str); data/wine-5.0/dlls/shlwapi/path.c:181:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath + iLen, pszExts[iChoose]); data/wine-5.0/dlls/shlwapi/path.c:256:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszFile, buff); data/wine-5.0/dlls/shlwapi/path.c:264:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszFile, buff); data/wine-5.0/dlls/shlwapi/path.c:272:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszFile, buff); data/wine-5.0/dlls/shlwapi/path.c:306:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszFile, buff); data/wine-5.0/dlls/shlwapi/path.c:391:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszFile, buff); data/wine-5.0/dlls/shlwapi/path.c:531:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszDest + cchMax, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:548:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszDest, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:561:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszDest + cchMax, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:568:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszDest + dwLen, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:569:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszDest + dwLen + 3, lpszFile); data/wine-5.0/dlls/shlwapi/path.c:948:7: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buff, sFile, MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:970:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sPath, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:971:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(sPath+3, buff); data/wine-5.0/dlls/shlwapi/path.c:976:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:977:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath+3, buff); data/wine-5.0/dlls/shlwapi/path.c:989:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buff, sFile, dwLen); data/wine-5.0/dlls/shlwapi/path.c:1014:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buff + dwLen, szEllipses); data/wine-5.0/dlls/shlwapi/path.c:1015:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath, buff); data/wine-5.0/dlls/shlwapi/path.c:1209:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(path, lpszPath, ARRAY_SIZE(path)); data/wine-5.0/dlls/shlwapi/path.c:1324:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szSearch, lpszPath, MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:1330:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szSearch + dwLen, szAllFiles); data/wine-5.0/dlls/shlwapi/path.c:1538:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath+dwLen, szWeb); data/wine-5.0/dlls/shlwapi/path.c:1551:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath + dwLen + ARRAY_SIZE(szWebMui), lpszFile); data/wine-5.0/dlls/shlwapi/path.c:1558:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszPath + dwLen, lpszFile); data/wine-5.0/dlls/shlwapi/reg.c:119:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szBuff, lpszPath); data/wine-5.0/dlls/shlwapi/reg.c:140:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szBuff, lpszPath); data/wine-5.0/dlls/shlwapi/reg.c:398:7: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szData, pvData); data/wine-5.0/dlls/shlwapi/reg.c:459:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szData, pvData); data/wine-5.0/dlls/shlwapi/reg.c:1008:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szKey + ARRAY_SIZE(szClassIdKey) + 40, lpszValue); /* Append value name */ data/wine-5.0/dlls/shlwapi/string.c:132:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, 64, flfmt, value); data/wine-5.0/dlls/shlwapi/string.c:156:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpszStr, lpszSrc); data/wine-5.0/dlls/shlwapi/string.c:177:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszStr, lpszSrc); data/wine-5.0/dlls/shlwapi/string.c:228:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(dest, src->u.cStr, len); data/wine-5.0/dlls/shlwapi/string.c:232:6: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA((LPSTR)dest, ((LPCSTR)&pidl->mkid)+src->u.uOffset, len); data/wine-5.0/dlls/shlwapi/string.c:481:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpszDest, kb); data/wine-5.0/dlls/shlwapi/string.c:502:14: [4] (buffer) StrNCatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPSTR WINAPI StrNCatA(LPSTR lpszStr, LPCSTR lpszCat, INT cchMax) data/wine-5.0/dlls/shlwapi/string.c:514:3: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNA(lpszStr + strlen(lpszStr), lpszCat, cchMax); data/wine-5.0/dlls/shlwapi/string.c:523:15: [4] (buffer) StrNCatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPWSTR WINAPI StrNCatW(LPWSTR lpszStr, LPCWSTR lpszCat, INT cchMax) data/wine-5.0/dlls/shlwapi/string.c:535:3: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(lpszStr + lstrlenW(lpszStr), lpszCat, cchMax); data/wine-5.0/dlls/shlwapi/string.c:557:6: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(*dest,src, len); data/wine-5.0/dlls/shlwapi/string.c:717:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpszOut, szOut); data/wine-5.0/dlls/shlwapi/string.c:810:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpszStr, szCopy, cchMax); data/wine-5.0/dlls/shlwapi/string.c:882:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpszDest, cchMax, wszBytesFormat, (int)llBytes); data/wine-5.0/dlls/shlwapi/string.c:911:3: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). StrCatBuffW(lpszDest, wszAdd, cchMax); data/wine-5.0/dlls/shlwapi/string.c:1158:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpDstStr, mem, reqLen); data/wine-5.0/dlls/shlwapi/string.c:1203:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpDst, lpSrcStr, iLen); data/wine-5.0/dlls/shlwapi/tests/istream.c:295:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(test_file, testA_txt); data/wine-5.0/dlls/shlwapi/tests/istream.c:403:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(test_fileA, testW_txt); data/wine-5.0/dlls/shlwapi/tests/istream.c:519:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(test_fileA, testEx_txt); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:221:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(language, "-"); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:224:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(language, buffer); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:486:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "%s %s %d %p", argv[0], argv[1], procid, hmem); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1811:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buff2, buff3); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1822:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buff2, buff3); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1996:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2, spaceW); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1999:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2, buff3); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2008:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2, spaceW); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2011:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buff2, buff3); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2718:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, testpathW); data/wine-5.0/dlls/shlwapi/tests/path.c:239:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cur_dir, foo); data/wine-5.0/dlls/shlwapi/tests/path.c:247:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cur_dir, foo); data/wine-5.0/dlls/shlwapi/tests/path.c:254:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cur_dir + 2, path3); data/wine-5.0/dlls/shlwapi/tests/path.c:585:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:593:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:601:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:611:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:619:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:631:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:642:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:650:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:658:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:666:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:674:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:686:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:694:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:702:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:711:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:722:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:731:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:745:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "control"); data/wine-5.0/dlls/shlwapi/tests/path.c:774:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "one\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:782:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "one\\..\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:790:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, " "); data/wine-5.0/dlls/shlwapi/tests/path.c:798:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:822:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:861:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:869:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:877:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:885:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:893:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C: \\ one "); data/wine-5.0/dlls/shlwapi/tests/path.c:901:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:919:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "C:\\one"); data/wine-5.0/dlls/shlwapi/tests/path.c:949:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:959:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:984:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:992:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1000:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1008:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1016:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1025:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1033:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1046:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1056:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dest, "test"); data/wine-5.0/dlls/shlwapi/tests/path.c:1091:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "file"); data/wine-5.0/dlls/shlwapi/tests/path.c:1099:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "file.txt"); data/wine-5.0/dlls/shlwapi/tests/path.c:1108:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "file.txt.doc"); data/wine-5.0/dlls/shlwapi/tests/path.c:1127:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(too_long + 300, ".abcde"); data/wine-5.0/dlls/shlwapi/tests/path.c:1152:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "aaaaaaaaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1161:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "aaaaaaaaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1170:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "aaaaaaaaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1179:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path, "aa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1200:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1201:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1213:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1214:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1227:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1228:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1239:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1240:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1250:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1251:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1260:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1261:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "C:\\"); data/wine-5.0/dlls/shlwapi/tests/path.c:1262:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1272:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "C:\\one\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1273:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "C:\\one\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1274:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1284:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\.two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1285:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\.three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1286:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1296:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\..two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1297:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\..three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1298:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1308:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\...two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1309:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\...three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1310:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1320:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\.\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1321:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\.\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1322:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1332:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\..\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1333:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\..\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1334:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1344:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\...\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1345:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\...\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1346:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1356:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "same"); data/wine-5.0/dlls/shlwapi/tests/path.c:1357:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "same"); data/wine-5.0/dlls/shlwapi/tests/path.c:1358:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1368:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\mid.\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1369:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\mid.\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1370:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1380:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\mid.end\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1381:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "one\\mid.end\\three"); data/wine-5.0/dlls/shlwapi/tests/path.c:1382:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1392:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path1, "one\\..\\two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1393:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(path2, "two"); data/wine-5.0/dlls/shlwapi/tests/path.c:1394:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(out, "aaa"); data/wine-5.0/dlls/shlwapi/tests/path.c:1530:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, sysdrvA); data/wine-5.0/dlls/shlwapi/tests/path.c:1531:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, sysdrvA); data/wine-5.0/dlls/shlwapi/tests/path.c:1535:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, sysdriveA); data/wine-5.0/dlls/shlwapi/tests/path.c:1536:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, sysdrvA); data/wine-5.0/dlls/shlwapi/tests/path.c:1547:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, sysdrvA); data/wine-5.0/dlls/shlwapi/tests/path.c:1548:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, sysdrvA); data/wine-5.0/dlls/shlwapi/tests/path.c:1559:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, nonpathW); data/wine-5.0/dlls/shlwapi/tests/path.c:1596:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, sysdrvW); data/wine-5.0/dlls/shlwapi/tests/path.c:1597:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, sysdrvW); data/wine-5.0/dlls/shlwapi/tests/path.c:1601:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, sysdriveW); data/wine-5.0/dlls/shlwapi/tests/path.c:1602:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, sysdrvW); data/wine-5.0/dlls/shlwapi/tests/path.c:1700:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buf, tests[i].path); data/wine-5.0/dlls/shlwapi/tests/shreg.c:122:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:134:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:189:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:250:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:265:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:284:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:310:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/shreg.c:335:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, sEmptyBuffer); data/wine-5.0/dlls/shlwapi/tests/string.c:838:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(U(strret).cStr, "Test"); data/wine-5.0/dlls/shlwapi/tests/string.c:1004:15: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNA(buf, str1, 10), buf, PCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1020:5: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(wbuf, (LPCWSTR)0x1, 10); data/wine-5.0/dlls/shlwapi/tests/string.c:1021:5: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW((LPWSTR)0x1, wstr1, 10); data/wine-5.0/dlls/shlwapi/tests/string.c:1025:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNW(wbuf, (LPCWSTR)0x1, 1), wbuf, PWCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1030:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNW(wbuf, 0, 10), wbuf, PWCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1035:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNW(wbuf, 0, 0), wbuf, PWCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1040:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNW(wbuf, wstr1, 0), wbuf, PWCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1045:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). expect_eq(StrCpyNW(wbuf, wstr1, 10), wbuf, PWCHAR, "%p"); data/wine-5.0/dlls/shlwapi/tests/string.c:1073:9: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNA(U(strret).cStr, str1, MAX_PATH); data/wine-5.0/dlls/shlwapi/tests/string.c:1092:9: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNA(U(strret).cStr, str1, MAX_PATH); data/wine-5.0/dlls/shlwapi/tests/url.c:544:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(newurl, untouchedA); data/wine-5.0/dlls/shlwapi/tests/url.c:557:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(newurl, untouchedA); data/wine-5.0/dlls/shlwapi/tests/url.c:575:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(newurl, untouchedA); data/wine-5.0/dlls/shlwapi/tests/url.c:585:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(newurl, untouchedA); data/wine-5.0/dlls/shlwapi/tests/url.c:597:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(newurl, untouchedA); data/wine-5.0/dlls/shlwapi/thread.c:193:5: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). StrCpyNW(szBuff + iPrefixLen, lpszName, ARRAY_SIZE(szBuff) - iPrefixLen); data/wine-5.0/dlls/snmpapi/main.c:513:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(oid, one); data/wine-5.0/dlls/spoolss/spoolss_main.c:89:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (res) lstrcpyW(res, pwstr); data/wine-5.0/dlls/sspicli/main.c:104:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dst, src ); data/wine-5.0/dlls/sti/sti.c:155:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(value, len, format, pwszCommandLine, commandLineSuffix); data/wine-5.0/dlls/strmbase/filter.c:275:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pInfo->achName, This->filterInfo.achName); data/wine-5.0/dlls/strmbase/filter.c:293:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(This->filterInfo.achName, pName, MAX_FILTER_NAME); data/wine-5.0/dlls/strmbase/pin.c:182:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->achName, pin->name); data/wine-5.0/dlls/strmbase/pin.c:207:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*id, pin->name); data/wine-5.0/dlls/strmbase/pin.c:601:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pin->pin.name, name); data/wine-5.0/dlls/strmbase/pin.c:975:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pin->pin.name, name); data/wine-5.0/dlls/sxs/cache.c:121:12: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. *len = swprintf( ret, buflen, fmtW, arch, name, token, version ); data/wine-5.0/dlls/sxs/cache.c:141:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, sxsdir, path ); data/wine-5.0/dlls/sxs/cache.c:158:12: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. *len = swprintf( ret, buflen, fmtW, arch, name, token ); data/wine-5.0/dlls/sxs/cache.c:179:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, sxsdir, path, version ); data/wine-5.0/dlls/sxs/cache.c:262:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW( info->pszCurrentAssemblyPathBuf, path ); data/wine-5.0/dlls/sxs/cache.c:509:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, sxsdir ); data/wine-5.0/dlls/sxs/cache.c:510:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, policiesW ); data/wine-5.0/dlls/sxs/cache.c:512:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, name ); data/wine-5.0/dlls/sxs/cache.c:514:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, backslashW ); data/wine-5.0/dlls/sxs/cache.c:515:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, version ); data/wine-5.0/dlls/sxs/cache.c:516:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, suffixW ); data/wine-5.0/dlls/sxs/cache.c:558:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( src + len, file->name ); data/wine-5.0/dlls/sxs/cache.c:579:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, sxsdir ); data/wine-5.0/dlls/sxs/cache.c:580:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, manifestsW ); data/wine-5.0/dlls/sxs/cache.c:581:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, fullname ); data/wine-5.0/dlls/sxs/cache.c:582:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, suffixW ); data/wine-5.0/dlls/sxs/cache.c:645:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dst, sxsdir ); data/wine-5.0/dlls/sxs/cache.c:646:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dst, name ); data/wine-5.0/dlls/sxs/cache.c:649:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dst, backslashW ); data/wine-5.0/dlls/sxs/cache.c:650:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dst, file->name ); data/wine-5.0/dlls/sxs/cache.c:720:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dirname, sxsdir ); data/wine-5.0/dlls/sxs/cache.c:721:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dirname + len_sxsdir, name ); data/wine-5.0/dlls/sxs/cache.c:727:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, dirname ); data/wine-5.0/dlls/sxs/cache.c:728:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, backslashW ); data/wine-5.0/dlls/sxs/cache.c:729:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( filename, file->name ); data/wine-5.0/dlls/sxs/name.c:154:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, name->name ); data/wine-5.0/dlls/sxs/name.c:156:31: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (name->arch) len += swprintf( buffer + len, *buflen - len, fmtW, archW, name->arch ); data/wine-5.0/dlls/sxs/name.c:157:31: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (name->token) len += swprintf( buffer + len, *buflen - len, fmtW, tokenW, name->token ); data/wine-5.0/dlls/sxs/name.c:158:31: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (name->type) len += swprintf( buffer + len, *buflen - len, fmtW, typeW, name->type ); data/wine-5.0/dlls/sxs/name.c:159:31: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (name->version) len += swprintf( buffer + len, *buflen - len, fmtW, versionW, name->version ); data/wine-5.0/dlls/sxs/name.c:218:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, name ); data/wine-5.0/dlls/sxs/sxs_private.h:36:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyW( dst, src ); data/wine-5.0/dlls/sxs/tests/cache.c:120:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( comctl_path1, "\\winsxs\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_none_deadbeef" ); data/wine-5.0/dlls/sxs/tests/cache.c:122:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( comctl_path2, "\\winsxs\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.3790.4770_x-ww_05fdf087" ); data/wine-5.0/dlls/sxs/tests/cache.c:124:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( comctl_path3, "\\winsxs\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.8250.0_none_c119e7cca62b92bd" ); data/wine-5.0/dlls/sxs/tests/cache.c:126:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA( comctl_path4, "\\winsxs\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2" ); data/wine-5.0/dlls/sxs/tests/sxs.c:72:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path_file, path_tmp); data/wine-5.0/dlls/sxs/tests/sxs.c:186:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s", argv[0]); data/wine-5.0/dlls/sxs/tests/sxs.c:188:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exe, "%s.exe", argv[0]); data/wine-5.0/dlls/sxs/tests/sxs.c:189:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s %s", argv[0], argv[1], "subtest"); data/wine-5.0/dlls/system.drv16/system.c:33:28: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WINE_DEFAULT_DEBUG_CHANNEL(system); data/wine-5.0/dlls/tapi32/assisted.c:64:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( szlockey, ARRAY_SIZE(szlockey), locationW, currid); data/wine-5.0/dlls/tapi32/assisted.c:70:25: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( citycode, (WCHAR *) buf, 8); data/wine-5.0/dlls/tapi32/assisted.c:78:25: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( countrycode, 8, fmtW, *(LPDWORD) buf ); data/wine-5.0/dlls/taskschd/folder.c:221:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(folder_path, parent); data/wine-5.0/dlls/taskschd/folder.c:227:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(folder_path, bslash); data/wine-5.0/dlls/taskschd/folder.c:230:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(folder_path, path); data/wine-5.0/dlls/taskschd/folder.c:235:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(folder_path, bslash); data/wine-5.0/dlls/taskschd/task.c:3895:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(task_svc->comp_name, comp_name); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:397:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lpme->szExePath, name, sizeof(lpme->szExePath) ); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:465:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( lpte->szModule, pTask->module_name, sizeof(lpte->szModule) ); data/wine-5.0/dlls/twain_32/dsm_ctrl.c:95:4: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(devices[nrdevices].modname, dsname); data/wine-5.0/dlls/twain_32/dsm_ctrl.c:338:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (newSource->identity.ProductName, pIdentity->ProductName); data/wine-5.0/dlls/typelib.dll16/typelib.c:105:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret, pathname ); data/wine-5.0/dlls/ucrtbase/tests/misc.c:487:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "\"\"%c\"\"\"%s\" \t \"misc\" cmd", name[0], name+1); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1241:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s misc exit", argv0); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1342:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path, "%s misc quick_exit", argv0); data/wine-5.0/dlls/ucrtbase/tests/printf.c:692:12: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. START_TEST(printf) data/wine-5.0/dlls/ucrtbase/tests/scanf.c:317:12: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. START_TEST(scanf) data/wine-5.0/dlls/urlmon/axinstall.c:175:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf+len, prev_ptr); data/wine-5.0/dlls/urlmon/axinstall.c:346:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(text, ARRAY_SIZE(text), buf, ctx->counter); data/wine-5.0/dlls/urlmon/axinstall.c:480:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), fmt, hres); data/wine-5.0/dlls/urlmon/binding.c:205:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(key_name + ARRAY_SIZE(mime_keyW), mime); data/wine-5.0/dlls/urlmon/binding.c:624:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pstatstg->pwcsName, This->buf->cache_file); data/wine-5.0/dlls/urlmon/session.c:564:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), formatW, is_nt, info.dwMajorVersion, info.dwMinorVersion, os_type); data/wine-5.0/dlls/urlmon/tests/misc.c:1944:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s internet_features", argv[0], argv[1]); data/wine-5.0/dlls/urlmon/tests/protocol.c:3123:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf+ARRAY_SIZE(wszFile2)-1, file_name_buf); data/wine-5.0/dlls/urlmon/tests/protocol.c:3149:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf+ARRAY_SIZE(wszFile4)-1, file_name_buf); data/wine-5.0/dlls/urlmon/tests/protocol.c:3160:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, fragmentW); data/wine-5.0/dlls/urlmon/tests/protocol.c:3165:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file_name_buf+len, fragmentW); data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:868:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s domain_tests", argv[0], argv[1]); data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:1260:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(regpath, "%s\\Zones\\%d", szInternetSettingsKey, URLZONE_CUSTOM); data/wine-5.0/dlls/urlmon/tests/stream.c:267:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(INDEX_HTML_A, "file:///"); data/wine-5.0/dlls/urlmon/tests/stream.c:268:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(INDEX_HTML_A, path); data/wine-5.0/dlls/urlmon/tests/stream.c:288:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/urlmon/tests/stream.c:289:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, wszIndexHtmlA); data/wine-5.0/dlls/urlmon/tests/url.c:2064:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(http_cache_file, pstgmed->u.lpszFileName); data/wine-5.0/dlls/urlmon/tests/url.c:2858:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(current_url, winetest_data_urlW); data/wine-5.0/dlls/urlmon/tests/url.c:2864:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(current_url, file_url); data/wine-5.0/dlls/urlmon/tests/url.c:3653:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(file_urlA, "file://"); data/wine-5.0/dlls/urlmon/tests/url.c:3654:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(file_urlA, path); data/wine-5.0/dlls/urlmon/tests/url.c:3677:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, "\\"); data/wine-5.0/dlls/urlmon/tests/url.c:3678:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(path, file_name); data/wine-5.0/dlls/urlmon/tests/url.c:3705:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(curdir, "\\"); data/wine-5.0/dlls/urlmon/tests/url.c:3706:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(curdir, test_txtA); data/wine-5.0/dlls/urlmon/umon.c:442:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*ppszDisplayName, This->URLName); data/wine-5.0/dlls/urlmon/umon.c:893:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szFileName, cache_path); data/wine-5.0/dlls/urlmon/uri.c:847:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ret = swprintf(tmp, ARRAY_SIZE(tmp), formatW, digits[0], digits[1], digits[2], digits[3]); data/wine-5.0/dlls/urlmon/uri.c:849:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ret = swprintf(dest, 16, formatW, digits[0], digits[1], digits[2], digits[3]); data/wine-5.0/dlls/urlmon/uri.c:860:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ret = swprintf(tmp, ARRAY_SIZE(tmp), formatW, value); data/wine-5.0/dlls/urlmon/uri.c:862:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ret = swprintf(dest, 11, formatW, value); data/wine-5.0/dlls/urlmon/uri.c:2647:43: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. uri->canon_len += swprintf(uri->canon_uri+uri->canon_len, 5, data/wine-5.0/dlls/urlmon/uri.c:2651:43: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. uri->canon_len += swprintf(tmp, ARRAY_SIZE(tmp), formatW, values[i]); data/wine-5.0/dlls/user.exe16/network.c:196:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpRemoteName, label ); data/wine-5.0/dlls/user.exe16/user.c:133:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( font16->lfFaceName, font32->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/user.exe16/user.c:2520:19: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. len = sprintf( number, (format.flags & WPRINTF_UPPER_HEX) ? "%X" : "%x", int_view); data/wine-5.0/dlls/user.exe16/user.c:3190:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( from, source ); data/wine-5.0/dlls/user.exe16/user.c:3257:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fmtstr,"%%%s",f); data/wine-5.0/dlls/user.exe16/user.c:3261:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fmtstr,"%%%s",f); data/wine-5.0/dlls/user.exe16/user.c:3279:39: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. while ((ret = vsnprintf(b, sz, fmtstr, (va_list) argliststart)) < 0 || ret >= sz) { data/wine-5.0/dlls/user.exe16/user.c:3333:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpBuffer,target,nSize); data/wine-5.0/dlls/user32/class.c:370:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(&combined[*basename_offset], name); data/wine-5.0/dlls/user32/class.c:486:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( classPtr->name, name ); data/wine-5.0/dlls/user32/class.c:1232:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, class->basename, count ); data/wine-5.0/dlls/user32/combo.c:1339:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buf, lpBuffer, count ); data/wine-5.0/dlls/user32/combo.c:1389:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( buf, lpBuffer, count ); data/wine-5.0/dlls/user32/cursoricon.c:1348:32: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (info->resname) strcpyW( info->resname, resname ); data/wine-5.0/dlls/user32/cursoricon.c:2469:14: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpynW( info->szResName, ptr->resname, MAX_PATH ); data/wine-5.0/dlls/user32/dde_client.c:1433:8: [4] (access) ImpersonateDdeClientWindow: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ret = ImpersonateDdeClientWindow(pConv->hwndClient, pConv->hwndServer); data/wine-5.0/dlls/user32/dde_misc.c:234:13: [4] (access) ImpersonateDdeClientWindow: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. BOOL WINAPI ImpersonateDdeClientWindow(HWND hWndClient, HWND hWndServer) data/wine-5.0/dlls/user32/defwnd.c:146:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( wndPtr->text, text ); data/wine-5.0/dlls/user32/defwnd.c:938:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( dest, wndPtr->text, wParam ); data/wine-5.0/dlls/user32/desktop.c:71:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer + len, filename, MAX_PATH - len ); data/wine-5.0/dlls/user32/dialog.c:1806:10: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpynW( str, ptr, len ); data/wine-5.0/dlls/user32/edit.c:2598:3: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(es->text + s, es->text + e); data/wine-5.0/dlls/user32/edit.c:2626:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(es->text + e, es->text + e + strl); data/wine-5.0/dlls/user32/edit.c:2646:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(es->text + s + strl - 1, es->text + s + strl); data/wine-5.0/dlls/user32/edit.c:3044:2: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(utext, es->undo_text); data/wine-5.0/dlls/user32/edit.c:3356:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dst, es->text, count); data/wine-5.0/dlls/user32/icontitle.c:74:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( str, emptyTitleText ); data/wine-5.0/dlls/user32/listbox.c:898:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, str); data/wine-5.0/dlls/user32/listbox.c:1711:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(new_str, str); data/wine-5.0/dlls/user32/listbox.c:1905:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer + 1, entry.cAlternateFileName ); data/wine-5.0/dlls/user32/listbox.c:1907:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer + 1, entry.cFileName ); data/wine-5.0/dlls/user32/listbox.c:1920:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, entry.cAlternateFileName ); data/wine-5.0/dlls/user32/listbox.c:1922:25: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, entry.cFileName ); data/wine-5.0/dlls/user32/mdi.c:988:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ci->frameTitle, lpTitle ); data/wine-5.0/dlls/user32/mdi.c:1001:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( lpBuffer, ci->frameTitle, MDI_MAXTITLELENGTH); data/wine-5.0/dlls/user32/mdi.c:1015:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpBuffer, ci->frameTitle, MDI_MAXTITLELENGTH+1 ); data/wine-5.0/dlls/user32/menu.c:3844:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( str, item->text, nMaxSiz ); data/wine-5.0/dlls/user32/menu.c:4790:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpmii->dwTypeData, item->text, lpmii->cch); data/wine-5.0/dlls/user32/menu.c:4898:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( menu->text, text ); data/wine-5.0/dlls/user32/nonclient.c:1576:9: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WinExec( "taskman.exe", SW_SHOWNORMAL ); data/wine-5.0/dlls/user32/spy.c:2148:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(sp_e->wnd_class, WC_PROPSHEETW); data/wine-5.0/dlls/user32/spy.c:2197:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA (sp_e->msg_name, p->name, sizeof(sp_e->msg_name)); data/wine-5.0/dlls/user32/spy.c:2209:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(sp_e->msg_name, msg_name, sizeof(sp_e->msg_name)); data/wine-5.0/dlls/user32/sysparams.c:53:28: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WINE_DEFAULT_DEBUG_CHANNEL(system); data/wine-5.0/dlls/user32/sysparams.c:769:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( fullname, elf->elfFullName, LF_FACESIZE ); data/wine-5.0/dlls/user32/sysparams.c:776:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( fullname, lf->lfFaceName ); data/wine-5.0/dlls/user32/sysparams.c:1112:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( font.lfFaceName, entry->font.fullname ); data/wine-5.0/dlls/user32/sysparams.c:1156:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( entry->path.path, buffer, MAX_PATH ); data/wine-5.0/dlls/user32/sysparams.c:1158:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( ptr_param, entry->path.path, int_param ); data/wine-5.0/dlls/user32/sysparams.c:1168:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, ptr_param, MAX_PATH ); data/wine-5.0/dlls/user32/sysparams.c:1172:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( entry->path.path, buffer ); data/wine-5.0/dlls/user32/sysparams.c:3847:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ((MONITORINFOEXW *)info)->szDevice, DEFAULT_ADAPTER_NAME ); data/wine-5.0/dlls/user32/sysparams.c:3861:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ((MONITORINFOEXW *)info)->szDevice, monitors[index].szDevice ); data/wine-5.0/dlls/user32/sysparams.c:4091:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->DeviceKey, bufferW ); data/wine-5.0/dlls/user32/sysparams.c:4097:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( key_nameW, bufferW + 18 ); data/wine-5.0/dlls/user32/sysparams.c:4127:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->DeviceID, bufferW ); data/wine-5.0/dlls/user32/sysparams.c:4150:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( key_nameW, bufferW + 18 ); data/wine-5.0/dlls/user32/sysparams.c:4179:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->DeviceKey, NT_CLASS ); data/wine-5.0/dlls/user32/sysparams.c:4180:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( info->DeviceKey, bufferW ); data/wine-5.0/dlls/user32/sysparams.c:4188:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->DeviceID, MONITOR_INTERFACE_PREFIX ); data/wine-5.0/dlls/user32/sysparams.c:4189:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( info->DeviceID, instanceW ); data/wine-5.0/dlls/user32/sysparams.c:4190:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( info->DeviceID, GUID_DEVINTERFACE_MONITOR ); data/wine-5.0/dlls/user32/sysparams.c:4205:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( info->DeviceID, bufferW ); data/wine-5.0/dlls/user32/sysparams.c:4206:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( info->DeviceID, BACKSLASH ); data/wine-5.0/dlls/user32/sysparams.c:4212:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( info->DeviceID, bufferW ); data/wine-5.0/dlls/user32/tests/class.c:1254:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( path_name, "%s class %s", argv[0], classes[i] ); data/wine-5.0/dlls/user32/tests/clipboard.c:168:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( cmd, "%s clipboard %s", argv0, args ); data/wine-5.0/dlls/user32/tests/clipboard.c:391:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/user32/tests/clipboard.c:399:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buf, "foo"); data/wine-5.0/dlls/user32/tests/clipboard.c:1755:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, str ); data/wine-5.0/dlls/user32/tests/combo.c:328:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buffer, stringFormat, choices[i]); data/wine-5.0/dlls/user32/tests/cursoricon.c:433:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_name, "%s cursoricon %lx", test_argv[0], (INT_PTR)parent); data/wine-5.0/dlls/user32/tests/cursoricon.c:1090:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(filename, ext); data/wine-5.0/dlls/user32/tests/cursoricon.c:1249:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_icon, "%s\\icon.ico", path); data/wine-5.0/dlls/user32/tests/cursoricon.c:1250:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(path_image, "%s\\test.bmp", path); data/wine-5.0/dlls/user32/tests/cursoricon.c:1310:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(new_PATH, "%s;%s", old_PATH, temp_dir_PATH); data/wine-5.0/dlls/user32/tests/dde.c:55:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmdline, "\"%s\" %s %s", argv[0], argv[1], arg); data/wine-5.0/dlls/user32/tests/dde.c:164:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(str, "command executed\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:166:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(str, "command not executed\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:169:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(str, "requested data\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:189:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA((LPSTR)data->Value, str); data/wine-5.0/dlls/user32/tests/dde.c:400:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buffer, "poke data\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:443:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buffer, "[Command(Var)]"); data/wine-5.0/dlls/user32/tests/dde.c:699:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(str, "requested data\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:1036:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA((LPSTR)poke->Value, "poke data\r\n"); data/wine-5.0/dlls/user32/tests/dde.c:1051:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(ptr, command); data/wine-5.0/dlls/user32/tests/edit.c:1638:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lf.lfFaceName, facename); data/wine-5.0/dlls/user32/tests/edit.c:2987:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/user32/tests/edit.c:3008:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/user32/tests/edit.c:3022:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/user32/tests/edit.c:3048:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(buffer, str2); data/wine-5.0/dlls/user32/tests/edit.c:3062:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/user32/tests/edit.c:3072:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(current, str0); data/wine-5.0/dlls/user32/tests/edit.c:3120:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, str); data/wine-5.0/dlls/user32/tests/edit.c:3143:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, str2); data/wine-5.0/dlls/user32/tests/input.c:243:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, getdesc[td[i]]); data/wine-5.0/dlls/user32/tests/listbox.c:963:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:969:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:983:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1024:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1042:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1082:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1115:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1129:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1146:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1192:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1220:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1266:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1285:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1308:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, wildcard); data/wine-5.0/dlls/user32/tests/listbox.c:1333:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1506:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1543:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1593:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1637:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1669:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1703:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathBuffer, BAD_EXTENSION); data/wine-5.0/dlls/user32/tests/listbox.c:1767:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/user32/tests/listbox.c:1782:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempBuffer, itemBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1830:13: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/user32/tests/listbox.c:1845:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempBuffer, itemBuffer); data/wine-5.0/dlls/user32/tests/menu.c:162:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buf, MOD_txtsizes[i].text); data/wine-5.0/dlls/user32/tests/menu.c:833:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(text_copy, text); data/wine-5.0/dlls/user32/tests/menu.c:872:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf,"%d text \"%s\" mnuopt %d", count, text ? text: "(nil)", mnuopt); data/wine-5.0/dlls/user32/tests/menu.c:1213:16: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). static WCHAR *strcpyW( WCHAR *dst, const WCHAR *src ) data/wine-5.0/dlls/user32/tests/menu.c:1366:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(ansi)strcpy( string, init );\ data/wine-5.0/dlls/user32/tests/menu.c:1367:10: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else strcpyW( string, init );\ data/wine-5.0/dlls/user32/tests/monitor.c:58:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(primary, mi.szDevice); data/wine-5.0/dlls/user32/tests/monitor.c:135:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(monitor_name, adapter_name); data/wine-5.0/dlls/user32/tests/monitor.c:169:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, device->DeviceKey, sizeof(device_key_prefix)); data/wine-5.0/dlls/user32/tests/monitor.c:197:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(adapter_name, dd.DeviceName); data/wine-5.0/dlls/user32/tests/monitor.c:218:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(primary_device_name, dd.DeviceName); data/wine-5.0/dlls/user32/tests/msg.c:2054:45: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define DUMP(flag) do { if (flags & flag) { strcat( buffer, "|" #flag ); flags &= ~flag; } } while(0) data/wine-5.0/dlls/user32/tests/msg.c:2156:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: hook %d (%s) wp %08lx lp %08lx", data/wine-5.0/dlls/user32/tests/msg.c:2161:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: winevent %p %08x %08lx %08lx", data/wine-5.0/dlls/user32/tests/msg.c:2173:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: %p WM_WINDOWPOS%s wp %08lx lp %08lx after %p x %d y %d cx %d cy %d flags %s", data/wine-5.0/dlls/user32/tests/msg.c:2197:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(seq->output, "%s: %p WM_NCCALCSIZE: winpos->cx %u, winpos->cy %u", data/wine-5.0/dlls/user32/tests/msg.c:2212:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: %p WM_DRAWITEM: type %x, ctl_id %x, item_id %x, action %x, state %x", data/wine-5.0/dlls/user32/tests/msg.c:2236:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: %p WM_MEASUREITEM: CtlType %#x, CtlID %#x, itemID %#x, itemData %#lx", data/wine-5.0/dlls/user32/tests/msg.c:2270:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: %p WM_COMPAREITEM: CtlType %#x, CtlID %#x, itemID1 %#x, itemData1 %#lx, itemID2 %#x, itemData2 %#lx", data/wine-5.0/dlls/user32/tests/msg.c:2292:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( seq->output, "%s: %p %04x wp %08lx lp %08lx", data/wine-5.0/dlls/user32/tests/msg.c:10061:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( (LPWSTR)lp, dummy_window_text, wp ); data/wine-5.0/dlls/user32/tests/msg.c:13486:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(comment, "%d: ShowWindow(%s)", i+1, sw_cmd_name[idx]); data/wine-5.0/dlls/user32/tests/msg.c:16297:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( path, "%s msg %u", argv0, i ); data/wine-5.0/dlls/user32/tests/text.c:71:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/user32/tests/win.c:1308:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegCreateKeyExW( HKEY_LOCAL_MACHINE, winlogonW, 0, 0, 0, access, NULL, &hkey, 0 )) return 0; data/wine-5.0/dlls/user32/tests/win.c:1320:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (RegCreateKeyExW( HKEY_LOCAL_MACHINE, winlogonW, 0, 0, 0, access, NULL, &hkey, 0 )) return FALSE; data/wine-5.0/dlls/user32/tests/win.c:9434:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s win create_children %p\n", argv0, hwnd); data/wine-5.0/dlls/user32/tests/win.c:10300:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s win winproc_limit", argv0); data/wine-5.0/dlls/user32/tests/win.c:11797:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cmd, "%s win test_other_process_window %p", argv0, hwnd); data/wine-5.0/dlls/user32/user_main.c:187:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, explorerW ); data/wine-5.0/dlls/user32/user_main.c:205:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer + 13, explorerW ); data/wine-5.0/dlls/user32/user_main.c:303:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( buffer, info.lpDesktop ); data/wine-5.0/dlls/user32/user_main.c:442:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( cmdline, app ); data/wine-5.0/dlls/user32/user_main.c:444:28: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (flags & EWX_FORCE) lstrcatW( cmdline, killW ); data/wine-5.0/dlls/user32/user_main.c:447:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( cmdline, end_sessionW ); data/wine-5.0/dlls/user32/user_main.c:448:38: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (flags & EWX_FORCEIFHUNG) lstrcatW( cmdline, forceW ); data/wine-5.0/dlls/user32/user_main.c:450:32: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!(flags & EWX_REBOOT)) lstrcatW( cmdline, shutdownW ); data/wine-5.0/dlls/user32/win.c:2119:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( app, windir ); data/wine-5.0/dlls/user32/win.c:2121:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( cmdline, app ); data/wine-5.0/dlls/user32/win.c:2903:24: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (win->text) lstrcpynW( lpString, win->text, nMaxCount ); data/wine-5.0/dlls/user32/win.h:104:109: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern HDESK open_winstation_desktop( HWINSTA hwinsta, LPCWSTR name, DWORD flags, BOOL inherit, ACCESS_MASK access ) DECLSPEC_HIDDEN; data/wine-5.0/dlls/user32/winhelp.c:89:13: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (WinExec("winhlp32.exe -x", SW_SHOWNORMAL) < 32) data/wine-5.0/dlls/user32/winhelp.c:146:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(((char*)lpwh) + sizeof(WINHELP), lpHelpFile); data/wine-5.0/dlls/user32/winstation.c:86:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HWINSTA WINAPI CreateWindowStationA( LPCSTR name, DWORD flags, ACCESS_MASK access, data/wine-5.0/dlls/user32/winstation.c:91:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateWindowStationW( NULL, flags, access, sa ); data/wine-5.0/dlls/user32/winstation.c:98:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateWindowStationW( buffer, flags, access, sa ); data/wine-5.0/dlls/user32/winstation.c:105:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HWINSTA WINAPI CreateWindowStationW( LPCWSTR name, DWORD flags, ACCESS_MASK access, data/wine-5.0/dlls/user32/winstation.c:119:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/user32/winstation.c:136:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HWINSTA WINAPI OpenWindowStationA( LPCSTR name, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:140:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenWindowStationW( NULL, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:147:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenWindowStationW( buffer, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:154:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HWINSTA WINAPI OpenWindowStationW( LPCWSTR name, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:165:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/user32/winstation.c:276:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, ACCESS_MASK access, LPSECURITY_ATTRIBUTES sa ) data/wine-5.0/dlls/user32/winstation.c:285:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return CreateDesktopW( NULL, NULL, NULL, flags, access, sa ); data/wine-5.0/dlls/user32/winstation.c:292:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return CreateDesktopW( buffer, NULL, NULL, flags, access, sa ); data/wine-5.0/dlls/user32/winstation.c:300:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD flags, ACCESS_MASK access, LPSECURITY_ATTRIBUTES sa ) data/wine-5.0/dlls/user32/winstation.c:318:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/user32/winstation.c:333:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HDESK WINAPI OpenDesktopA( LPCSTR name, DWORD flags, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:337:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!name) return OpenDesktopW( NULL, flags, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:344:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return OpenDesktopW( buffer, flags, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:348:102: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HDESK open_winstation_desktop( HWINSTA hwinsta, LPCWSTR name, DWORD flags, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:361:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/user32/winstation.c:374:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HDESK WINAPI OpenDesktopW( LPCWSTR name, DWORD flags, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:376:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return open_winstation_desktop( NULL, name, flags, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:491:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HDESK WINAPI OpenInputDesktop( DWORD flags, BOOL inherit, ACCESS_MASK access ) data/wine-5.0/dlls/user32/winstation.c:495:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE( "(%x,%i,%x)\n", flags, inherit, access ); data/wine-5.0/dlls/user32/winstation.c:503:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access = access; data/wine-5.0/dlls/userenv/userenv_main.c:284:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(buf, profiles_dir); data/wine-5.0/dlls/userenv/userenv_main.c:322:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, sidW); data/wine-5.0/dlls/userenv/userenv_main.c:461:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( lpProfileDir, dirW ); data/wine-5.0/dlls/userenv/userenv_main.c:462:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( lpProfileDir, slashW ); data/wine-5.0/dlls/userenv/userenv_main.c:463:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( lpProfileDir, userW ); data/wine-5.0/dlls/usp10/tests/usp10.c:1285:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lParam.lf.lfFaceName, recommended); data/wine-5.0/dlls/usp10/tests/usp10.c:2008:13: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "MS Sans Serif"); data/wine-5.0/dlls/usp10/tests/usp10.c:2594:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, (char *)efnd.elf[i].elfFullName); data/wine-5.0/dlls/usp10/tests/usp10.c:2642:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, (char *)efnd.elf[i].elfFullName); data/wine-5.0/dlls/usp10/tests/usp10.c:3438:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/usp10/tests/usp10.c:4089:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/usp10/tests/usp10.c:4209:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/usp10/usp10.c:1969:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(value, ARRAY_SIZE(value), szFmt, scriptInformation[scriptid].scriptTag); data/wine-5.0/dlls/usp10/usp10.c:1971:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(FaceName,scriptInformation[scriptid].fallbackFont); data/wine-5.0/dlls/usp10/usp10.c:1975:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(FaceName,scriptInformation[scriptid].fallbackFont); data/wine-5.0/dlls/uxtheme/draw.c:199:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPath, fileProp->lpValue, min(fileProp->dwValueLen+1, ARRAY_SIZE(szPath))); data/wine-5.0/dlls/uxtheme/draw.c:245:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPath, tp->lpValue, min(tp->dwValueLen+1, ARRAY_SIZE(szPath))); data/wine-5.0/dlls/uxtheme/msstyles.c:344:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(sec, lpSection, min(dwLen+1, ARRAY_SIZE(sec))); data/wine-5.0/dlls/uxtheme/msstyles.c:356:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szAppName, comp, MAX_THEME_APP_NAME); data/wine-5.0/dlls/uxtheme/msstyles.c:363:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szClassName, comp, MAX_THEME_CLASS_NAME); data/wine-5.0/dlls/uxtheme/msstyles.c:369:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(part, comp, ARRAY_SIZE(part)); data/wine-5.0/dlls/uxtheme/msstyles.c:376:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(state, comp, ARRAY_SIZE(state)); data/wine-5.0/dlls/uxtheme/msstyles.c:379:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(part, comp, ARRAY_SIZE(part)); data/wine-5.0/dlls/uxtheme/msstyles.c:386:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szClassName, comp, MAX_THEME_CLASS_NAME); data/wine-5.0/dlls/uxtheme/msstyles.c:393:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(state, comp, ARRAY_SIZE(state)); data/wine-5.0/dlls/uxtheme/msstyles.c:396:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szClassName, comp, MAX_THEME_CLASS_NAME); data/wine-5.0/dlls/uxtheme/msstyles.c:453:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cur->szAppName, pszAppName); data/wine-5.0/dlls/uxtheme/msstyles.c:454:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cur->szClassName, pszClassName); data/wine-5.0/dlls/uxtheme/msstyles.c:897:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPropertyName, lpName, min(dwLen+1, ARRAY_SIZE(szPropertyName))); data/wine-5.0/dlls/uxtheme/msstyles.c:948:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szPropertyName, lpName, min(dwLen+1, ARRAY_SIZE(szPropertyName))); data/wine-5.0/dlls/uxtheme/msstyles.c:1014:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szClassName, start, min(len+1, ARRAY_SIZE(szClassName))); data/wine-5.0/dlls/uxtheme/msstyles.c:1020:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szClassName, start, ARRAY_SIZE(szClassName)); data/wine-5.0/dlls/uxtheme/msstyles.c:1120:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szFile, lpFilename, ARRAY_SIZE(szFile)); data/wine-5.0/dlls/uxtheme/msstyles.c:1146:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (img->name, szFile); data/wine-5.0/dlls/uxtheme/msstyles.c:1196:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpBuff, start, min(buffSize, end-start+1)); data/wine-5.0/dlls/uxtheme/msstyles.c:1361:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszBuff, tp->lpValue, min(tp->dwValueLen+1, cchMaxBuffChars)); data/wine-5.0/dlls/uxtheme/system.c:132:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szData, pvData); data/wine-5.0/dlls/uxtheme/system.c:195:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szCurrentColor, pt->pszSelectedColor, ARRAY_SIZE(szCurrentColor)); data/wine-5.0/dlls/uxtheme/system.c:196:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szCurrentSize, pt->pszSelectedSize, ARRAY_SIZE(szCurrentSize)); data/wine-5.0/dlls/uxtheme/system.c:478:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szCurrentTheme, tf->szThemeFile, ARRAY_SIZE(szCurrentTheme)); data/wine-5.0/dlls/uxtheme/system.c:479:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szCurrentColor, tf->pszSelectedColor, ARRAY_SIZE(szCurrentColor)); data/wine-5.0/dlls/uxtheme/system.c:480:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szCurrentSize, tf->pszSelectedSize, ARRAY_SIZE(szCurrentSize)); data/wine-5.0/dlls/uxtheme/system.c:740:26: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(pszThemeFileName) lstrcpynW(pszThemeFileName, szCurrentTheme, dwMaxNameChars); data/wine-5.0/dlls/uxtheme/system.c:741:22: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(pszColorBuff) lstrcpynW(pszColorBuff, szCurrentColor, cchMaxColorChars); data/wine-5.0/dlls/uxtheme/system.c:742:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(pszSizeBuff) lstrcpynW(pszSizeBuff, szCurrentSize, cchMaxSizeChars); data/wine-5.0/dlls/uxtheme/system.c:854:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszValueBuff, lpValue, min(dwLen+1,cchMaxValChars)); data/wine-5.0/dlls/uxtheme/system.c:988:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszColorName, pt->pszSelectedColor, dwColorNameLen); data/wine-5.0/dlls/uxtheme/system.c:989:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pszSizeName, pt->pszSelectedSize, dwSizeNameLen); data/wine-5.0/dlls/uxtheme/system.c:1031:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szDir, pszThemePath); data/wine-5.0/dlls/uxtheme/system.c:1039:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szPath, szDir); data/wine-5.0/dlls/uxtheme/system.c:1040:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szPath, szStar); data/wine-5.0/dlls/uxtheme/system.c:1113:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszColorNames->szName, tmp); data/wine-5.0/dlls/uxtheme/system.c:1171:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszSizeNames->szName, tmp); data/wine-5.0/dlls/uxtheme/tests/system.c:731:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. START_TEST(system) data/wine-5.0/dlls/vbscript/global.c:612:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ptr, orig_title); data/wine-5.0/dlls/vbscript/tests/run.c:192:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s*", vt2a(V_BYREF(v))); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1217:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(str, var[i].name); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1226:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(str, func[i].name); data/wine-5.0/dlls/version/tests/info.c:155:2: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(mypath, "\\regsvr32.exe"); data/wine-5.0/dlls/version/tests/info.c:553:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "\\StringFileInfo\\%08x\\%s", translation, value_name[i]); data/wine-5.0/dlls/version/tests/install.c:71:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(appdir, "%s\\regedit.exe", windir); data/wine-5.0/dlls/version/version.c:115:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(srcfn,"%s\\%s",srcdir,srcfilename); data/wine-5.0/dlls/version/version.c:118:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(destfn,"%s\\%s",pdest,destfilename); data/wine-5.0/dlls/version/version.c:122:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpfn,"%s\\%s",pdest,destfilename); data/wine-5.0/dlls/version/version.c:135:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpfn,"%s\\%s",pdest,tmpfile); data/wine-5.0/dlls/version/version.c:229:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmpfile,tmpfn+tmplast); data/wine-5.0/dlls/version/version.c:248:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(curfn,"%s\\%s",curdir,destfilename); data/wine-5.0/dlls/w32skrnl/w32skernel.c:39:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( text, win32s ); data/wine-5.0/dlls/wbemdisp/locator.c:1709:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, selectW ); data/wine-5.0/dlls/wbemdisp/locator.c:1710:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, class ); data/wine-5.0/dlls/wbemdisp/locator.c:2143:28: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (server && *server) lstrcpyW( ret + 2, server ); data/wine-5.0/dlls/wbemdisp/locator.c:2149:34: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (namespace && *namespace) lstrcpyW( ret + len, namespace ); data/wine-5.0/dlls/wbemdisp/locator.c:2150:10: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW( ret + len, defaultW ); data/wine-5.0/dlls/wbemprox/builtin.c:1713:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, ARRAY_SIZE(fmtW), fmtW, year, month, day ); data/wine-5.0/dlls/wbemprox/builtin.c:1790:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( drive, ARRAY_SIZE( drive ), fmtW, 'A' + i ); data/wine-5.0/dlls/wbemprox/builtin.c:1935:33: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. const struct smbios_system *system; data/wine-5.0/dlls/wbemprox/builtin.c:1967:33: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. const struct smbios_system *system; data/wine-5.0/dlls/wbemprox/builtin.c:1971:93: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!(hdr = find_smbios_entry( SMBIOS_TYPE_SYSTEM, buf, len )) || hdr->length < sizeof(*system)) goto done; data/wine-5.0/dlls/wbemprox/builtin.c:1976:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, 37, fmtW, ptr[0], ptr[1], ptr[2], ptr[3], ptr[4], ptr[5], ptr[6], ptr[7], ptr[8], ptr[9], data/wine-5.0/dlls/wbemprox/builtin.c:2291:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, info->dwFileVersionMS >> 16, info->dwFileVersionMS & 0xffff, data/wine-5.0/dlls/wbemprox/builtin.c:2572:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( device_id, ARRAY_SIZE( device_id ), fmtW, index ); data/wine-5.0/dlls/wbemprox/builtin.c:2738:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( device_id, ARRAY_SIZE( device_id ), fmtW, index ); data/wine-5.0/dlls/wbemprox/builtin.c:2803:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, (addr >> 24) & 0xff, (addr >> 16) & 0xff, (addr >> 8) & 0xff, addr & 0xff ); data/wine-5.0/dlls/wbemprox/builtin.c:2863:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE( buffer ), fmtW, serial ); data/wine-5.0/dlls/wbemprox/builtin.c:2891:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( device_id, ARRAY_SIZE( device_id ), fmtW, 'A' + i ); data/wine-5.0/dlls/wbemprox/builtin.c:3024:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, 18, fmtW, addr[0], addr[1], addr[2], addr[3], addr[4], addr[5] ); data/wine-5.0/dlls/wbemprox/builtin.c:3093:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( device_id, ARRAY_SIZE( device_id ), fmtW, aa->u.s.IfIndex ); data/wine-5.0/dlls/wbemprox/builtin.c:3269:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, ARRAY_SIZE( buf ), fmtW, address->OnLinkPrefixLength ); data/wine-5.0/dlls/wbemprox/builtin.c:3453:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( id, ARRAY_SIZE( id ), fmtW, i ); data/wine-5.0/dlls/wbemprox/builtin.c:3512:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( handle, ARRAY_SIZE( handle ), fmtW, entry.th32ProcessID ); data/wine-5.0/dlls/wbemprox/builtin.c:3639:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( caption, len, fmtW, arch, family, model, stepping ); data/wine-5.0/dlls/wbemprox/builtin.c:3650:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( version, len, fmtW, model, stepping ); data/wine-5.0/dlls/wbemprox/builtin.c:3664:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( processor_id, len, fmtW, regs[3], regs[0] ); data/wine-5.0/dlls/wbemprox/builtin.c:3740:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( device_id, ARRAY_SIZE( device_id ), fmtW, i ); data/wine-5.0/dlls/wbemprox/builtin.c:3781:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, 26, fmtW, tf.Year, tf.Month, tf.Day, tf.Hour, tf.Minute, tf.Second, tf.Milliseconds * 1000 ); data/wine-5.0/dlls/wbemprox/builtin.c:3806:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, 26, fmtW, st.wYear, st.wMonth, st.wDay, st.wHour, st.wMinute, st.wSecond, st.wMilliseconds * 1000, -Bias ); data/wine-5.0/dlls/wbemprox/builtin.c:3831:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (ret) swprintf( ret, 11, fmtW, GetACP() ); data/wine-5.0/dlls/wbemprox/builtin.c:3850:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (ret) swprintf( ret, 11, fmtW, ver->dwBuildNumber ); data/wine-5.0/dlls/wbemprox/builtin.c:3923:14: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. if (ret) swprintf( ret, 33, fmtW, ver->dwMajorVersion, ver->dwMinorVersion, ver->dwBuildNumber ); data/wine-5.0/dlls/wbemprox/builtin.c:4357:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, desc->VendorId, desc->DeviceId, desc->SubSysId, desc->Revision ); data/wine-5.0/dlls/wbemprox/builtin.c:4435:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( mode, ARRAY_SIZE( mode ), fmtW, hres, vres, (UINT64)1 << rec->current_bitsperpixel ); data/wine-5.0/dlls/wbemprox/class.c:602:18: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf( p, *len - (p - ret), fmtW, table->columns[i].name, value ); data/wine-5.0/dlls/wbemprox/class.c:623:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, table->name, body ); data/wine-5.0/dlls/wbemprox/class.c:812:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, class, method, dir == PARAM_IN ? inW : outW ); data/wine-5.0/dlls/wbemprox/class.c:834:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, len, selectW, class, method, dir >= 0 ? geW : leW ); data/wine-5.0/dlls/wbemprox/qualifier.c:116:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, len, fmtW, class, member, name ); data/wine-5.0/dlls/wbemprox/qualifier.c:122:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, len, fmt2W, class, member ); data/wine-5.0/dlls/wbemprox/qualifier.c:128:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, len, fmt3W, class ); data/wine-5.0/dlls/wbemprox/query.c:289:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, len, fmt_signedW, val ); data/wine-5.0/dlls/wbemprox/query.c:295:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, len, fmt_unsignedW, val ); data/wine-5.0/dlls/wbemprox/query.c:487:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, class ); data/wine-5.0/dlls/wbemprox/query.c:511:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, assocclass, dependent ); data/wine-5.0/dlls/wbemprox/query.c:548:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( ret, len, fmtW, server, namespace ); data/wine-5.0/dlls/wbemprox/query.c:845:27: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. offset += swprintf( ret + offset, *len - offset, fmtW, name, values[j] ); data/wine-5.0/dlls/wbemprox/query.c:883:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, class, proplist ); data/wine-5.0/dlls/wbemprox/query.c:905:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmtW, server, namespace, relpath ); data/wine-5.0/dlls/wbemprox/services.c:432:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( query, len, selectW, path->class, path->filter ); data/wine-5.0/dlls/wbemprox/services.c:438:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( query, select_allW ); data/wine-5.0/dlls/wbemprox/services.c:439:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( query, path->class ); data/wine-5.0/dlls/wbemprox/table.c:188:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( ret, len, fmt_strW, (const WCHAR *)(INT_PTR)val ); data/wine-5.0/dlls/wbemprox/table.c:193:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( number, ARRAY_SIZE( number ), fmt_signedW, val ); data/wine-5.0/dlls/wbemprox/table.c:198:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( number, ARRAY_SIZE( number ), fmt_unsignedW, val ); data/wine-5.0/dlls/wbemprox/tests/query.c:597:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( username, compname ); data/wine-5.0/dlls/wbemprox/tests/query.c:598:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( username, backslashW ); data/wine-5.0/dlls/wbemprox/wbemprox_private.h:261:70: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (lstrlenW( src ) + 1) * sizeof(WCHAR) ))) lstrcpyW( dst, src ); data/wine-5.0/dlls/webservices/channel.c:929:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( channel->u.http.path, uc.lpszUrlPath ); data/wine-5.0/dlls/webservices/channel.c:930:35: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (uc.dwExtraInfoLength) lstrcatW( channel->u.http.path, uc.lpszExtraInfo ); data/wine-5.0/dlls/webservices/listener.c:299:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( service, ARRAY_SIZE(service), fmtW, port ); data/wine-5.0/dlls/webservices/tests/proxy.c:733:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( buf, fmt, len ); data/wine-5.0/dlls/webservices/url.c:504:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( buf, ARRAY_SIZE(buf), fmtW, port ); data/wine-5.0/dlls/webservices/writer.c:1030:11: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. len = sprintf( (char *)buf, fmt, year, month + 1, day + 1, hour, min, sec ); data/wine-5.0/dlls/webservices/writer.c:1034:16: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. len += sprintf( (char *)buf + len, fmt_frac, sec_frac ); data/wine-5.0/dlls/webservices/writer.c:1044:16: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. len += sprintf( (char *)buf + len, fmt_tz, tz_hour ? '-' : '+', tz_hour ); data/wine-5.0/dlls/webservices/writer.c:1053:12: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. return sprintf( (char *)buf, fmt, ptr->Data1, ptr->Data2, ptr->Data3, data/wine-5.0/dlls/webservices/writer.c:1061:12: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. return sprintf( (char *)buf, fmt, ptr->Data1, ptr->Data2, ptr->Data3, data/wine-5.0/dlls/wer/main.c:286:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(report->eventtype, eventtype); data/wine-5.0/dlls/wer/tests/main.c:77:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslash); data/wine-5.0/dlls/wer/tests/main.c:81:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, winetest_wer); data/wine-5.0/dlls/wer/tests/main.c:133:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, backslash); data/wine-5.0/dlls/wer/tests/main.c:139:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, winetest_wer); data/wine-5.0/dlls/wimgapi/main.c:60:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HANDLE WINAPI WIMCreateFile(WCHAR *path, DWORD access, DWORD creation, DWORD flags, DWORD compression, DWORD *result) data/wine-5.0/dlls/wimgapi/main.c:62:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("(%s %d %d %d %d %p) stub\n", debugstr_w(path), access, creation, flags, compression, result); data/wine-5.0/dlls/windowscodecs/imgfactory.c:1493:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. UINT bpp, access, size, view_offset, view_size; data/wine-5.0/dlls/windowscodecs/imgfactory.c:1528:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. view = MapViewOfFile(section, access, 0, view_offset, view_size); data/wine-5.0/dlls/windowscodecs/metadataquery.c:469:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(full_query, This->root); data/wine-5.0/dlls/windowscodecs/metadataquery.c:470:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(full_query, query); data/wine-5.0/dlls/windowscodecs/metadataquery.c:535:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(root, full_query, p - full_query + elem.len + 1); data/wine-5.0/dlls/windowscodecs/pngformat.c:274:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dyn_names[i], names[i]); data/wine-5.0/dlls/windowscodecs/propertybag.c:227:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(dest->pstrName, src->pstrName); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:1748:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(queryW, guidW); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2562:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(ret, "(VT_LPWSTR:%s)", wine_dbgstr_w(U(*var).pwszVal)); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2567:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(ret, "(VT_LPSTR:%s)", U(*var).pszVal); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:332:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret, filename); data/wine-5.0/dlls/winealsa.drv/midi.c:137:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, arg); data/wine-5.0/dlls/winealsa.drv/midi.c:1186:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(midiPortName, "%s - %s", snd_seq_client_info_get_name(cinfo), snd_seq_port_info_get_name(pinfo)); data/wine-5.0/dlls/winealsa.drv/midi.c:1188:6: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(midiPortName, snd_seq_port_info_get_name(pinfo), MAXPNAMELEN); data/wine-5.0/dlls/winealsa.drv/midi.c:1252:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(midiPortName, "%s - %s", snd_seq_client_info_get_name(cinfo), snd_seq_port_info_get_name(pinfo)); data/wine-5.0/dlls/winealsa.drv/midi.c:1254:6: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(midiPortName, snd_seq_port_info_get_name(pinfo), MAXPNAMELEN); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:645:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(dev_node_name, "pcm.%s", name); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4205:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hwname, name); data/wine-5.0/dlls/wineandroid.drv/init.c:216:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ((MONITORINFOEXW *)info)->szDevice, default_monitor.szDevice ); data/wine-5.0/dlls/wineandroid.drv/keyboard.c:841:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buf, buffer, size ); data/wine-5.0/dlls/wineandroid.drv/opengl.c:622:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( wgl_extensions, ext ); data/wine-5.0/dlls/winebus.sys/bus_udev.c:754:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, str); data/wine-5.0/dlls/winebus.sys/bus_udev.c:1077:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmp, uevent); data/wine-5.0/dlls/winebus.sys/main.c:155:14: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) strcpyW(dst, src); data/wine-5.0/dlls/winebus.sys/main.c:227:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(dst, ext->busid); data/wine-5.0/dlls/winebus.sys/main.c:499:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, nameW); data/wine-5.0/dlls/winebus.sys/main.c:663:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, vendor_products[i].product); data/wine-5.0/dlls/winebus.sys/main.c:670:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, vendor_products[i].manufacturer); data/wine-5.0/dlls/winebus.sys/main.c:677:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, vendor_products[i].serialnumber); data/wine-5.0/dlls/winecrt0/debug.c:96:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( debug_options[pos].name, name ); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1037:33: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(register_name, ctx->ps_input[idx]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1060:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "fragment.texcoord[%s + %u]", rel_reg, reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1072:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "fragment.texcoord[%s + %u]", rel_reg, reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1079:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "fragment.texcoord[%s + %u]", rel_reg, reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1086:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(register_name, ctx->ps_input[reg->idx[0].offset]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1132:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "C[%s + %u]", rel_reg, reg->idx[0].offset - rel_offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1134:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "C[%s - %u]", rel_reg, rel_offset - reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1186:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "%s", ctx->fog_output); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1188:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(register_name, "%s", rastout_reg_names[reg->idx[0].offset]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1200:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(register_name, ctx->color_output[reg->idx[0].offset]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1207:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(register_name, ctx->texcrd_output[reg->idx[0].offset]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1209:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(register_name, ctx->vs_output[reg->idx[0].offset]); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1260:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, register_name); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1263:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, write_mask); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1560:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "%s%s", regstr, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1564:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "-%s%s", regstr, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1598:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "|%s%s|", regstr, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1606:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "-|%s%s|", regstr, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1609:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "-T%c%s", 'A' + tmpreg, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1614:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "%s%s", regstr, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1620:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outregstr, "T%c%s", 'A' + tmpreg, swzstr); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1821:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(arguments, operand); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3890:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, sig->elements[i].semantic_name); data/wine-5.0/dlls/wined3d/arb_program_shader.c:7746:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!decompress && !(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/arb_program_shader.c:7746:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!decompress && !(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/arb_program_shader.c:7837:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(src_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/buffer.c:1324:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(desc->access), data, parent, parent_ops); data/wine-5.0/dlls/wined3d/buffer.c:1345:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WINED3D_MULTISAMPLE_NONE, 0, desc->usage, desc->bind_flags, desc->access, data/wine-5.0/dlls/wined3d/buffer.c:1359:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. || wined3d_resource_access_is_managed(desc->access)) data/wine-5.0/dlls/wined3d/buffer.c:1543:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(desc->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/device.c:4077:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (src_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU data/wine-5.0/dlls/wined3d/device.c:4083:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (dst_texture->resource.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/wined3d/device.c:4595:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/device.c:5104:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (wined3d_resource_access_is_managed(resource->access) && !resource->map_count) data/wine-5.0/dlls/wined3d/device.c:5117:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. texture->resource.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/wined3d/device.c:5119:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. texture->resource.access &= ~(WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W); data/wine-5.0/dlls/wined3d/directx.c:127:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(open_adapter_desc.DeviceName, device_name); data/wine-5.0/dlls/wined3d/directx.c:2819:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(adapter->device_name, display_device.DeviceName); data/wine-5.0/dlls/wined3d/glsl_shader.c:2590:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "%s%s", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2593:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "-%s%s", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2596:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "!%s%s", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2599:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "(%s%s - vec4(0.5)%s)", in_reg, in_regswizzle, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2602:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "-(%s%s - vec4(0.5)%s)", in_reg, in_regswizzle, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2605:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "(2.0 * (%s%s - 0.5))", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2608:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "-(2.0 * (%s%s - 0.5))", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2611:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "(1.0 - %s%s)", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2614:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "(2.0 * %s%s)", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2617:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "-(2.0 * %s%s)", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2620:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "abs(%s%s)", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2623:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "-abs(%s%s)", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:2627:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_str, "%s%s", in_reg, in_regswizzle); data/wine-5.0/dlls/wined3d/glsl_shader.c:3449:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(arguments, reg_name); data/wine-5.0/dlls/wined3d/glsl_shader.c:3454:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(arguments, reg_name); data/wine-5.0/dlls/wined3d/glsl_shader.c:3459:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(arguments, reg_name); data/wine-5.0/dlls/wined3d/glsl_shader.c:3464:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(arguments, reg_name); data/wine-5.0/dlls/wined3d/glsl_shader.c:12940:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/glsl_shader.c:12951:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!decompress && !(src_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/glsl_shader.c:13017:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(src_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/resource.c:31:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static void resource_check_usage(DWORD usage, unsigned int access) data/wine-5.0/dlls/wined3d/resource.c:49:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (usage & WINED3DUSAGE_DYNAMIC && access & WINED3D_RESOURCE_ACCESS_MAP_R) data/wine-5.0/dlls/wined3d/resource.c:56:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int bind_flags, unsigned int access, unsigned int width, unsigned int height, unsigned int depth, data/wine-5.0/dlls/wined3d/resource.c:84:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. resource_check_usage(usage, access); data/wine-5.0/dlls/wined3d/resource.c:86:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (usage & WINED3DUSAGE_SCRATCH && access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/resource.c:89:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(access)); data/wine-5.0/dlls/wined3d/resource.c:95:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((access & (WINED3D_RESOURCE_ACCESS_CPU | WINED3D_RESOURCE_ACCESS_GPU)) != WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/resource.c:98:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_bind_flags(bind_flags), wined3d_debug_resource_access(access)); data/wine-5.0/dlls/wined3d/resource.c:207:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/wined3d/resource.c:208:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. resource->access = access; data/wine-5.0/dlls/wined3d/resource.c:223:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & WINED3D_RESOURCE_ACCESS_CPU) && device->wined3d->flags & WINED3D_VIDMEM_ACCOUNTING) data/wine-5.0/dlls/wined3d/resource.c:256:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(resource->access & WINED3D_RESOURCE_ACCESS_CPU) && d3d->flags & WINED3D_VIDMEM_ACCOUNTING) data/wine-5.0/dlls/wined3d/resource.c:278:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!wined3d_resource_access_is_managed(resource->access)) data/wine-5.0/dlls/wined3d/resource.c:314:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->access = resource->access; data/wine-5.0/dlls/wined3d/resource.c:368:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((flags & WINED3D_MAP_READ) && !(resource->access & WINED3D_RESOURCE_ACCESS_MAP_R)) data/wine-5.0/dlls/wined3d/resource.c:374:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((flags & WINED3D_MAP_WRITE) && !(resource->access & WINED3D_RESOURCE_ACCESS_MAP_W)) data/wine-5.0/dlls/wined3d/shader.c:473:10: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. rc = vsnprintf(&buffer->buffer[buffer->content_size], rem, format, args); data/wine-5.0/dlls/wined3d/surface.c:294:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:294:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:1148:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!decompress && !(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:1148:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!decompress && !(src_resource->access & dst_resource->access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:1218:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return !(resource->access & WINED3D_RESOURCE_ACCESS_GPU); data/wine-5.0/dlls/wined3d/surface.c:1223:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return !(resource->access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/surface.c:1226:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return !(resource->access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/surface.c:1361:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(src_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:2489:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (dst_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/surface.c:2567:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. && !(dst_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU)) data/wine-5.0/dlls/wined3d/surface.c:2616:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (dst_texture->resource.access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/swapchain.c:887:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. texture_desc.access |= WINED3D_RESOURCE_ACCESS_MAP_R | WINED3D_RESOURCE_ACCESS_MAP_W; data/wine-5.0/dlls/wined3d/texture.c:59:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (!(texture->resource.access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/wined3d/texture.c:423:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((texture->resource.access & required_access) != required_access) data/wine-5.0/dlls/wined3d/texture.c:425:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. required_access, texture->resource.access); data/wine-5.0/dlls/wined3d/texture.c:1327:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!wined3d_resource_access_is_managed(resource->access)) data/wine-5.0/dlls/wined3d/texture.c:1330:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(resource->access)); data/wine-5.0/dlls/wined3d/texture.c:1559:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(texture->resource.access & WINED3D_RESOURCE_ACCESS_CPU) && d3d->flags & WINED3D_VIDMEM_ACCOUNTING) data/wine-5.0/dlls/wined3d/texture.c:3048:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (resource->access & WINED3D_RESOURCE_ACCESS_CPU data/wine-5.0/dlls/wined3d/texture.c:3055:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (resource->access & WINED3D_RESOURCE_ACCESS_CPU) data/wine-5.0/dlls/wined3d/texture.c:3058:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(resource->access)); data/wine-5.0/dlls/wined3d/texture.c:3105:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((fmt_flags & WINED3DFMT_FLAG_BLOCKS) && !(resource->access & WINED3D_RESOURCE_ACCESS_CPU)) data/wine-5.0/dlls/wined3d/texture.c:3288:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(desc->access), desc->width, desc->height, desc->depth, data/wine-5.0/dlls/wined3d/texture.c:3311:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc->usage & WINED3DUSAGE_DYNAMIC && (wined3d_resource_access_is_managed(desc->access) data/wine-5.0/dlls/wined3d/texture.c:3315:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. wined3d_debug_resource_access(desc->access), debug_d3dusage(desc->usage)); data/wine-5.0/dlls/wined3d/texture.c:3374:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desc->access & WINED3D_RESOURCE_ACCESS_GPU) data/wine-5.0/dlls/wined3d/texture.c:3403:101: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->multisample_type, desc->multisample_quality, desc->usage, desc->bind_flags, desc->access, data/wine-5.0/dlls/wined3d/texture.c:3785:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. desc->access = resource->access; data/wine-5.0/dlls/wined3d/utils.c:4663:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. const char *wined3d_debug_resource_access(DWORD access) data/wine-5.0/dlls/wined3d/utils.c:4668:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS_TO_STR(x) if (access & x) { debug_append(&buffer, #x, " | "); access &= ~x; } data/wine-5.0/dlls/wined3d/utils.c:4668:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS_TO_STR(x) if (access & x) { debug_append(&buffer, #x, " | "); access &= ~x; } data/wine-5.0/dlls/wined3d/utils.c:4674:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access) data/wine-5.0/dlls/wined3d/utils.c:4675:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FIXME("Unrecognised access flag(s) %#x.\n", access); data/wine-5.0/dlls/wined3d/wined3d_private.h:3355:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. const char *wined3d_debug_resource_access(DWORD access) DECLSPEC_HIDDEN; data/wine-5.0/dlls/wined3d/wined3d_private.h:3361:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline BOOL wined3d_resource_access_is_managed(unsigned int access) data/wine-5.0/dlls/wined3d/wined3d_private.h:3363:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return !(~access & (WINED3D_RESOURCE_ACCESS_GPU | WINED3D_RESOURCE_ACCESS_CPU)); data/wine-5.0/dlls/wined3d/wined3d_private.h:3393:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/dlls/wined3d/wined3d_private.h:3434:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int bind_flags, unsigned int access, unsigned int width, unsigned int height, unsigned int depth, data/wine-5.0/dlls/wined3d/wined3d_private.h:4582:54: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINTF_ATTR(fmt,args) __attribute__((format (printf,fmt,args))) data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:184:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, JOYDEV_NEW, i); data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:186:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, JOYDEV_OLD, i); data/wine-5.0/dlls/winemac.drv/clipboard.c:676:14: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. p += sprintf(p, header, total - 1, len, len + size + 1 /* include the final \n in the data */); data/wine-5.0/dlls/winemac.drv/clipboard.c:678:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p + size, trailer); data/wine-5.0/dlls/winemac.drv/clipboard.c:810:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(p, paths[i]); data/wine-5.0/dlls/winemac.drv/display.c:152:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(key, display0); data/wine-5.0/dlls/winemac.drv/display.c:388:5: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(display_key, sizeof(display_key), display_key_format, CGDisplayUnitNumber(displayID)); data/wine-5.0/dlls/winemac.drv/display.c:1399:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver, nt_classW); data/wine-5.0/dlls/winemac.drv/display.c:1400:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driver, bufferW); data/wine-5.0/dlls/winemac.drv/display.c:1414:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(guid_string, bufferW); data/wine-5.0/dlls/winemac.drv/display.c:1444:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, machine_prefixW); data/wine-5.0/dlls/winemac.drv/display.c:1446:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(bufferW, adapter_keyW); data/wine-5.0/dlls/winemac.drv/ime.c:1380:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszUIClass, UI_CLASS_NAME); data/wine-5.0/dlls/winemac.drv/keyboard.c:1291:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer + len, dead, size - len); data/wine-5.0/dlls/winemac.drv/mouse.c:191:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, p ? p + 1 : info->szModName); data/wine-5.0/dlls/winemac.drv/mouse.c:194:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (info->szResName[0]) strcpyW(p, info->szResName); data/wine-5.0/dlls/winemac.drv/opengl.c:1295:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gl_info.glExtensions, str); data/wine-5.0/dlls/winemac.drv/opengl.c:1296:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(gl_info.glExtensions, legacy_extensions); data/wine-5.0/dlls/winemac.drv/opengl.c:1298:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(gl_info.glExtensions, legacy_ext_swap_control); data/wine-5.0/dlls/winemac.drv/opengl.c:4149:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(gl_info.wglExtensions, ext); data/wine-5.0/dlls/winemac.drv/systray.c:150:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(icon->tiptext, nid->szTip, ARRAY_SIZE(icon->tiptext)); data/wine-5.0/dlls/winemac.drv/vulkan.c:409:13: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(properties[i].extensionName, sizeof(properties[i].extensionName), data/wine-5.0/dlls/winemapi/main.c:113:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, smtp); data/wine-5.0/dlls/winemapi/main.c:114:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p + sizeof(smtp) - 1, name); data/wine-5.0/dlls/winemapi/sendmail.c:221:25: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(to, ","); data/wine-5.0/dlls/winemapi/sendmail.c:223:21: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(to, address); data/wine-5.0/dlls/winemapi/sendmail.c:229:25: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cc, ","); data/wine-5.0/dlls/winemapi/sendmail.c:231:21: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cc, address); data/wine-5.0/dlls/winemapi/sendmail.c:237:25: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(bcc, ","); data/wine-5.0/dlls/winemapi/sendmail.c:239:21: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(bcc, address); data/wine-5.0/dlls/winemapi/sendmail.c:253:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(mailto, format, to ? to : "", subject, cc ? cc : "", bcc ? bcc : "", body); data/wine-5.0/dlls/wineoss.drv/mmaux.c:97:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lpCaps->szPname, ini); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:538:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dev_item->devnode, devnode); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:640:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(This->devnode, oss_dev->devnode); data/wine-5.0/dlls/wineps.drv/afm.c:121:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( family->FamilyName, afm->FamilyName ); data/wine-5.0/dlls/wineps.drv/afm2c.c:192:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, afm->FontName, sizeof(buffer) - 2); data/wine-5.0/dlls/wineps.drv/download.c:127:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*str, (char*)potm + (ptrdiff_t)potm->otmpFaceName); data/wine-5.0/dlls/wineps.drv/download.c:132:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(*str,vertical_suffix); data/wine-5.0/dlls/wineps.drv/download.c:330:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pdl->ps_name, ps_name); data/wine-5.0/dlls/wineps.drv/download.c:807:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, undef, default_font, pdl->ps_name); data/wine-5.0/dlls/wineps.drv/driver.c:184:8: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(dm1->dmPublic.dmFormName, dm2->dmPublic.dmFormName, CCHFORMNAME); data/wine-5.0/dlls/wineps.drv/driver.c:283:15: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(buf, ARRAY_SIZE(buf), resW, res); data/wine-5.0/dlls/wineps.drv/driver.c:313:23: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(buf, ARRAY_SIZE(buf), resW, res->resx); data/wine-5.0/dlls/wineps.drv/driver.c:315:23: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf(buf, ARRAY_SIZE(buf), resxyW, res->resx, res->resy); data/wine-5.0/dlls/wineps.drv/driver.c:688:4: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(cp, ps->FullName, 64); data/wine-5.0/dlls/wineps.drv/driver.c:727:15: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( cp, slot->FullName, 24 ); data/wine-5.0/dlls/wineps.drv/escape.c:136:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(out_data, "Courier", cbOutput); data/wine-5.0/dlls/wineps.drv/font.c:105:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (FaceName, data/wine-5.0/dlls/wineps.drv/glyphlist.c:85:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)g->sz, szName); data/wine-5.0/dlls/wineps.drv/init.c:623:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( (WCHAR *)dm->dmPublic.dmDeviceName, name, CCHDEVICENAME ); data/wine-5.0/dlls/wineps.drv/init.c:681:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( pi->friendly_name, name ); data/wine-5.0/dlls/wineps.drv/mkagl.c:273:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(cp, "N %s", namebuf); data/wine-5.0/dlls/wineps.drv/mkagl.c:277:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(linebuf, "FONT FAMILY;%s", font_family); data/wine-5.0/dlls/wineps.drv/ppd.c:831:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( page->FullName, page->Name ); data/wine-5.0/dlls/wineps.drv/ps.c:277:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psbeginfeature, feature, value); data/wine-5.0/dlls/wineps.drv/ps.c:367:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buf, info->page->Name ); data/wine-5.0/dlls/wineps.drv/ps.c:448:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psheader, escaped_title, llx, lly, urx, ury, dmOrientation); data/wine-5.0/dlls/wineps.drv/ps.c:489:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psfooter, physDev->job.PageNo); data/wine-5.0/dlls/wineps.drv/ps.c:545:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psnewpage, name, physDev->job.PageNo, data/wine-5.0/dlls/wineps.drv/ps.c:562:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psmoveto, x, y); data/wine-5.0/dlls/wineps.drv/ps.c:570:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, pslineto, x, y); data/wine-5.0/dlls/wineps.drv/ps.c:587:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psrectangle, x, y, width, height, -width); data/wine-5.0/dlls/wineps.drv/ps.c:599:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psarc, x, y, w, h, -ang2, -ang1); data/wine-5.0/dlls/wineps.drv/ps.c:608:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, pscurveto, pts[0].x, pts[0].y, pts[1].x, pts[1].y, pts[2].x, pts[2].y ); data/wine-5.0/dlls/wineps.drv/ps.c:623:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( buf, psfindfont, name ); data/wine-5.0/dlls/wineps.drv/ps.c:628:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( buf, pssizematrix, size.xx, size.xy, size.yx, size.yy ); data/wine-5.0/dlls/wineps.drv/ps.c:635:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( buf, psrotatefont, -escapement ); data/wine-5.0/dlls/wineps.drv/ps.c:654:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, pssetrgbcolor, color->value.rgb.r, color->value.rgb.g, data/wine-5.0/dlls/wineps.drv/ps.c:661:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, pssetgray, color->value.gray.i); data/wine-5.0/dlls/wineps.drv/ps.c:679:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, pssetline, physDev->pen.width, physDev->pen.join, physDev->pen.endcap); data/wine-5.0/dlls/wineps.drv/ps.c:702:9: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. l = snprintf(buf, sizeof(buf), psglyphshow, g_name); data/wine-5.0/dlls/wineps.drv/ps.c:763:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psrotate, ang); data/wine-5.0/dlls/wineps.drv/ps.c:828:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, start, widthSrc, heightSrc, data/wine-5.0/dlls/wineps.drv/ps.c:831:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, start, widthSrc, heightSrc, data/wine-5.0/dlls/wineps.drv/ps.c:838:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, decode1, 255); data/wine-5.0/dlls/wineps.drv/ps.c:842:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, decode1, 15); data/wine-5.0/dlls/wineps.drv/ps.c:846:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, decode1, 1); data/wine-5.0/dlls/wineps.drv/ps.c:851:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, decode1, 1); data/wine-5.0/dlls/wineps.drv/ps.c:853:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, decode3); data/wine-5.0/dlls/wineps.drv/ps.c:862:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, endbits, bits); data/wine-5.0/dlls/wineps.drv/ps.c:878:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, start, xDst, yDst, widthDst, heightDst); data/wine-5.0/dlls/wineps.drv/ps.c:929:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psarrayput, pszArrayName, nIndex, lObject); data/wine-5.0/dlls/wineps.drv/ps.c:937:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psarraydef, pszArrayName, nSize); data/wine-5.0/dlls/wineps.drv/ps.c:945:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psrectclip, x, y, w, h); data/wine-5.0/dlls/wineps.drv/ps.c:953:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, psrectclip2, pszArrayName); data/wine-5.0/dlls/wineps.drv/ps.c:1001:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, do_pattern, w * w_mult, h * h_mult, w * w_mult, h * h_mult, w * w_mult, h * h_mult); data/wine-5.0/dlls/wineps.drv/type1.c:110:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, dict, ps_name, t1->emsize, t1->emsize, data/wine-5.0/dlls/wineps.drv/type1.c:656:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, glyph_def_begin, pdl->ps_name, glyph_name, len); data/wine-5.0/dlls/wineps.drv/type1.c:659:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, glyph_def_end); data/wine-5.0/dlls/wineps.drv/type1afm.c:318:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(*p_str, cp); data/wine-5.0/dlls/wineps.drv/type1afm.c:1137:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( filename, path ); data/wine-5.0/dlls/wineps.drv/type1afm.c:1141:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, starW ); data/wine-5.0/dlls/wineps.drv/type1afm.c:1150:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, data.name ); data/wine-5.0/dlls/wineps.drv/type42.c:207:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, start, ps_name, data/wine-5.0/dlls/wineps.drv/type42.c:215:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, TT_offset_table, t42->num_of_written_tables, data/wine-5.0/dlls/wineps.drv/type42.c:224:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, TT_table_dir_entry, FLIP_ORDER(t42->tables[i].MS_tag), data/wine-5.0/dlls/wineps.drv/type42.c:233:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, TT_table_dir_entry, FLIP_ORDER(t42->tables[t42->glyf_tab].MS_tag), data/wine-5.0/dlls/wineps.drv/type42.c:275:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, end, loca_off, glyf_off); data/wine-5.0/dlls/wineps.drv/type42.c:366:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, glyph_def, pdl->ps_name, index, glyph_name, index); data/wine-5.0/dlls/winex11.drv/clipboard.c:883:14: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. p += sprintf( p, header, total - 1, len, len + size + 1 /* include the final \n in the data */ ); data/wine-5.0/dlls/winex11.drv/clipboard.c:885:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p + size, trailer ); data/wine-5.0/dlls/winex11.drv/clipboard.c:925:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(uri, &uriList[start], end - start + 1); data/wine-5.0/dlls/winex11.drv/clipboard.c:1382:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(&textUriList[next], "file:///"); data/wine-5.0/dlls/winex11.drv/desktop.c:173:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( gpu->name, wine_adapterW ); data/wine-5.0/dlls/winex11.drv/desktop.c:216:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( monitor->name, generic_nonpnp_monitorW ); data/wine-5.0/dlls/winex11.drv/display.c:328:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(driver, nt_classW); data/wine-5.0/dlls/winex11.drv/display.c:329:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driver, bufferW); data/wine-5.0/dlls/winex11.drv/display.c:343:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(guid_string, bufferW); data/wine-5.0/dlls/winex11.drv/display.c:366:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(bufferW, machine_prefixW); data/wine-5.0/dlls/winex11.drv/display.c:368:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(bufferW, adapter_keyW); data/wine-5.0/dlls/winex11.drv/graphics.c:1703:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( filename, fullname ); data/wine-5.0/dlls/winex11.drv/ime.c:539:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpszUIClass,UI_CLASS_NAME); data/wine-5.0/dlls/winex11.drv/mouse.c:1055:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( name, p ? p + 1 : info->szModName ); data/wine-5.0/dlls/winex11.drv/mouse.c:1058:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (info->szResName[0]) strcpyW( p, info->szResName ); data/wine-5.0/dlls/winex11.drv/mouse.c:1088:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( valueA, cursors[i].names[0] ); data/wine-5.0/dlls/winex11.drv/opengl.c:478:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(glExtensions, str); data/wine-5.0/dlls/winex11.drv/opengl.c:479:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(glExtensions, legacy_extensions); data/wine-5.0/dlls/winex11.drv/opengl.c:3092:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(wglExtensions, ext); data/wine-5.0/dlls/winex11.drv/settings.c:174:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(key, display0); data/wine-5.0/dlls/winex11.drv/settings.c:314:68: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _X_FIELD(prefix, bits) if ((fields) & prefix##_##bits) {p+=sprintf(p, "%s%s", first ? "" : ",", #bits); first=FALSE;} data/wine-5.0/dlls/winex11.drv/systray.c:775:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(icon->tiptext, nid->szTip, ARRAY_SIZE( icon->tiptext )); data/wine-5.0/dlls/winex11.drv/systray.c:780:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( icon->info_text, nid->szInfo, ARRAY_SIZE( icon->info_text )); data/wine-5.0/dlls/winex11.drv/systray.c:781:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( icon->info_title, nid->szInfoTitle, ARRAY_SIZE( icon->info_title )); data/wine-5.0/dlls/winex11.drv/vulkan.c:405:13: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(properties[i].extensionName, sizeof(properties[i].extensionName), data/wine-5.0/dlls/winex11.drv/wintab.c:516:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(gSysContext.lcName, SZ_CONTEXT_NAME); data/wine-5.0/dlls/winex11.drv/wintab.c:517:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(gSysDevice.NAME, SZ_DEVICE_NAME); data/wine-5.0/dlls/winex11.drv/wintab.c:553:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(gSysDevice.PNPID, SZ_NON_PLUG_N_PLAY); data/wine-5.0/dlls/winex11.drv/wintab.c:751:29: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(cursor.BTNNAMES + cchPos, cursor.NAME); data/wine-5.0/dlls/winex11.drv/xdnd.c:706:22: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define D(x) case x: lstrcpynA(buffer, #x, size); return; data/wine-5.0/dlls/winex11.drv/xdnd.c:731:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "some private object", size); data/wine-5.0/dlls/winex11.drv/xdnd.c:736:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, "some GDI object", size); data/wine-5.0/dlls/winex11.drv/xinerama.c:158:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( gpus[0].name, wine_adapterW ); data/wine-5.0/dlls/winex11.drv/xinerama.c:267:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( monitor[index].name, generic_nonpnp_monitorW ); data/wine-5.0/dlls/winex11.drv/xrandr.c:695:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( gpus[0].name, wine_adapterW ); data/wine-5.0/dlls/winex11.drv/xrandr.c:956:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( monitors[monitor_count].name, generic_nonpnp_monitorW ); data/wine-5.0/dlls/winex11.drv/xrandr.c:1002:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( monitors[monitor_count].name, generic_nonpnp_monitorW ); data/wine-5.0/dlls/winex11.drv/xrender.c:1153:14: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(output, (line[j / 8] & (1 << (7 - (j % 8)))) ? "#" : " "); data/wine-5.0/dlls/winex11.drv/xrender.c:1168:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(output, str); data/wine-5.0/dlls/winhttp/cookie.c:275:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, cookies ); data/wine-5.0/dlls/winhttp/cookie.c:358:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( header + len_cookie, cookie->name ); data/wine-5.0/dlls/winhttp/cookie.c:362:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( header + len_cookie + len_name + 1, cookie->value ); data/wine-5.0/dlls/winhttp/request.c:501:18: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. offset = swprintf( ret, len, L"%s://%s", scheme, request->connect->hostname ); data/wine-5.0/dlls/winhttp/request.c:504:23: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. offset += swprintf( ret + offset, len - offset, L":%u", request->connect->hostport ); data/wine-5.0/dlls/winhttp/request.c:506:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + offset, request->path ); data/wine-5.0/dlls/winhttp/request.c:534:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, request->verb ); data/wine-5.0/dlls/winhttp/request.c:535:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L" " ); data/wine-5.0/dlls/winhttp/request.c:536:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, path ); data/wine-5.0/dlls/winhttp/request.c:537:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L" " ); data/wine-5.0/dlls/winhttp/request.c:538:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, request->version ); data/wine-5.0/dlls/winhttp/request.c:544:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L"\r\n" ); data/wine-5.0/dlls/winhttp/request.c:545:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, request->headers[i].field ); data/wine-5.0/dlls/winhttp/request.c:546:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L": " ); data/wine-5.0/dlls/winhttp/request.c:547:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, request->headers[i].value ); data/wine-5.0/dlls/winhttp/request.c:550:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L"\r\n\r\n" ); data/wine-5.0/dlls/winhttp/request.c:646:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, request->version ); data/wine-5.0/dlls/winhttp/request.c:662:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, request->status_text ); data/wine-5.0/dlls/winhttp/request.c:678:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, request->verb ); data/wine-5.0/dlls/winhttp/request.c:751:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, header->value ); data/wine-5.0/dlls/winhttp/request.c:1301:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( host, len, L"%s:%u", request->connect->hostname, request->connect->hostport ); data/wine-5.0/dlls/winhttp/request.c:1315:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, L"CONNECT" ); data/wine-5.0/dlls/winhttp/request.c:1316:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L" " ); data/wine-5.0/dlls/winhttp/request.c:1317:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, host ); data/wine-5.0/dlls/winhttp/request.c:1318:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L" " ); data/wine-5.0/dlls/winhttp/request.c:1319:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L"HTTP/1.1" ); data/wine-5.0/dlls/winhttp/request.c:1325:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L"\r\n" ); data/wine-5.0/dlls/winhttp/request.c:1326:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, request->headers[i].field ); data/wine-5.0/dlls/winhttp/request.c:1327:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L": " ); data/wine-5.0/dlls/winhttp/request.c:1328:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, request->headers[i].value ); data/wine-5.0/dlls/winhttp/request.c:1331:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( ret, L"\r\n\r\n" ); data/wine-5.0/dlls/winhttp/request.c:1709:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( host, len, L"%s:%u", connect->hostname, port ); data/wine-5.0/dlls/winhttp/request.c:2148:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( length, ARRAY_SIZE(length), L"%ld", total_len ); data/wine-5.0/dlls/winhttp/request.c:2594:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, request->path ); data/wine-5.0/dlls/winhttp/request.c:2595:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, L"/" ); data/wine-5.0/dlls/winhttp/request.c:3598:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( str, len + 1, L"%s: %s\r\n", header, value ? value : L"" ); data/wine-5.0/dlls/winhttp/request.c:3831:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( headerW, ARRAY_SIZE(headerW), L"%s: %s", L"Content-Type", L"text/plain" ); data/wine-5.0/dlls/winhttp/request.c:3834:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( headerW, ARRAY_SIZE(headerW), L"%s: %s", L"Content-Type", L"charset=utf-8" ); data/wine-5.0/dlls/winhttp/session.c:238:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. HINTERNET WINAPI WinHttpOpen( LPCWSTR agent, DWORD access, LPCWSTR proxy, LPCWSTR bypass, DWORD flags ) data/wine-5.0/dlls/winhttp/session.c:243:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. TRACE("%s, %u, %s, %s, 0x%08x\n", debugstr_w(agent), access, debugstr_w(proxy), debugstr_w(bypass), flags); data/wine-5.0/dlls/winhttp/session.c:284:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. session->access = access; data/wine-5.0/dlls/winhttp/session.c:1080:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (object) lstrcpyW( p, object ); data/wine-5.0/dlls/winhttp/session.c:1420:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, L"http://" ); data/wine-5.0/dlls/winhttp/session.c:1423:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, L"/wpad.dat" ); data/wine-5.0/dlls/winhttp/session.c:1452:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( name, p ); data/wine-5.0/dlls/winhttp/session.c:1634:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy( info->lpszProxy, http_proxy ); data/wine-5.0/dlls/winhttp/session.c:2150:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( string, WINHTTP_TIME_FORMAT_BUFSIZE / sizeof(WCHAR), data/wine-5.0/dlls/winhttp/tests/winhttp.c:1341:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static void set_proxy( REGSAM access, BYTE *buf, DWORD len, DWORD type ) data/wine-5.0/dlls/winhttp/tests/winhttp.c:1344:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!RegCreateKeyExW( HKEY_LOCAL_MACHINE, Connections, 0, NULL, 0, access, NULL, &hkey, NULL )) data/wine-5.0/dlls/winhttp/url.c:417:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. *len += swprintf( port, ARRAY_SIZE(port), L"%u", uc->nPort ); data/wine-5.0/dlls/winhttp/url.c:508:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. url += swprintf( url, sizeof("65535"), L"%u", uc->nPort ); data/wine-5.0/dlls/winhttp/winhttp_private.h:70:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/winhttp/winhttp_private.h:295:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (dst) lstrcpyW( dst, src ); data/wine-5.0/dlls/wininet/dialogs.c:97:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( szBuf, p ); data/wine-5.0/dlls/wininet/dialogs.c:125:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( szResource, szServer); data/wine-5.0/dlls/wininet/dialogs.c:126:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( szResource, szbs); data/wine-5.0/dlls/wininet/dialogs.c:127:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( szResource, szRealm); data/wine-5.0/dlls/wininet/dialogs.c:139:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szUserPass, szColon); data/wine-5.0/dlls/wininet/ftp.c:1456:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/dlls/wininet/ftp.c:1468:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FTP_FtpOpenFileW(session, task->file_name, task->access, task->flags, task->context); data/wine-5.0/dlls/wininet/ftp.c:2303:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cmd, szCRLF); data/wine-5.0/dlls/wininet/ftp.c:2500:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(szPassword, szEmpty); data/wine-5.0/dlls/wininet/ftp.c:2720:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s%s%s%s", szFtpCommands[ftpCmd], dwParamLen ? " " : "", data/wine-5.0/dlls/wininet/ftp.c:3615:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpFindFileData->cFileName, lpafp->lpszName, MAX_PATH); data/wine-5.0/dlls/wininet/http.c:615:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(fixurl + 1, request->path); data/wine-5.0/dlls/wininet/http.c:1298:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, lpszHeader, len + 1); data/wine-5.0/dlls/wininet/http.c:1740:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(url+len, req->path); data/wine-5.0/dlls/wininet/http.c:1834:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(proxy_url, szHttp); data/wine-5.0/dlls/wininet/http.c:1902:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, scheme); data/wine-5.0/dlls/wininet/http.c:1905:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, host); data/wine-5.0/dlls/wininet/http.c:1911:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(ptr, req->path); data/wine-5.0/dlls/wininet/http.c:2063:18: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (str) strcpyW(buf, str); data/wine-5.0/dlls/wininet/http.c:3392:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(request->path,lpszObjectName); data/wine-5.0/dlls/wininet/http.c:4214:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(request->path, path); data/wine-5.0/dlls/wininet/internet.c:600:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( szProxy, p ); data/wine-5.0/dlls/wininet/internet.c:836:17: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(buffer, ai->agent); data/wine-5.0/dlls/wininet/internet.c:887:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(proxy, ai->proxy); data/wine-5.0/dlls/wininet/internet.c:892:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(proxy_bypass, ai->proxyBypass); data/wine-5.0/dlls/wininet/internet.c:2413:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, httpW ); data/wine-5.0/dlls/wininet/internet.c:2416:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, wpadW ); data/wine-5.0/dlls/wininet/internet.c:2445:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( name, p ); data/wine-5.0/dlls/wininet/internet.c:3553:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, ping); data/wine-5.0/dlls/wininet/internet.c:3555:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command+sizeof(ping)-1+len, redirect); data/wine-5.0/dlls/wininet/internet.c:3559:16: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. status = system(command); data/wine-5.0/dlls/wininet/tests/http.c:2490:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(msg, largemsg, content_length); data/wine-5.0/dlls/wininet/tests/http.c:2845:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(url, url_fmt, port); data/wine-5.0/dlls/wininet/tests/http.c:3566:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cache_url, cache_url_fmt, port, cache_control_no_cache); data/wine-5.0/dlls/wininet/tests/http.c:3592:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cache_url, cache_url_fmt, port, cache_control_no_store); data/wine-5.0/dlls/wininet/tests/http.c:3698:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cache_url, cache_url_fmt, port, get_gzip); data/wine-5.0/dlls/wininet/tests/http.c:3736:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cache_url, cache_url_fmt, port, get_gzip); data/wine-5.0/dlls/wininet/tests/http.c:3767:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(cache_url, cache_url_fmt, port, get_gzip); data/wine-5.0/dlls/wininet/tests/http.c:5655:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(url, "http://localhost:%u%s", port, long_path); data/wine-5.0/dlls/wininet/tests/http.c:6158:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(url, urlc); data/wine-5.0/dlls/wininet/tests/url.c:499:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(long_url, long_buf); data/wine-5.0/dlls/wininet/tests/url.c:504:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(long_url, long_buf); data/wine-5.0/dlls/wininet/tests/urlcache.c:1125:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path_win8, path); data/wine-5.0/dlls/wininet/tests/urlcache.c:1126:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path_win8, suffix_win8); data/wine-5.0/dlls/wininet/tests/urlcache.c:1128:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, suffix); data/wine-5.0/dlls/wininet/urlcache.c:489:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(dir_path, container->path); data/wine-5.0/dlls/wininet/urlcache.c:614:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(index_path, container->path); data/wine-5.0/dlls/wininet/urlcache.c:794:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(wszMutexName, wszCachePath); data/wine-5.0/dlls/wininet/urlcache.c:1728:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(path, lpszPath); data/wine-5.0/dlls/wininet/urlcache.c:2750:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(full_path+full_path_len+8, extW); data/wine-5.0/dlls/wininet/urlcache.c:3008:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)url_entry + url_entry->url_off, url); data/wine-5.0/dlls/wininet/urlcache.c:3010:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)((LPBYTE)url_entry + file_name_off), local_file_name); data/wine-5.0/dlls/wininet/urlcache.c:3014:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((LPSTR)((LPBYTE)url_entry + file_ext_off), file_ext); data/wine-5.0/dlls/wininet/urlcache.c:3188:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(stream->url, lpszUrlName); data/wine-5.0/dlls/wininet/urlcache.c:3830:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(info->u.s.CachePath, container->path, MAX_PATH); data/wine-5.0/dlls/wininet/utility.c:56:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(tmpChar, asctime, TIME_STRING_LEN); data/wine-5.0/dlls/winmm/driver.c:395:2: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(libName, lpDriverName, ARRAY_SIZE(libName)); data/wine-5.0/dlls/winmm/lolvldrv.c:294:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA((LPSTR)dwParam1, lpDrv->drvname, LOWORD(dwParam2)); data/wine-5.0/dlls/winmm/lolvldrv.c:465:22: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lpDrv->drvname = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(drvRegName) + 1), drvRegName); data/wine-5.0/dlls/winmm/mci.c:929:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( wmd->lpstrAlias, alias); data/wine-5.0/dlls/winmm/mci.c:1216:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, fmt_d, data); data/wine-5.0/dlls/winmm/mci.c:1231:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, wszCol3, data/wine-5.0/dlls/winmm/mci.c:1236:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, wszCol4, data/wine-5.0/dlls/winmm/mci.c:1252:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, fmt_ld, data); data/wine-5.0/dlls/winmm/mci.c:1267:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, wszCol3, data/wine-5.0/dlls/winmm/mci.c:1272:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, wszCol4, data/wine-5.0/dlls/winmm/mci.c:1290:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, fmt_d, *data); data/wine-5.0/dlls/winmm/mci.c:1303:6: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpstrRet, uRetLen, fmt_d4, data[0], data[1], data[2], data[3]); data/wine-5.0/dlls/winmm/mci.c:1348:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( verb, lpstrCommand ); data/wine-5.0/dlls/winmm/mci.c:1449:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, ARRAY_SIZE(buf), wszOpenWait, dev); data/wine-5.0/dlls/winmm/mci.c:1683:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcat(strcpy(buf, resname), ".mci"); data/wine-5.0/dlls/winmm/mci.c:1756:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(strDevTyp, lpParms->lpstrDeviceType); data/wine-5.0/dlls/winmm/mci.c:1804:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(strDevTyp, wszCdAudio); data/wine-5.0/dlls/winmm/mci.c:1896:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lpDstStr, lpSrcStr); data/wine-5.0/dlls/winmm/mmio.c:417:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ext, extStart + 1, min(extEnd-extStart,5)); data/wine-5.0/dlls/winmm/mmio.c:608:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szFileName, buffer); data/wine-5.0/dlls/winmm/playsound.c:237:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). wps->pszSound = lstrcpyW(sound, pszSound); data/wine-5.0/dlls/winmm/tests/capture.c:50:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(long_msg, "%s(%s)", mmsys_error(error), msg); data/wine-5.0/dlls/winmm/tests/mci.c:1208:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(command,"status \"%s\" mode",path); data/wine-5.0/dlls/winmm/tests/mci.c:1273:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(command,"status \"%s\" mode wait",path); data/wine-5.0/dlls/winmm/tests/mci.c:1289:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(command,"pause \"%s\"",path); data/wine-5.0/dlls/winmm/tests/wave.c:273:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(long_msg, "%s(%s)", mmsys_error(error), msg); data/wine-5.0/dlls/winmm/tests/wave.c:362:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(msg, temp); data/wine-5.0/dlls/winmm/tests/wave.c:369:40: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define ADD_FLAG(f) if (dwSupport & f) strcat(msg, " " #f) data/wine-5.0/dlls/winmm/tests/wave.c:1716:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(temp, test_file); data/wine-5.0/dlls/winmm/waveform.c:425:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(out, var.u.pwszVal, outlen); data/wine-5.0/dlls/winsock.dll16/socket.c:218:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, he->h_name); data/wine-5.0/dlls/winsock.dll16/socket.c:255:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, pe->p_name); data/wine-5.0/dlls/winsock.dll16/socket.c:290:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, se->s_name); data/wine-5.0/dlls/winsock.dll16/socket.c:294:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, se->s_proto); data/wine-5.0/dlls/winsock.dll16/socket.c:798:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->host_name, name ); data/wine-5.0/dlls/winsock.dll16/socket.c:838:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->proto_name, name ); data/wine-5.0/dlls/winsock.dll16/socket.c:860:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_proto, proto ); data/wine-5.0/dlls/winsock.dll16/socket.c:883:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_name, name ); data/wine-5.0/dlls/winsock.dll16/socket.c:884:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_proto, proto ); data/wine-5.0/dlls/winsock.dll16/socket.c:961:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpWSAData->szDescription, data.szDescription ); data/wine-5.0/dlls/winsock.dll16/socket.c:962:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( lpWSAData->szSystemStatus, data.szSystemStatus ); data/wine-5.0/dlls/winspool.drv/info.c:575:2: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf,"%s,WINEPS.DRV,LPR:%s",devname,name); data/wine-5.0/dlls/winspool.drv/info.c:743:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( ppd, dir ); data/wine-5.0/dlls/winspool.drv/info.c:945:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(port, CUPS_Port); data/wine-5.0/dlls/winspool.drv/info.c:946:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(port, nameW); data/wine-5.0/dlls/winspool.drv/info.c:1219:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(port,"LPR:%s",name); data/wine-5.0/dlls/winspool.drv/info.c:1328:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(pent,start); data/wine-5.0/dlls/winspool.drv/info.c:1331:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pent,start); data/wine-5.0/dlls/winspool.drv/info.c:3176:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(devline, driver_nt); data/wine-5.0/dlls/winspool.drv/info.c:3177:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(devline, commaW); data/wine-5.0/dlls/winspool.drv/info.c:3178:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(devline, pi->pPortName); data/wine-5.0/dlls/winspool.drv/info.c:3188:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(devline, timeout_15_45); data/wine-5.0/dlls/winspool.drv/info.c:3315:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( dm->dmDeviceName, pi->pPrinterName, CCHDEVICENAME ); data/wine-5.0/dlls/winspool.drv/info.c:4004:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((LPWSTR)out, driverdir); data/wine-5.0/dlls/winspool.drv/info.c:4015:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((LPWSTR)out, ptr); data/wine-5.0/dlls/winspool.drv/info.c:4084:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dm->dmDeviceName, winepsW); data/wine-5.0/dlls/winspool.drv/info.c:4939:8: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW((LPWSTR)strPtr, DriverName); data/wine-5.0/dlls/winspool.drv/info.c:4960:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driverdir, env->versionsubdir); data/wine-5.0/dlls/winspool.drv/info.c:4961:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(driverdir, backslashW); data/wine-5.0/dlls/winspool.drv/info.c:4977:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((LPWSTR)strPtr, env->envname); data/wine-5.0/dlls/winspool.drv/info.c:5950:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(name, buffer); data/wine-5.0/dlls/winspool.drv/info.c:8223:9: [4] (shell) execl: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execl("/bin/sh", "/bin/sh", "-c", cmdA, NULL); data/wine-5.0/dlls/wintab32/tests/context.c:122:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(testLogCtx.lcName, contextName); data/wine-5.0/dlls/wintab32/tests/context.c:125:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(refLogCtx.lcName, contextName); data/wine-5.0/dlls/wintab32/wintab32.c:97:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( key, displayW ); data/wine-5.0/dlls/wintrust/crypt.c:77:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ci->file, filename); data/wine-5.0/dlls/wintrust/crypt.c:127:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(catroot_dir, catroot); data/wine-5.0/dlls/wintrust/crypt.c:133:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(ca->path, ARRAY_SIZE(ca->path), fmt, catroot_dir, sys->Data1, sys->Data2, data/wine-5.0/dlls/wintrust/crypt.c:192:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(target, ca->path); data/wine-5.0/dlls/wintrust/crypt.c:193:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, slashW); data/wine-5.0/dlls/wintrust/crypt.c:194:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, selectBaseName); data/wine-5.0/dlls/wintrust/crypt.c:210:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ci->file, target); data/wine-5.0/dlls/wintrust/crypt.c:317:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, ca->path); data/wine-5.0/dlls/wintrust/crypt.c:318:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, globW); data/wine-5.0/dlls/wintrust/crypt.c:350:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(filename, ca->path); data/wine-5.0/dlls/wintrust/crypt.c:351:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, slashW); data/wine-5.0/dlls/wintrust/crypt.c:352:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, data.cFileName); data/wine-5.0/dlls/wintrust/crypt.c:502:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(target, ca->path); data/wine-5.0/dlls/wintrust/crypt.c:503:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, slashW); data/wine-5.0/dlls/wintrust/crypt.c:504:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(target, pwszCatalogFile); data/wine-5.0/dlls/wintrust/crypt.c:530:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->wszCatalogFile, ca->path); data/wine-5.0/dlls/wintrust/crypt.c:531:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(info->wszCatalogFile, slashW); data/wine-5.0/dlls/wintrust/crypt.c:532:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(info->wszCatalogFile, catalog_file); data/wine-5.0/dlls/wintrust/crypt.c:847:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(info->wszCatalogFile, ci->file); data/wine-5.0/dlls/wintrust/register.c:96:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(action.pwszDLLName, dllname); \ data/wine-5.0/dlls/wintrust/register.c:98:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(action.pwszFunctionName, functionname); data/wine-5.0/dlls/wintrust/register.c:190:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, Trust); data/wine-5.0/dlls/wintrust/register.c:191:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, FunctionType); data/wine-5.0/dlls/wintrust/register.c:192:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, GuidString); data/wine-5.0/dlls/wintrust/register.c:311:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, Trust); data/wine-5.0/dlls/wintrust/register.c:312:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, FunctionType); data/wine-5.0/dlls/wintrust/register.c:313:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, GuidString); data/wine-5.0/dlls/wintrust/register.c:392:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(UsageKey, Trust); data/wine-5.0/dlls/wintrust/register.c:393:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(UsageKey, Usages); data/wine-5.0/dlls/wintrust/register.c:394:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(UsageKey, OIDW); data/wine-5.0/dlls/wintrust/register.c:605:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(DefUsage.pwszDllName, SP_POLICY_PROVIDER_DLL_NAME); data/wine-5.0/dlls/wintrust/register.c:809:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, Trust); data/wine-5.0/dlls/wintrust/register.c:810:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, FunctionType); data/wine-5.0/dlls/wintrust/register.c:811:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ProvKey, GuidString); data/wine-5.0/dlls/wintrust/register.c:905:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(NewProv.pwszDLLFileName, SP_POLICY_PROVIDER_DLL_NAME); data/wine-5.0/dlls/wintrust/tests/crypt.c:261:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dummydir, catroot); data/wine-5.0/dlls/wintrust/tests/crypt.c:262:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dummydir, "\\{DEADBEEF-DEAD-BEEF-DEAD-BEEFDEADBEEF}"); data/wine-5.0/dlls/wintrust/tests/crypt.c:271:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(dummydir, catroot2); data/wine-5.0/dlls/wintrust/tests/crypt.c:272:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(dummydir, "\\{DEADBEEF-DEAD-BEEF-DEAD-BEEFDEADBEEF}"); data/wine-5.0/dlls/wintrust/tests/crypt.c:603:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(catfilepath, catroot); data/wine-5.0/dlls/wintrust/tests/crypt.c:604:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(catfilepath, "\\{DEADBEEF-DEAD-BEEF-DEAD-BEEFDEADBEEF}\\winetest.cat"); data/wine-5.0/dlls/wintrust/tests/crypt.c:917:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:930:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:931:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:932:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:946:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:947:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:961:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:962:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:979:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:980:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:981:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:982:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\deadbeef.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1006:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1007:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1008:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1009:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1036:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1037:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1038:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1039:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1040:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1063:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1064:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1065:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "CATATTR1=0x10010001:attr1\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1088:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1089:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1090:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "CATATTR1=0x10010001:attr1:value1\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1091:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "CATATTR1=0x10010001:attr1:value1\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1092:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1093:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1120:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(cdf_contents, "[CatalogHeader]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1121:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "Name=tempfile.cat\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1122:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "CATATTR1=0x10010001:attr1:value1\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1123:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "CATATTR1=0x10010001:attr2:value2\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1124:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "[CatalogFiles]\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1125:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(cdf_contents, "hashme=.\\tempfile.cdf\r\n"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1308:12: [4] (crypto) crypt: The crypt functions use a poor one-way hashing algorithm; since they only accept passwords of 8 characters or fewer and only a two-byte salt, they are excessively vulnerable to dictionary attacks given today's faster computing equipment (CWE-327). Use a different algorithm, such as SHA-256, with a larger, non-repeating salt. START_TEST(crypt) data/wine-5.0/dlls/wintrust/tests/crypt.c:1322:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(catroot, sysdir); data/wine-5.0/dlls/wintrust/tests/crypt.c:1323:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(catroot, "\\CatRoot"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1324:5: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(catroot2, sysdir); data/wine-5.0/dlls/wintrust/tests/crypt.c:1325:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(catroot2, "\\CatRoot2"); data/wine-5.0/dlls/wintrust/tests/crypt.c:1328:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(selfname, myARGV[0]); data/wine-5.0/dlls/wintrust/tests/softpub.c:279:5: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(notepadPath, notepad); data/wine-5.0/dlls/wldap32/init.c:135:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf( port, fmt, portnumber ); data/wine-5.0/dlls/wldap32/init.c:164:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, sep ); data/wine-5.0/dlls/wldap32/init.c:170:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, scheme ); data/wine-5.0/dlls/wldap32/init.c:178:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, *v ); data/wine-5.0/dlls/wldap32/init.c:183:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, port ); data/wine-5.0/dlls/wldap32/misc.c:229:18: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. d += sprintf( d, fmt, (unsigned char)src[i] ); data/wine-5.0/dlls/wldap32/wldap32.h:36:67: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (strlen( src ) + 1) * sizeof(char) ))) strcpy( dst, src ); data/wine-5.0/dlls/wldap32/wldap32.h:44:69: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (strlenW( src ) + 1) * sizeof(WCHAR) ))) strcpyW( dst, src ); data/wine-5.0/dlls/wmiutils/path.c:537:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path->text, pszPath ); data/wine-5.0/dlls/wmiutils/path.c:578:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p + 2, path->server ); data/wine-5.0/dlls/wmiutils/path.c:643:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, namespace ); data/wine-5.0/dlls/wmiutils/path.c:647:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + len_namespace + 1, path->class ); data/wine-5.0/dlls/wmiutils/path.c:651:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + len_namespace + path->len_class + 2, keylist ); data/wine-5.0/dlls/wmiutils/path.c:674:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, path->class ); data/wine-5.0/dlls/wmiutils/path.c:678:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret + path->len_class + 1, keylist ); data/wine-5.0/dlls/wmiutils/path.c:710:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, server ); data/wine-5.0/dlls/wmiutils/path.c:712:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, namespace ); data/wine-5.0/dlls/wmiutils/path.c:717:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, path->class ); data/wine-5.0/dlls/wmiutils/path.c:721:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p + path->len_class + 1, keylist ); data/wine-5.0/dlls/wmiutils/path.c:748:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, server ); data/wine-5.0/dlls/wmiutils/path.c:750:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, namespace ); data/wine-5.0/dlls/wmiutils/path.c:797:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (str) lstrcpyW( pszText, str ); data/wine-5.0/dlls/wmiutils/path.c:901:34: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (*len > path->len_server) lstrcpyW( name, path->server ); data/wine-5.0/dlls/wmiutils/path.c:1002:43: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (*len > path->len_namespaces[idx]) lstrcpyW( name, path->namespaces[idx] ); data/wine-5.0/dlls/wmiutils/path.c:1161:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (*len > path->len_class) lstrcpyW( name, path->class ); data/wine-5.0/dlls/wmiutils/statuscode.c:101:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(msg, ARRAY_SIZE(msg), fmt, res); data/wine-5.0/dlls/wmiutils/statuscode.c:119:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(msg, ARRAY_SIZE(msg), fmt, res); data/wine-5.0/dlls/wmiutils/wmiutils_private.h:28:70: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((dst = heap_alloc( (lstrlenW( src ) + 1) * sizeof(WCHAR) ))) lstrcpyW( dst, src ); data/wine-5.0/dlls/wmp/tests/media.c:81:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/wmp/tests/media.c:596:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(currentdirW, slashW); data/wine-5.0/dlls/wmp/tests/media.c:602:29: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if(tests[i].prefix) lstrcatW(pathW, tests[i].prefix); data/wine-5.0/dlls/wmp/tests/media.c:603:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, tests[i].filename); data/wine-5.0/dlls/wmp/tests/oleobj.c:83:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, name); data/wine-5.0/dlls/wnaspi32/aspi.c:157:5: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buffer, sizeof(buffer), KEYNAME_SCSI, h, c, t, d); data/wine-5.0/dlls/wpcap/wpcap.c:213:59: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ret = heap_alloc( strlen(devs->name) + 1 ))) strcpy( ret, devs->name ); data/wine-5.0/dlls/wpcap/wpcap.c:320:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, p); data/wine-5.0/dlls/ws2_32/async.c:151:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, he->h_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:191:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, pe->p_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:229:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, se->s_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:231:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, se->s_proto); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:335:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->host_name, name ); data/wine-5.0/dlls/ws2_32/async.c:356:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->proto_name, name ); data/wine-5.0/dlls/ws2_32/async.c:399:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_name, name ); data/wine-5.0/dlls/ws2_32/async.c:404:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_proto, proto ); data/wine-5.0/dlls/ws2_32/async.c:432:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( aq->serv_proto, proto ); data/wine-5.0/dlls/ws2_32/socket.c:1145:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline int get_sock_fd( SOCKET s, DWORD access, unsigned int *options ) data/wine-5.0/dlls/ws2_32/socket.c:1148:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (set_error( wine_server_handle_to_fd( SOCKET2HANDLE(s), access, &fd, options ) )) data/wine-5.0/dlls/ws2_32/socket.c:2181:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szProtocol, NameTcpW ); data/wine-5.0/dlls/ws2_32/socket.c:2198:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szProtocol, NameUdpW ); data/wine-5.0/dlls/ws2_32/socket.c:2216:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szProtocol, NameIpxW ); data/wine-5.0/dlls/ws2_32/socket.c:2233:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szProtocol, NameSpxW ); data/wine-5.0/dlls/ws2_32/socket.c:2250:9: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( info->szProtocol, NameSpxIIW ); data/wine-5.0/dlls/ws2_32/socket.c:4802:25: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ifInfo.ifr_name, ptr->AdapterName, IFNAMSIZ); data/wine-5.0/dlls/ws2_32/socket.c:6783:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(nodeV6, node + 1, close_bracket - node); data/wine-5.0/dlls/ws2_32/socket.c:6874:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ai->ai_canonname,xuai->ai_canonname); data/wine-5.0/dlls/ws2_32/socket.c:7373:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, buf); data/wine-5.0/dlls/ws2_32/socket.c:7908:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, name); data/wine-5.0/dlls/ws2_32/socket.c:7939:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, p_he->h_aliases[i]); data/wine-5.0/dlls/ws2_32/socket.c:7956:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret->p_name, name ); data/wine-5.0/dlls/ws2_32/socket.c:7979:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, p_se->s_name); data/wine-5.0/dlls/ws2_32/socket.c:7983:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, p_se->s_proto); data/wine-5.0/dlls/ws2_32/socket.c:8510:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(workBuffer, AddressString); data/wine-5.0/dlls/ws2_32/socket.c:8751:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( string, buffer ); data/wine-5.0/dlls/ws2_32/socket.c:8801:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( string, buffer ); data/wine-5.0/dlls/ws2_32/tests/sock.c:4654:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ipstr, inet_ntoa(sa_get.sin_addr)); data/wine-5.0/dlls/ws2_32/tests/sock.c:4738:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(first_ip, inet_ntoa(*addr_list[0])); data/wine-5.0/dlls/ws2_32/tests/sock.c:5590:16: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. len += sprintf(message + len, "%s(%d) ", name, WSAGETSELECTERROR(*seq)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5635:16: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. len += sprintf(message + len, "%s(%d) ", name, error); data/wine-5.0/dlls/ws2_32/tests/sock.c:8576:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ipbuffer, inet_ntoa(readBindAddress->sin_addr)); data/wine-5.0/dlls/ws2_32/tests/sock.c:8583:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ipbuffer, inet_ntoa(readRemoteAddress->sin_addr)); data/wine-5.0/dlls/wsdapi/tests/discovery.c:734:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(endpoint_reference_string, "<wsa:EndpointReference><wsa:Address>%s</wsa:Address>" data/wine-5.0/dlls/wsdapi/tests/discovery.c:738:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(app_sequence_string, "<wsd:AppSequence InstanceId=\"1\" SequenceId=\"%s\" MessageNumber=\"1\"></wsd:AppSequence>", data/wine-5.0/dlls/wsdapi/tests/discovery.c:1078:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(endpointReferenceString, "<wsa:EndpointReference><wsa:Address>%s</wsa:Address><wsa:ReferenceParameters>" data/wine-5.0/dlls/wsdapi/tests/discovery.c:1082:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(app_sequence_string, "<wsd:AppSequence InstanceId=\"1\" SequenceId=\"%s\" MessageNumber=\"1\"></wsd:AppSequence>", data/wine-5.0/dlls/wsdapi/tests/discovery.c:1149:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(probe_message, testProbeMessage, probe_uuid_str); data/wine-5.0/dlls/wsdapi/tests/discovery.c:1256:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(endpoint_reference_string, "<wsa:EndpointReference><wsa:Address>%s</wsa:Address></wsa:EndpointReference>", data/wine-5.0/dlls/wsdapi/tests/discovery.c:1258:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(app_sequence_string, "<wsd:AppSequence InstanceId=\"1\" SequenceId=\"%s\" MessageNumber=\"1\"></wsd:AppSequence>", data/wine-5.0/dlls/wshom.ocx/shell.c:925:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(pathW, ARRAY_SIZE(pathW), fmtW, buffW, icon); data/wine-5.0/dlls/wshom.ocx/shell.c:1228:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, cmd ); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:282:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, cmdexeW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:288:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path2, testdirW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:290:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path2, cmdexeW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:294:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf + 1, path2); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:296:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf + lstrlenW(path2) + 2, paramsW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:446:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:447:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regszW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:459:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:460:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regsz2W); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:472:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:473:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regdwordW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:483:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:484:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regbinaryW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:515:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:516:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regmultiszW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:565:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathW, keypathW); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:566:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pathW, regszW); data/wine-5.0/dlls/xmllite/writer.c:190:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ret->qname, prefix); data/wine-5.0/dlls/xmllite/writer.c:191:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret->qname, colonW); data/wine-5.0/dlls/xmllite/writer.c:195:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(ret->qname, local); data/wine-5.0/dlls/xmllite/writer.c:1071:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(bufW, ARRAY_SIZE(bufW), fmtW, ch); data/wine-5.0/include/cfgmgr32.h:231:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. CMAPI CONFIGRET WINAPI CM_Open_DevNode_Key(DEVINST dnDevInst, REGSAM access, ULONG ulHardwareProfile, data/wine-5.0/include/dbgeng.h:394:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. STDMETHOD(GetDataParameters)(THIS_ PULONG size, PULONG access) PURE; data/wine-5.0/include/dbgeng.h:395:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. STDMETHOD(SetDataParameters)(THIS_ ULONG size, ULONG access) PURE; data/wine-5.0/include/dbgeng.h:426:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. STDMETHOD(GetDataParameters)(THIS_ PULONG size, PULONG access) PURE; data/wine-5.0/include/dbgeng.h:427:58: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. STDMETHOD(SetDataParameters)(THIS_ ULONG size, ULONG access) PURE; data/wine-5.0/include/dde.h:70:31: [4] (access) ImpersonateDdeClientWindow: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. WINUSERAPI BOOL WINAPI ImpersonateDdeClientWindow(HWND,HWND); data/wine-5.0/include/msvcrt/conio.h:56:85: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. extern int WINAPIV cprintf(const char*,...) __attribute__((alias("_cprintf"),format(printf,1,2))); data/wine-5.0/include/msvcrt/conio.h:57:83: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. extern int WINAPIV cscanf(const char*,...) __attribute__((alias("_cscanf"),format(scanf,1,2))); data/wine-5.0/include/msvcrt/io.h:149:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static inline int access(const char* path, int mode) { return _access(path, mode); } data/wine-5.0/include/msvcrt/io.h:161:21: [4] (tmpfile) mktemp: Temporary file race condition (CWE-377). static inline char* mktemp(char* pat) { return _mktemp(pat); } data/wine-5.0/include/msvcrt/mbstring.h:55:24: [4] (buffer) _mbccpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). void __cdecl _mbccpy(unsigned char*,const unsigned char*); data/wine-5.0/include/msvcrt/mbstring.h:65:24: [4] (buffer) _mbscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). unsigned char* __cdecl _mbscat(unsigned char*,const unsigned char*); data/wine-5.0/include/msvcrt/mbstring.h:69:24: [4] (buffer) _mbscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. unsigned char* __cdecl _mbscpy(unsigned char*,const unsigned char*); data/wine-5.0/include/msvcrt/mbstring.h:92:24: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). unsigned char* __cdecl _mbsncpy(unsigned char*,const unsigned char*,size_t); data/wine-5.0/include/msvcrt/process.h:58:19: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. int __cdecl system(const char*); data/wine-5.0/include/msvcrt/process.h:101:9: [4] (shell) execv: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execv _execv data/wine-5.0/include/msvcrt/process.h:103:9: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execvp _execvp data/wine-5.0/include/msvcrt/process.h:107:25: [4] (shell) execl: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. extern intptr_t WINAPIV execl(const char*,const char*,...) __attribute__((alias("_execl"))); data/wine-5.0/include/msvcrt/process.h:108:25: [4] (shell) execle: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. extern intptr_t WINAPIV execle(const char*,const char*,...) __attribute__((alias("_execle"))); data/wine-5.0/include/msvcrt/process.h:109:25: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. extern intptr_t WINAPIV execlp(const char*,const char*,...) __attribute__((alias("_execlp"))); data/wine-5.0/include/msvcrt/process.h:116:9: [4] (shell) execl: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execl _execl data/wine-5.0/include/msvcrt/process.h:117:9: [4] (shell) execle: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execle _execle data/wine-5.0/include/msvcrt/process.h:118:9: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execlp _execlp data/wine-5.0/include/msvcrt/stdio.h:122:16: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. int WINAPIV _snprintf(char*,size_t,const char*,...); data/wine-5.0/include/msvcrt/stdio.h:158:16: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV fprintf(FILE*,const char*,...); data/wine-5.0/include/msvcrt/stdio.h:165:16: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV fscanf(FILE*,const char*,...); data/wine-5.0/include/msvcrt/stdio.h:177:16: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV printf(const char*,...); data/wine-5.0/include/msvcrt/stdio.h:185:16: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV scanf(const char*,...); data/wine-5.0/include/msvcrt/stdio.h:189:16: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. int WINAPIV sprintf(char*,const char*,...); data/wine-5.0/include/msvcrt/stdio.h:192:16: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV sscanf(const char*,const char*,...); data/wine-5.0/include/msvcrt/stdio.h:198:16: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vfprintf(FILE*,const char*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:200:16: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vprintf(const char*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:202:16: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. int __cdecl vsprintf(char*,const char*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:241:18: [4] (format) fwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV fwprintf(FILE*,const wchar_t*,...); data/wine-5.0/include/msvcrt/stdio.h:244:18: [4] (buffer) fwscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV fwscanf(FILE*,const wchar_t*,...); data/wine-5.0/include/msvcrt/stdio.h:256:18: [4] (format) vfwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vfwprintf(FILE*,const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:259:18: [4] (format) vwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vwprintf(const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:261:18: [4] (format) wprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV wprintf(const wchar_t*,...); data/wine-5.0/include/msvcrt/stdio.h:263:18: [4] (buffer) wscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV wscanf(const wchar_t*,...); data/wine-5.0/include/msvcrt/stdio.h:267:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. int WINAPIV swprintf(wchar_t*,const wchar_t*,...); data/wine-5.0/include/msvcrt/stdio.h:268:13: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. int __cdecl vswprintf(wchar_t*,const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/stdio.h:270:19: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. static inline int vswprintf(wchar_t *buffer, size_t size, const wchar_t *format, __ms_va_list args) { return _vsnwprintf(buffer,size,format,args); } data/wine-5.0/include/msvcrt/stdio.h:271:27: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. static inline int WINAPIV swprintf(wchar_t *buffer, size_t size, const wchar_t *format, ...) data/wine-5.0/include/msvcrt/stdio.h:297:21: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. static inline FILE* popen(const char* command, const char* mode) { return _popen(command, mode); } data/wine-5.0/include/msvcrt/stdio.h:303:19: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. static inline int vsnprintf(char *buffer, size_t size, const char *format, __ms_va_list args) { return _vsnprintf(buffer,size,format,args); } data/wine-5.0/include/msvcrt/stdio.h:304:9: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define snprintf _snprintf data/wine-5.0/include/msvcrt/stdio.h:304:18: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define snprintf _snprintf data/wine-5.0/include/msvcrt/stdlib.h:229:23: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. int __cdecl system(const char*); data/wine-5.0/include/msvcrt/string.h:67:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). char* __cdecl strcat(char*,const char*); data/wine-5.0/include/msvcrt/string.h:72:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). char* __cdecl strcpy(char*,const char*); data/wine-5.0/include/msvcrt/string.h:112:18: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wchar_t* __cdecl wcscat(wchar_t*,const wchar_t*); data/wine-5.0/include/msvcrt/string.h:117:18: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wchar_t* __cdecl wcscpy(wchar_t*,const wchar_t*); data/wine-5.0/include/msvcrt/wchar.h:351:18: [4] (format) fwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV fwprintf(FILE*,const wchar_t*,...); data/wine-5.0/include/msvcrt/wchar.h:354:18: [4] (buffer) fwscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV fwscanf(FILE*,const wchar_t*,...); data/wine-5.0/include/msvcrt/wchar.h:366:18: [4] (format) vfwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vfwprintf(FILE*,const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/wchar.h:369:18: [4] (format) vwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int __cdecl vwprintf(const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/wchar.h:371:18: [4] (format) wprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int WINAPIV wprintf(const wchar_t*,...); data/wine-5.0/include/msvcrt/wchar.h:373:18: [4] (buffer) wscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. int WINAPIV wscanf(const wchar_t*,...); data/wine-5.0/include/msvcrt/wchar.h:377:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. int WINAPIV swprintf(wchar_t*,const wchar_t*,...); data/wine-5.0/include/msvcrt/wchar.h:378:13: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. int __cdecl vswprintf(wchar_t*,const wchar_t*,__ms_va_list); data/wine-5.0/include/msvcrt/wchar.h:380:19: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. static inline int vswprintf(wchar_t *buffer, size_t size, const wchar_t *format, __ms_va_list args) { return _vsnwprintf(buffer,size,format,args); } data/wine-5.0/include/msvcrt/wchar.h:381:27: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. static inline int WINAPIV swprintf(wchar_t *buffer, size_t size, const wchar_t *format, ...) data/wine-5.0/include/msvcrt/wchar.h:454:18: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wchar_t* __cdecl wcscat(wchar_t*,const wchar_t*); data/wine-5.0/include/msvcrt/wchar.h:459:18: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wchar_t* __cdecl wcscpy(wchar_t*,const wchar_t*); data/wine-5.0/include/objbase.h:372:16: [4] (access) CoImpersonateClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. HRESULT WINAPI CoImpersonateClient(void); data/wine-5.0/include/rpcdce.h:565:3: [4] (access) RpcImpersonateClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. RpcImpersonateClient( RPC_BINDING_HANDLE Binding ); data/wine-5.0/include/rpcndr.h:121:32: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define MIDL_ascii_strcpy(d,s) strcpy(d,s) data/wine-5.0/include/shellapi.h:256:13: [4] (shell) ShellExecute: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define ShellExecute WINELIB_NAME_AW(ShellExecute) data/wine-5.0/include/shellapi.h:256:42: [4] (shell) ShellExecute: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define ShellExecute WINELIB_NAME_AW(ShellExecute) data/wine-5.0/include/shlwapi.h:780:9: [4] (buffer) StrCatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCatA lstrcatA data/wine-5.0/include/shlwapi.h:780:17: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCatA lstrcatA data/wine-5.0/include/shlwapi.h:782:9: [4] (buffer) StrCat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCat WINELIB_NAME_AW(StrCat) data/wine-5.0/include/shlwapi.h:782:32: [4] (buffer) StrCat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCat WINELIB_NAME_AW(StrCat) data/wine-5.0/include/shlwapi.h:784:14: [4] (buffer) StrCatBuffA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPSTR WINAPI StrCatBuffA(LPSTR,LPCSTR,INT); data/wine-5.0/include/shlwapi.h:785:15: [4] (buffer) StrCatBuffW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPWSTR WINAPI StrCatBuffW(LPWSTR,LPCWSTR,INT); data/wine-5.0/include/shlwapi.h:788:14: [4] (buffer) StrCatChainW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). DWORD WINAPI StrCatChainW(LPWSTR,DWORD,DWORD,LPCWSTR); data/wine-5.0/include/shlwapi.h:806:9: [4] (buffer) StrCpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyA lstrcpyA data/wine-5.0/include/shlwapi.h:806:17: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyA lstrcpyA data/wine-5.0/include/shlwapi.h:808:9: [4] (buffer) StrCpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpy WINELIB_NAME_AW(StrCpy) data/wine-5.0/include/shlwapi.h:808:32: [4] (buffer) StrCpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpy WINELIB_NAME_AW(StrCpy) data/wine-5.0/include/shlwapi.h:810:9: [4] (buffer) StrCpyNA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyNA lstrcpynA data/wine-5.0/include/shlwapi.h:810:18: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyNA lstrcpynA data/wine-5.0/include/shlwapi.h:811:15: [4] (buffer) StrCpyNW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). LPWSTR WINAPI StrCpyNW(LPWSTR,LPCWSTR,int); data/wine-5.0/include/shlwapi.h:812:9: [4] (buffer) StrCpyN: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyN WINELIB_NAME_AW(StrCpyN) data/wine-5.0/include/shlwapi.h:812:33: [4] (buffer) StrCpyN: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrCpyN WINELIB_NAME_AW(StrCpyN) data/wine-5.0/include/shlwapi.h:813:9: [4] (buffer) StrNCpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrNCpy WINELIB_NAME_AW(StrCpyN) data/wine-5.0/include/shlwapi.h:813:33: [4] (buffer) StrCpyN: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define StrNCpy WINELIB_NAME_AW(StrCpyN) data/wine-5.0/include/shlwapi.h:866:15: [4] (buffer) StrNCatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPSTR WINAPI StrNCatA(LPSTR,LPCSTR,int); data/wine-5.0/include/shlwapi.h:867:15: [4] (buffer) StrNCatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). LPWSTR WINAPI StrNCatW(LPWSTR,LPCWSTR,int); data/wine-5.0/include/shlwapi.h:868:9: [4] (buffer) StrNCat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrNCat WINELIB_NAME_AW(StrNCat) data/wine-5.0/include/shlwapi.h:868:33: [4] (buffer) StrNCat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrNCat WINELIB_NAME_AW(StrNCat) data/wine-5.0/include/shlwapi.h:869:9: [4] (buffer) StrCatN: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCatN WINELIB_NAME_AW(StrNCat) data/wine-5.0/include/shlwapi.h:869:33: [4] (buffer) StrNCat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define StrCatN WINELIB_NAME_AW(StrNCat) data/wine-5.0/include/sspi.h:715:27: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. SECURITY_STATUS SEC_ENTRY ImpersonateSecurityContext(PCtxtHandle phContext); data/wine-5.0/include/sspi.h:835:39: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. IMPERSONATE_SECURITY_CONTEXT_FN ImpersonateSecurityContext; data/wine-5.0/include/sspi.h:867:39: [4] (access) ImpersonateSecurityContext: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. IMPERSONATE_SECURITY_CONTEXT_FN ImpersonateSecurityContext; data/wine-5.0/include/tchar.h:73:9: [4] (format) _ftprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _ftprintf WINE_tchar_routine(fprintf, fprintf, fwprintf) data/wine-5.0/include/tchar.h:73:42: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _ftprintf WINE_tchar_routine(fprintf, fprintf, fwprintf) data/wine-5.0/include/tchar.h:73:59: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _ftprintf WINE_tchar_routine(fprintf, fprintf, fwprintf) data/wine-5.0/include/tchar.h:73:72: [4] (format) fwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _ftprintf WINE_tchar_routine(fprintf, fprintf, fwprintf) data/wine-5.0/include/tchar.h:74:9: [4] (buffer) _ftscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _ftscanf WINE_tchar_routine(fscanf, fscanf, fwscanf) data/wine-5.0/include/tchar.h:74:42: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _ftscanf WINE_tchar_routine(fscanf, fscanf, fwscanf) data/wine-5.0/include/tchar.h:74:59: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _ftscanf WINE_tchar_routine(fscanf, fscanf, fwscanf) data/wine-5.0/include/tchar.h:74:72: [4] (buffer) fwscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _ftscanf WINE_tchar_routine(fscanf, fscanf, fwscanf) data/wine-5.0/include/tchar.h:100:9: [4] (format) _sntprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define _sntprintf WINE_tchar_routine(snprintf, snprintf, _snwprintf) data/wine-5.0/include/tchar.h:100:42: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define _sntprintf WINE_tchar_routine(snprintf, snprintf, _snwprintf) data/wine-5.0/include/tchar.h:100:59: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define _sntprintf WINE_tchar_routine(snprintf, snprintf, _snwprintf) data/wine-5.0/include/tchar.h:101:9: [4] (buffer) _stprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _stprintf WINE_tchar_routine(sprintf, sprintf, swprintf) data/wine-5.0/include/tchar.h:101:42: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _stprintf WINE_tchar_routine(sprintf, sprintf, swprintf) data/wine-5.0/include/tchar.h:101:59: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _stprintf WINE_tchar_routine(sprintf, sprintf, swprintf) data/wine-5.0/include/tchar.h:101:72: [4] (buffer) swprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _stprintf WINE_tchar_routine(sprintf, sprintf, swprintf) data/wine-5.0/include/tchar.h:102:42: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _stscanf WINE_tchar_routine(sscanf, sscanf, swscanf) data/wine-5.0/include/tchar.h:102:59: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _stscanf WINE_tchar_routine(sscanf, sscanf, swscanf) data/wine-5.0/include/tchar.h:103:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define _taccess WINE_tchar_routine(access, _access, _waccess) data/wine-5.0/include/tchar.h:105:9: [4] (buffer) _tccpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _tccpy WINE_tchar_routine(WINE_tchar_tccpy,_mbccpy, WINE_tchar_tccpy) data/wine-5.0/include/tchar.h:105:59: [4] (buffer) _mbccpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _tccpy WINE_tchar_routine(WINE_tchar_tccpy,_mbccpy, WINE_tchar_tccpy) data/wine-5.0/include/tchar.h:110:9: [4] (buffer) _tcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define _tcscat WINE_tchar_routine(strcat, _mbscat, wcscat) data/wine-5.0/include/tchar.h:110:42: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define _tcscat WINE_tchar_routine(strcat, _mbscat, wcscat) data/wine-5.0/include/tchar.h:110:59: [4] (buffer) _mbscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define _tcscat WINE_tchar_routine(strcat, _mbscat, wcscat) data/wine-5.0/include/tchar.h:110:72: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define _tcscat WINE_tchar_routine(strcat, _mbscat, wcscat) data/wine-5.0/include/tchar.h:116:9: [4] (buffer) _tcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. #define _tcscpy WINE_tchar_routine(strcpy, _mbscpy, wcscpy) data/wine-5.0/include/tchar.h:116:42: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _tcscpy WINE_tchar_routine(strcpy, _mbscpy, wcscpy) data/wine-5.0/include/tchar.h:116:59: [4] (buffer) _mbscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. #define _tcscpy WINE_tchar_routine(strcpy, _mbscpy, wcscpy) data/wine-5.0/include/tchar.h:116:72: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. #define _tcscpy WINE_tchar_routine(strcpy, _mbscpy, wcscpy) data/wine-5.0/include/tchar.h:133:59: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:137:59: [4] (buffer) _mbsncpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _tcsnccpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:165:42: [4] (shell) execl: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _texecl WINE_tchar_routine(execl, _execl, _wexecl) data/wine-5.0/include/tchar.h:166:42: [4] (shell) execle: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _texecle WINE_tchar_routine(execle, _execle, _wexecle) data/wine-5.0/include/tchar.h:167:42: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _texeclp WINE_tchar_routine(execlp, _execlp, _wexeclp) data/wine-5.0/include/tchar.h:169:42: [4] (shell) execv: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _texecv WINE_tchar_routine(execv, _execv, _wexecv) data/wine-5.0/include/tchar.h:171:42: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _texecvp WINE_tchar_routine(execvp, _execvp, _wexecvp) data/wine-5.0/include/tchar.h:188:42: [4] (tmpfile) mktemp: Temporary file race condition (CWE-377). #define _tmktemp WINE_tchar_routine(mktemp, _mktemp, _wmktemp) data/wine-5.0/include/tchar.h:193:42: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _tpopen WINE_tchar_routine(popen, _popen, _wpopen) data/wine-5.0/include/tchar.h:194:42: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _tprintf WINE_tchar_routine(printf, printf, wprintf) data/wine-5.0/include/tchar.h:194:59: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _tprintf WINE_tchar_routine(printf, printf, wprintf) data/wine-5.0/include/tchar.h:194:72: [4] (format) wprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _tprintf WINE_tchar_routine(printf, printf, wprintf) data/wine-5.0/include/tchar.h:199:9: [4] (buffer) _tscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _tscanf WINE_tchar_routine(scanf, scanf, wscanf) data/wine-5.0/include/tchar.h:199:42: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _tscanf WINE_tchar_routine(scanf, scanf, wscanf) data/wine-5.0/include/tchar.h:199:59: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _tscanf WINE_tchar_routine(scanf, scanf, wscanf) data/wine-5.0/include/tchar.h:199:72: [4] (buffer) wscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define _tscanf WINE_tchar_routine(scanf, scanf, wscanf) data/wine-5.0/include/tchar.h:216:42: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _tsystem WINE_tchar_routine(system, system, _wsystem) data/wine-5.0/include/tchar.h:216:59: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define _tsystem WINE_tchar_routine(system, system, _wsystem) data/wine-5.0/include/tchar.h:226:9: [4] (format) _vftprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vftprintf WINE_tchar_routine(vfprintf, vfprintf, vfwprintf) data/wine-5.0/include/tchar.h:226:42: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vftprintf WINE_tchar_routine(vfprintf, vfprintf, vfwprintf) data/wine-5.0/include/tchar.h:226:59: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vftprintf WINE_tchar_routine(vfprintf, vfprintf, vfwprintf) data/wine-5.0/include/tchar.h:226:72: [4] (format) vfwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vftprintf WINE_tchar_routine(vfprintf, vfprintf, vfwprintf) data/wine-5.0/include/tchar.h:227:9: [4] (format) _vsntprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define _vsntprintf WINE_tchar_routine(vsnprintf, _vsnprintf, _vsnwprintf) data/wine-5.0/include/tchar.h:227:42: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define _vsntprintf WINE_tchar_routine(vsnprintf, _vsnprintf, _vsnwprintf) data/wine-5.0/include/tchar.h:228:9: [4] (buffer) _vstprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _vstprintf WINE_tchar_routine(vsprintf, vsprintf, vswprintf) data/wine-5.0/include/tchar.h:228:42: [4] (buffer) vsprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _vstprintf WINE_tchar_routine(vsprintf, vsprintf, vswprintf) data/wine-5.0/include/tchar.h:228:59: [4] (buffer) vsprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _vstprintf WINE_tchar_routine(vsprintf, vsprintf, vswprintf) data/wine-5.0/include/tchar.h:228:72: [4] (buffer) vswprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define _vstprintf WINE_tchar_routine(vsprintf, vsprintf, vswprintf) data/wine-5.0/include/tchar.h:229:9: [4] (format) _vtprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vtprintf WINE_tchar_routine(vprintf, vprintf, vwprintf) data/wine-5.0/include/tchar.h:229:42: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vtprintf WINE_tchar_routine(vprintf, vprintf, vwprintf) data/wine-5.0/include/tchar.h:229:59: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vtprintf WINE_tchar_routine(vprintf, vprintf, vwprintf) data/wine-5.0/include/tchar.h:229:72: [4] (format) vwprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _vtprintf WINE_tchar_routine(vprintf, vprintf, vwprintf) data/wine-5.0/include/winbase.h:2408:31: [4] (access) ImpersonateLoggedOnUser: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. WINADVAPI BOOL WINAPI ImpersonateLoggedOnUser(HANDLE); data/wine-5.0/include/winbase.h:2409:31: [4] (access) ImpersonateNamedPipeClient: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. WINADVAPI BOOL WINAPI ImpersonateNamedPipeClient(HANDLE); data/wine-5.0/include/winbase.h:2676:31: [4] (access) SetThreadToken: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. WINADVAPI BOOL WINAPI SetThreadToken(PHANDLE,HANDLE); data/wine-5.0/include/winbase.h:2752:31: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WINBASEAPI UINT WINAPI WinExec(LPCSTR,UINT); data/wine-5.0/include/winbase.h:2789:31: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). WINBASEAPI LPSTR WINAPI lstrcatA(LPSTR,LPCSTR); data/wine-5.0/include/winbase.h:2790:31: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). WINBASEAPI LPWSTR WINAPI lstrcatW(LPWSTR,LPCWSTR); data/wine-5.0/include/winbase.h:2791:31: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WINBASEAPI LPSTR WINAPI lstrcpyA(LPSTR,LPCSTR); data/wine-5.0/include/winbase.h:2792:31: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WINBASEAPI LPWSTR WINAPI lstrcpyW(LPWSTR,LPCWSTR); data/wine-5.0/include/winbase.h:2793:31: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WINBASEAPI LPSTR WINAPI lstrcpynA(LPSTR,LPCSTR,INT); data/wine-5.0/include/winbase.h:2794:31: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WINBASEAPI LPWSTR WINAPI lstrcpynW(LPWSTR,LPCWSTR,INT); data/wine-5.0/include/winbase.h:2802:29: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). static inline LPWSTR WINAPI lstrcpynW( LPWSTR dst, LPCWSTR src, INT n ) data/wine-5.0/include/winbase.h:2817:28: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). static inline LPSTR WINAPI lstrcpynA( LPSTR dst, LPCSTR src, INT n ) data/wine-5.0/include/winbase.h:2844:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). static inline LPWSTR WINAPI lstrcpyW( LPWSTR dst, LPCWSTR src ) data/wine-5.0/include/winbase.h:2851:28: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). static inline LPSTR WINAPI lstrcpyA( LPSTR dst, LPCSTR src ) data/wine-5.0/include/winbase.h:2853:12: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy( dst, src ); data/wine-5.0/include/winbase.h:2856:29: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). static inline LPWSTR WINAPI lstrcatW( LPWSTR dst, LPCWSTR src ) data/wine-5.0/include/winbase.h:2864:28: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). static inline LPSTR WINAPI lstrcatA( LPSTR dst, LPCSTR src ) data/wine-5.0/include/winbase.h:2866:12: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). return strcat( dst, src ); data/wine-5.0/include/winbase.h:2875:13: [4] (buffer) lstrcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define lstrcat WINELIB_NAME_AW(lstrcat) data/wine-5.0/include/winbase.h:2875:37: [4] (buffer) lstrcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). #define lstrcat WINELIB_NAME_AW(lstrcat) data/wine-5.0/include/winbase.h:2878:13: [4] (buffer) lstrcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. #define lstrcpy WINELIB_NAME_AW(lstrcpy) data/wine-5.0/include/winbase.h:2878:37: [4] (buffer) lstrcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. #define lstrcpy WINELIB_NAME_AW(lstrcpy) data/wine-5.0/include/windowsx.h:1406:21: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define _fstrcat strcat data/wine-5.0/include/windowsx.h:1409:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define _fstrcpy strcpy data/wine-5.0/include/wine/debug.h:91:61: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define __WINE_PRINTF_ATTR(fmt,args) __attribute__((format (printf,fmt,args))) data/wine-5.0/include/wine/debug.h:175:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf( buffer, sizeof(buffer), format, args ); data/wine-5.0/include/wine/debug.h:187:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf( buffer, sizeof(buffer), format, args ); data/wine-5.0/include/wine/debug.h:211:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf( buffer, sizeof(buffer), format, args ); data/wine-5.0/include/wine/port.h:70:9: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define popen _popen data/wine-5.0/include/wine/port.h:77:10: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define snprintf _snprintf data/wine-5.0/include/wine/port.h:77:19: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define snprintf _snprintf data/wine-5.0/include/wine/server.h:54:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern int CDECL wine_server_fd_to_handle( int fd, unsigned int access, unsigned int attributes, HANDLE *handle ); data/wine-5.0/include/wine/server.h:55:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern int CDECL wine_server_handle_to_fd( HANDLE handle, unsigned int access, int *unix_fd, unsigned int *options ); data/wine-5.0/include/wine/test.h:307:13: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(msg, args); data/wine-5.0/include/wine/test.h:317:17: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(msg, args); data/wine-5.0/include/wine/test.h:329:13: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(msg, args); data/wine-5.0/include/wine/test.h:362:9: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(msg, valist); data/wine-5.0/include/wine/test.h:372:5: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(msg, args); data/wine-5.0/include/wine/unicode.h:205:28: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). WINE_UNICODE_INLINE WCHAR *strcpyW( WCHAR *dst, const WCHAR *src ) data/wine-5.0/include/wine/unicode.h:230:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( dst + strlenW(dst), src ); data/wine-5.0/include/wine/wined3d.h:1787:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/include/wine/wined3d.h:1801:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/include/wine/wined3d.h:2021:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/libs/port/spawn.c:43:9: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execvp(cmdname, (char **)argv); data/wine-5.0/libs/port/spawn.c:64:9: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execvp(cmdname, (char **)argv); data/wine-5.0/libs/port/string.c:477:25: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufaiter, fmtbufa, va_arg(valist, double)); data/wine-5.0/libs/port/string.c:481:25: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(bufaiter, fmtbufa, va_arg(valist, void *)); data/wine-5.0/libs/wine/config.c:61:81: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void fatal_error( const char *err, ... ) __attribute__((noreturn,format(printf,1,2))); data/wine-5.0/libs/wine/config.c:62:82: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void fatal_perror( const char *err, ... ) __attribute__((noreturn,format(printf,1,2))); data/wine-5.0/libs/wine/config.c:80:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/libs/wine/config.c:92:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/libs/wine/config.c:140:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret + len, name ); data/wine-5.0/libs/wine/config.c:232:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( run_dir, "%s/%u", server_root_prefix, getuid() ); data/wine-5.0/libs/wine/config.c:236:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( root, "%s/wine", run_dir ); data/wine-5.0/libs/wine/config.c:253:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tmp_dir, tmp_env ); data/wine-5.0/libs/wine/config.c:259:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tmp_dir, tmp_default ); data/wine-5.0/libs/wine/config.c:264:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ( access( wineserver_file, F_OK ) != -1 ) data/wine-5.0/libs/wine/config.c:331:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( server_dir, root ); data/wine-5.0/libs/wine/config.c:332:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( server_dir, server_dir_prefix ); data/wine-5.0/libs/wine/config.c:396:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( config_dir, home ); data/wine-5.0/libs/wine/config.c:398:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( config_dir, server_config_dir ); data/wine-5.0/libs/wine/config.c:642:9: [4] (shell) execv: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execv( full_name, new_argv ); data/wine-5.0/libs/wine/config.c:646:5: [4] (shell) execv: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execv( argv[0], argv ); data/wine-5.0/libs/wine/config.c:705:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( argv[0] + (ptr - pos), name ); data/wine-5.0/libs/wine/debug.c:137:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( debug_options[pos].name, name ); data/wine-5.0/libs/wine/debug.c:254:11: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = vsnprintf( ret, max_size, format, valist ); data/wine-5.0/libs/wine/debug.c:416:12: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. return vfprintf( stderr, format, args ); data/wine-5.0/libs/wine/loader.c:269:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p + namelen, ext ); data/wine-5.0/libs/wpp/preproc.c:158:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path + (p - parent_name), cpy ); data/wine-5.0/libs/wpp/preproc.c:177:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, include_path[i]); data/wine-5.0/libs/wpp/preproc.c:179:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, cpy); data/wine-5.0/libs/wpp/preproc.c:672:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/libs/wpp/preproc.c:714:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/libs/wpp/wpp_private.h:202:58: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int ppy_error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/libs/wpp/wpp_private.h:203:60: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int ppy_warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/libs/wpp/wpp_private.h:204:95: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void pp_internal_error(const char *file, int line, const char *s, ...) __attribute__((format (printf, 3, 4))); data/wine-5.0/libs/wpp/wpp_private.h:236:69: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void pp_writestring(const char *format, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/loader/preloader.c:619:30: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static __attribute__((format(printf,1,2))) void wld_printf(const char *fmt, ... ) data/wine-5.0/loader/preloader.c:631:39: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static __attribute__((noreturn,format(printf,1,2))) void fatal_error(const char *fmt, ... ) data/wine-5.0/loader/preloader_mac.c:360:30: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static __attribute__((format(printf,1,2))) void wld_printf(const char *fmt, ... ) data/wine-5.0/loader/preloader_mac.c:372:39: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static __attribute__((noreturn,format(printf,1,2))) void fatal_error(const char *fmt, ... ) data/wine-5.0/programs/attrib/attrib.c:40:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msg, failedMsg); data/wine-5.0/programs/attrib/attrib.c:158:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, rootdir); data/wine-5.0/programs/attrib/attrib.c:159:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, starW); data/wine-5.0/programs/attrib/attrib.c:175:15: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, rootdir); data/wine-5.0/programs/attrib/attrib.c:176:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, fd.cFileName); data/wine-5.0/programs/attrib/attrib.c:177:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, slashW); data/wine-5.0/programs/attrib/attrib.c:187:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, rootdir); data/wine-5.0/programs/attrib/attrib.c:188:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, filespec); data/wine-5.0/programs/attrib/attrib.c:211:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, rootdir); data/wine-5.0/programs/attrib/attrib.c:212:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, fd.cFileName); data/wine-5.0/programs/attrib/attrib.c:235:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, rootdir); data/wine-5.0/programs/attrib/attrib.c:236:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, fd.cFileName); data/wine-5.0/programs/attrib/attrib.c:268:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, starW); data/wine-5.0/programs/attrib/attrib.c:297:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(originalname, param); data/wine-5.0/programs/attrib/attrib.c:307:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, namepart); data/wine-5.0/programs/cabarc/cabarc.c:92:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dest, name ); data/wine-5.0/programs/cabarc/cabarc.c:101:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( dest + len, num + 1, CB_MAX_CABINET_NAME - len ); data/wine-5.0/programs/cabarc/cabarc.c:295:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path, name); data/wine-5.0/programs/cabarc/cabarc.c:398:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, opt_dest_dir ); data/wine-5.0/programs/cabarc/cabarc.c:399:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, file ); data/wine-5.0/programs/cabarc/cabarc.c:480:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, dir ); data/wine-5.0/programs/cabarc/cabarc.c:483:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, wildcardW ); data/wine-5.0/programs/cabarc/cabarc.c:493:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( p, data.cFileName ); data/wine-5.0/programs/cabarc/cabarc.c:544:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( cab.szCabPath, cab_dir ); data/wine-5.0/programs/cabarc/cabarc.c:663:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, file_part); data/wine-5.0/programs/clock/main.c:259:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szAppRelease,szApp); data/wine-5.0/programs/cmd/batch.c:79:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(param1, startLabel); data/wine-5.0/programs/cmd/batch.c:474:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(outputparam, context->batchfileW); data/wine-5.0/programs/cmd/batch.c:476:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(outputparam, data/wine-5.0/programs/cmd/batch.c:482:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(outputparam, forloopcontext.variable[foridx]); data/wine-5.0/programs/cmd/batch.c:544:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisoutput, defaults); data/wine-5.0/programs/cmd/batch.c:560:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, thisoutput); data/wine-5.0/programs/cmd/batch.c:573:37: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (finaloutput[0] != 0x00) lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:579:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisoutput, spaceW); data/wine-5.0/programs/cmd/batch.c:583:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, thisoutput); data/wine-5.0/programs/cmd/batch.c:596:37: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (finaloutput[0] != 0x00) lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:598:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, thisoutput); data/wine-5.0/programs/cmd/batch.c:604:35: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (finaloutput[0] != 0x00) lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:610:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisoutput, filepart); data/wine-5.0/programs/cmd/batch.c:613:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullfilename, thisoutput); data/wine-5.0/programs/cmd/batch.c:621:35: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (finaloutput[0] != 0x00) lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:622:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, fullfilename); data/wine-5.0/programs/cmd/batch.c:638:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:642:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, drive); data/wine-5.0/programs/cmd/batch.c:650:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:654:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, dir); data/wine-5.0/programs/cmd/batch.c:662:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:666:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, fname); data/wine-5.0/programs/cmd/batch.c:674:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:678:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, ext); data/wine-5.0/programs/cmd/batch.c:687:37: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (finaloutput[0] != 0x00) lstrcatW(finaloutput, spaceW); data/wine-5.0/programs/cmd/batch.c:688:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(finaloutput, fullfilename); data/wine-5.0/programs/cmd/batch.c:694:22: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!doneModifier) lstrcpyW(finaloutput, outputparam); data/wine-5.0/programs/cmd/batch.c:717:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(gotoLabel, param1); data/wine-5.0/programs/cmd/builtins.c:810:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(destname, dotW); data/wine-5.0/programs/cmd/builtins.c:811:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(destname, slashW); data/wine-5.0/programs/cmd/builtins.c:838:45: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!ends_with_backslash( destname )) lstrcatW(destname, slashW); data/wine-5.0/programs/cmd/builtins.c:919:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thiscopy->name, starW); data/wine-5.0/programs/cmd/builtins.c:929:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thiscopy->name, slashstarW); data/wine-5.0/programs/cmd/builtins.c:964:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(outname, destination->name); data/wine-5.0/programs/cmd/builtins.c:965:53: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (destisdirectory || appendfirstsource) lstrcatW(outname, srcname); data/wine-5.0/programs/cmd/builtins.c:968:29: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!srcisdevice) lstrcpyW(filenamepart, srcname); data/wine-5.0/programs/cmd/builtins.c:1263:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(argCopy, thisArg); data/wine-5.0/programs/cmd/builtins.c:1289:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(modifiedParm, argCopy); data/wine-5.0/programs/cmd/builtins.c:1290:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(modifiedParm, slashStar); data/wine-5.0/programs/cmd/builtins.c:1298:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (fpath, argCopy); data/wine-5.0/programs/cmd/builtins.c:1303:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (fpath, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:1305:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW (fpath, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:1357:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisDir, drive); data/wine-5.0/programs/cmd/builtins.c:1358:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir, dir); data/wine-5.0/programs/cmd/builtins.c:1385:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (subParm, thisDir); data/wine-5.0/programs/cmd/builtins.c:1386:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (subParm, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:1387:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (subParm, slashW); data/wine-5.0/programs/cmd/builtins.c:1388:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (subParm, fname); data/wine-5.0/programs/cmd/builtins.c:1389:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (subParm, ext); data/wine-5.0/programs/cmd/builtins.c:1681:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(delims, forf_defaultdelims); data/wine-5.0/programs/cmd/builtins.c:1682:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(tokens, forf_defaulttokens); data/wine-5.0/programs/cmd/builtins.c:1779:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullitem, dirsToWalk->dirName); data/wine-5.0/programs/cmd/builtins.c:1780:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, slashstarW); data/wine-5.0/programs/cmd/builtins.c:1796:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(toWalk->dirName, dirsToWalk->dirName); data/wine-5.0/programs/cmd/builtins.c:1797:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(toWalk->dirName, slashW); data/wine-5.0/programs/cmd/builtins.c:1798:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(toWalk->dirName, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:2201:19: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(optionsRoot, thisArg); data/wine-5.0/programs/cmd/builtins.c:2238:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(variable, thisArg); data/wine-5.0/programs/cmd/builtins.c:2316:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(item, staticitem); data/wine-5.0/programs/cmd/builtins.c:2330:15: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullitem, dirsToWalk->dirName); data/wine-5.0/programs/cmd/builtins.c:2331:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, slashW); data/wine-5.0/programs/cmd/builtins.c:2332:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, item); data/wine-5.0/programs/cmd/builtins.c:2336:15: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullitem, item); data/wine-5.0/programs/cmd/builtins.c:2356:27: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullitem, dirsToWalk->dirName); data/wine-5.0/programs/cmd/builtins.c:2357:27: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, slashW); data/wine-5.0/programs/cmd/builtins.c:2358:27: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:2360:42: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (prefixlen) lstrcpynW(fullitem, item, prefixlen + 1); data/wine-5.0/programs/cmd/builtins.c:2362:27: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullitem, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:2462:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, itemStart); data/wine-5.0/programs/cmd/builtins.c:2490:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(thisNum, ARRAY_SIZE(thisNum), fmt, i); data/wine-5.0/programs/cmd/builtins.c:2570:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cmd, args); data/wine-5.0/programs/cmd/builtins.c:2571:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmd, helpW); data/wine-5.0/programs/cmd/builtins.c:2709:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(quals, parmD); data/wine-5.0/programs/cmd/builtins.c:2851:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(condition, (*negate ? param2 : param1)); data/wine-5.0/programs/cmd/builtins.c:2869:38: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (len && param[len-1] == '\\') lstrcatW(param, dotW); data/wine-5.0/programs/cmd/builtins.c:2886:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(leftOperand, WCMD_parameter(p, (*negate)+caseInsensitive, ¶mStart, TRUE, FALSE)); data/wine-5.0/programs/cmd/builtins.c:2896:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(operator, eqeqW); data/wine-5.0/programs/cmd/builtins.c:2898:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(operator, WCMD_parameter(p, 0, ¶mStart, FALSE, FALSE)); data/wine-5.0/programs/cmd/builtins.c:2903:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(rightOperand, WCMD_parameter(p, 0, ¶mStart, TRUE, FALSE)); data/wine-5.0/programs/cmd/builtins.c:2978:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(param2, dotW); data/wine-5.0/programs/cmd/builtins.c:3004:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src, drive); data/wine-5.0/programs/cmd/builtins.c:3005:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(src, dir); data/wine-5.0/programs/cmd/builtins.c:3011:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, output); data/wine-5.0/programs/cmd/builtins.c:3012:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, slashW); data/wine-5.0/programs/cmd/builtins.c:3013:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:3015:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, output); data/wine-5.0/programs/cmd/builtins.c:3018:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(src, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:3233:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(src, drive); data/wine-5.0/programs/cmd/builtins.c:3234:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(src, dir); data/wine-5.0/programs/cmd/builtins.c:3235:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dest, src); data/wine-5.0/programs/cmd/builtins.c:3237:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(src, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:3241:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, fd.cFileName); data/wine-5.0/programs/cmd/builtins.c:3244:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, param2); data/wine-5.0/programs/cmd/builtins.c:3250:19: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (dotSrc) lstrcatW(dest, dotSrc); data/wine-5.0/programs/cmd/builtins.c:3252:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dest, dotDst); data/wine-5.0/programs/cmd/builtins.c:3465:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (cwd, newlineW); data/wine-5.0/programs/cmd/builtins.c:3532:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(env, equalW); data/wine-5.0/programs/cmd/builtins.c:3908:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(result, ARRAY_SIZE(result), intFormat, var1); data/wine-5.0/programs/cmd/builtins.c:4246:7: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(string, ARRAY_SIZE(string), fmt, result); data/wine-5.0/programs/cmd/builtins.c:4423:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, exeW ); data/wine-5.0/programs/cmd/builtins.c:4425:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( cmdline, file ); data/wine-5.0/programs/cmd/builtins.c:4426:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( cmdline, spaceW ); data/wine-5.0/programs/cmd/builtins.c:4483:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdline_params, prefixQuote); data/wine-5.0/programs/cmd/builtins.c:4484:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdline_params, thisArg); data/wine-5.0/programs/cmd/builtins.c:4485:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdline_params, postfixQuote); data/wine-5.0/programs/cmd/builtins.c:4489:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cmdline_params, argN + lstrlenW(thisArg)); data/wine-5.0/programs/cmd/builtins.c:4507:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( cmdline, args ); data/wine-5.0/programs/cmd/builtins.c:4613:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(moreStr, moreStart); data/wine-5.0/programs/cmd/builtins.c:4881:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subkey, keyName); data/wine-5.0/programs/cmd/builtins.c:4882:25: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!assoc) lstrcatW(subkey, shOpCmdW); data/wine-5.0/programs/cmd/builtins.c:4909:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(keyValue, args); data/wine-5.0/programs/cmd/builtins.c:4914:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subkey, keyValue); data/wine-5.0/programs/cmd/builtins.c:4915:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!assoc) lstrcatW(subkey, shOpCmdW); data/wine-5.0/programs/cmd/builtins.c:4950:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(subkey, args); data/wine-5.0/programs/cmd/builtins.c:4951:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!assoc) lstrcatW(subkey, shOpCmdW); data/wine-5.0/programs/cmd/builtins.c:5092:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file1, thisArg); data/wine-5.0/programs/cmd/builtins.c:5094:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(file2, thisArg); data/wine-5.0/programs/cmd/directory.c:224:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(owner, ownerlen, fmt, domain, '\\', name); data/wine-5.0/programs/cmd/directory.c:281:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(real_path, parms->dirName); data/wine-5.0/programs/cmd/directory.c:282:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(real_path, parms->fileName); data/wine-5.0/programs/cmd/directory.c:313:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(real_path, parms->dirName); data/wine-5.0/programs/cmd/directory.c:371:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (string, inputparms->dirName); data/wine-5.0/programs/cmd/directory.c:372:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (string, fd[i].cFileName); data/wine-5.0/programs/cmd/directory.c:487:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(string, inputparms->dirName); data/wine-5.0/programs/cmd/directory.c:488:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(string, starW); data/wine-5.0/programs/cmd/directory.c:507:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (string, inputparms->dirName); data/wine-5.0/programs/cmd/directory.c:508:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (string, finddata.cFileName); data/wine-5.0/programs/cmd/directory.c:509:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (string, slashW); data/wine-5.0/programs/cmd/directory.c:616:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(string,quals); data/wine-5.0/programs/cmd/directory.c:617:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(quals, string); data/wine-5.0/programs/cmd/directory.c:792:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(cwd, slashW); data/wine-5.0/programs/cmd/directory.c:804:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullname, thisArg); data/wine-5.0/programs/cmd/directory.c:813:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, slashW); data/wine-5.0/programs/cmd/directory.c:814:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, &thisArg[2]); data/wine-5.0/programs/cmd/directory.c:817:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullname+2, thisArg); data/wine-5.0/programs/cmd/directory.c:819:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullname, cwd); data/wine-5.0/programs/cmd/directory.c:820:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname, thisArg); data/wine-5.0/programs/cmd/directory.c:834:45: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (!ends_with_backslash( path )) lstrcatW( path, slashW ); data/wine-5.0/programs/cmd/directory.c:835:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (path, starW); data/wine-5.0/programs/cmd/directory.c:840:52: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (fullname[lstrlenW(fullname)-1] == '.') lstrcatW(path, dotW); data/wine-5.0/programs/cmd/directory.c:857:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisEntry->dirName, drive); data/wine-5.0/programs/cmd/directory.c:858:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisEntry->dirName, dir); data/wine-5.0/programs/cmd/directory.c:861:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisEntry->fileName, fname); data/wine-5.0/programs/cmd/directory.c:862:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisEntry->fileName, ext); data/wine-5.0/programs/cmd/tests/batch.c:387:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_name, "%s.exp", file_name); data/wine-5.0/programs/cmd/tests/batch.c:433:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(res_name, "%s.exp", name); data/wine-5.0/programs/cmd/wcmdmain.c:348:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (prompt_string, dfltPrompt); data/wine-5.0/programs/cmd/wcmdmain.c:405:6: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (q, curdir); data/wine-5.0/programs/cmd/wcmdmain.c:420:4: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (q, version_string); data/wine-5.0/programs/cmd/wcmdmain.c:763:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(start, replacewith); data/wine-5.0/programs/cmd/wcmdmain.c:764:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(start, thisVarContents + (found-searchIn) + lstrlenW(searchFor+1)); data/wine-5.0/programs/cmd/wcmdmain.c:765:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(start, s); data/wine-5.0/programs/cmd/wcmdmain.c:768:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(start, thisVarContents); data/wine-5.0/programs/cmd/wcmdmain.c:769:11: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(start, s); data/wine-5.0/programs/cmd/wcmdmain.c:779:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(outputposn, data/wine-5.0/programs/cmd/wcmdmain.c:783:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(outputposn, replacewith); data/wine-5.0/programs/cmd/wcmdmain.c:787:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(outputposn, data/wine-5.0/programs/cmd/wcmdmain.c:789:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(outputposn, s); data/wine-5.0/programs/cmd/wcmdmain.c:1061:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathtosearch, curDir); data/wine-5.0/programs/cmd/wcmdmain.c:1065:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (pathtosearch, curDir); data/wine-5.0/programs/cmd/wcmdmain.c:1074:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stemofsearch, firstParam); data/wine-5.0/programs/cmd/wcmdmain.c:1082:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stemofsearch, lastSlash+1); data/wine-5.0/programs/cmd/wcmdmain.c:1092:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (pathext, dfltPathExt); data/wine-5.0/programs/cmd/wcmdmain.c:1120:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisDir, pathposn); data/wine-5.0/programs/cmd/wcmdmain.c:1130:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, thisDir); data/wine-5.0/programs/cmd/wcmdmain.c:1132:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, thisDir + 1); data/wine-5.0/programs/cmd/wcmdmain.c:1139:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir, slashW); data/wine-5.0/programs/cmd/wcmdmain.c:1140:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir, stemofsearch); data/wine-5.0/programs/cmd/wcmdmain.c:1156:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir,allFiles); data/wine-5.0/programs/cmd/wcmdmain.c:1172:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pos, thisExt); data/wine-5.0/programs/cmd/wcmdmain.c:1303:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_cmd, command); data/wine-5.0/programs/cmd/wcmdmain.c:1359:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_redir, redirects); data/wine-5.0/programs/cmd/wcmdmain.c:1383:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(envvar, equalW); data/wine-5.0/programs/cmd/wcmdmain.c:1384:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(envvar, cmd); data/wine-5.0/programs/cmd/wcmdmain.c:1670:8: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msg, failedMsg); data/wine-5.0/programs/cmd/wcmdmain.c:1860:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(extraSpace, optionalcmd); data/wine-5.0/programs/cmd/wcmdmain.c:2447:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(comspec, cmdW); data/wine-5.0/programs/cmd/wcmdmain.c:2458:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(anykey, WCMD_LoadMessage(WCMD_ANYKEY)); data/wine-5.0/programs/cmd/wcmdmain.c:2461:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(version_string, cmd); data/wine-5.0/programs/cmd/wcmdmain.c:2592:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (pathext, dfltPathExt); data/wine-5.0/programs/cmd/wcmdmain.c:2619:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, thisExt); data/wine-5.0/programs/dxdiag/information.c:73:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*output, bstr); data/wine-5.0/programs/dxdiag/main.c:88:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(filename, filename_ext); data/wine-5.0/programs/dxdiag/output.c:109:12: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. ptr += sprintf(ptr, sprintf_fmt, field_name); data/wine-5.0/programs/expand/expand.c:37:11: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = vsnprintf(tmp, sizeof(tmp), format, va); data/wine-5.0/programs/expand/expand.c:61:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( outfile, basename ); data/wine-5.0/programs/expand/expand.c:78:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( info->FullTargetName, targetname ); data/wine-5.0/programs/expand/expand.c:131:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( outfile, outfile_basename ); data/wine-5.0/programs/explorer/desktop.c:516:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( glob, folder ); data/wine-5.0/programs/explorer/desktop.c:517:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( glob, lnkW ); data/wine-5.0/programs/explorer/desktop.c:775:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, default_driver ); data/wine-5.0/programs/explorer/desktop.c:785:10: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpynW( buffer, driver, ARRAY_SIZE( buffer )); data/wine-5.0/programs/explorer/desktop.c:793:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( libname, ARRAY_SIZE( libname ), drv_formatW, name ); data/wine-5.0/programs/explorer/desktop.c:816:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( key, ARRAY_SIZE(key), device_keyW, guid->Data1, guid->Data2, guid->Data3, data/wine-5.0/programs/explorer/desktop.c:872:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( window_titleW, name ); data/wine-5.0/programs/explorer/desktop.c:873:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( window_titleW, desktop_name_separatorW ); data/wine-5.0/programs/explorer/desktop.c:874:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( window_titleW, desktop_nameW ); data/wine-5.0/programs/explorer/systray.c:408:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( icon->tiptext, nid->szTip, ARRAY_SIZE( icon->tiptext )); data/wine-5.0/programs/explorer/systray.c:413:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( icon->info_text, nid->szInfo, ARRAY_SIZE( icon->info_text )); data/wine-5.0/programs/explorer/systray.c:414:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( icon->info_title, nid->szInfoTitle, ARRAY_SIZE( icon->info_title )); data/wine-5.0/programs/explorer/systray.c:543:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( nid.szTip, data->szTip ); data/wine-5.0/programs/explorer/systray.c:544:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( nid.szInfo, data->szInfo ); data/wine-5.0/programs/explorer/systray.c:545:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( nid.szInfoTitle, data->szInfoTitle ); data/wine-5.0/programs/extrac32/extrac32.c:41:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir, Target); data/wine-5.0/programs/extrac32/extrac32.c:84:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pInfo->FullTargetName, (LPCWSTR)Context); data/wine-5.0/programs/extrac32/extrac32.c:85:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(pInfo->FullTargetName, pInfo->NameInCabinet); data/wine-5.0/programs/extrac32/extrac32.c:121:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(msg, ARRAY_SIZE(msg), overwriteMsg, destination); data/wine-5.0/programs/extrac32/extrac32.c:142:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(str, cmdline); data/wine-5.0/programs/hostname/hostname.c:38:12: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. wlen = vswprintf(msg_buffer, ARRAY_SIZE(msg_buffer), msg, va_args); data/wine-5.0/programs/icinfo/icinfo.c:35:5: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. vswprintf(output_bufW, ARRAY_SIZE(output_bufW), format, parms); data/wine-5.0/programs/ipconfig/ipconfig.c:262:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(p, 4, fmtW, addr[i]); data/wine-5.0/programs/ipconfig/ipconfig.c:265:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(p, 3, fmt2W, addr[i]); data/wine-5.0/programs/msidb/main.c:474:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, state->table_folder ); data/wine-5.0/programs/msidb/main.c:476:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( path, table_name ); data/wine-5.0/programs/msidb/main.c:501:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( table_path, ARRAY_SIZE(table_path), format, table_name ); data/wine-5.0/programs/msidb/main.c:518:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( table_path, ARRAY_SIZE(table_path), format, table_name ); data/wine-5.0/programs/msiexec/msiexec.c:94:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(msiexec_help, len + 1 + ARRAY_SIZE(msiexec_version), msi_res, msiexec_version); data/wine-5.0/programs/msiexec/msiexec.c:122:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entry->str, str); data/wine-5.0/programs/msiexec/msiexec.c:200:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(p, list->str, len ); data/wine-5.0/programs/msiexec/msiexec.c:354:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(path + len, msiexecW); data/wine-5.0/programs/msiexec/msiexec.c:428:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), pipe_name, client_pid, sizeof(void *) * 8); data/wine-5.0/programs/net/net.c:259:35: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (!service_display_name[0]) lstrcpyW(service_display_name, service_name); data/wine-5.0/programs/netstat/netstat.c:149:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msg, failedW); data/wine-5.0/programs/netstat/netstat.c:157:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, 32, fmtport, htons((WORD)port)); data/wine-5.0/programs/netstat/netstat.c:167:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, MAX_HOSTNAME_LEN, fmtip, data/wine-5.0/programs/netstat/netstat.c:177:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(local, NETSTAT_load_message(IDS_TCP_LOCAL_ADDR)); data/wine-5.0/programs/netstat/netstat.c:178:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(remote, NETSTAT_load_message(IDS_TCP_REMOTE_ADDR)); data/wine-5.0/programs/netstat/netstat.c:179:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(state, NETSTAT_load_message(IDS_TCP_STATE)); data/wine-5.0/programs/netstat/netstat.c:203:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(recv, NETSTAT_load_message(IDS_ETH_RECV)); data/wine-5.0/programs/netstat/netstat.c:268:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Host, ARRAY_SIZE(Host), fmtcolon, HostIp, HostPort); data/wine-5.0/programs/netstat/netstat.c:269:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Remote, ARRAY_SIZE(Remote), fmtcolon, RemoteIp, RemotePort); data/wine-5.0/programs/netstat/netstat.c:317:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Host, ARRAY_SIZE(Host), fmtcolon, HostIp, HostPort); data/wine-5.0/programs/notepad/dialog.c:70:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buffer, cpi.CodePageName, length); data/wine-5.0/programs/notepad/dialog.c:109:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szCaption, Globals.szFileTitle); data/wine-5.0/programs/notepad/dialog.c:114:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szCaption, hyphenW); data/wine-5.0/programs/notepad/dialog.c:115:3: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szCaption, szNotepad); data/wine-5.0/programs/notepad/dialog.c:620:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szPath, txt_files); data/wine-5.0/programs/notepad/dialog.c:667:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szPath, txt_files); data/wine-5.0/programs/notepad/main.c:76:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Globals.szFileName, szFileName); data/wine-5.0/programs/notepad/main.c:208:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Globals.lfFont.lfFaceName, systemW); data/wine-5.0/programs/notepad/main.c:255:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Globals.lfFont.lfFaceName, data_helper); data/wine-5.0/programs/notepad/main.c:260:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Globals.szHeader, data_helper); data/wine-5.0/programs/notepad/main.c:265:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(Globals.szFooter, data_helper); data/wine-5.0/programs/notepad/main.c:324:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, txt_files); data/wine-5.0/programs/notepad/main.c:328:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, all_files); data/wine-5.0/programs/notepad/main.c:695:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(buf, cmdline, MAX_PATH - lstrlenW(txtW) - 1); data/wine-5.0/programs/notepad/main.c:696:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buf, txtW); data/wine-5.0/programs/oleview/details.c:78:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszData, wszBuf); data/wine-5.0/programs/oleview/details.c:79:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&wszData[MAX_LOAD_STRING-5], wszDots); data/wine-5.0/programs/oleview/details.c:89:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszTree, wszName); data/wine-5.0/programs/oleview/details.c:91:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszData, wszCLSID); data/wine-5.0/programs/oleview/details.c:285:10: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpyW(wszStaticText, tvi.pszText); data/wine-5.0/programs/oleview/oleview.c:159:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pLoc, ((ITEM_INFO *)tvi.lParam)->clsid); data/wine-5.0/programs/oleview/oleview.c:382:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( app, wszRegEdit ); data/wine-5.0/programs/oleview/tree.c:47:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(reg->info, info); data/wine-5.0/programs/oleview/tree.c:48:15: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(clsid) lstrcpyW(reg->clsid, clsid); data/wine-5.0/programs/oleview/tree.c:49:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(path) lstrcpyW(reg->path, path); data/wine-5.0/programs/oleview/tree.c:169:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszRegPath, wszInterface); data/wine-5.0/programs/oleview/tree.c:170:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&wszRegPath[lstrlenW(wszRegPath)], ((ITEM_INFO *)tvi.lParam)->clsid); data/wine-5.0/programs/oleview/typelib.c:162:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszDir, typelib.wszFileName); data/wine-5.0/programs/oleview/typelib.c:173:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszPath, pFileName); data/wine-5.0/programs/oleview/typelib.c:193:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(&wszDest[lstrlenW(wszDest)], wszSource); data/wine-5.0/programs/oleview/typelib.c:1369:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszText, wszProperties); data/wine-5.0/programs/oleview/typelib.c:1380:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszText, wszMethods); data/wine-5.0/programs/oleview/typelib.c:1437:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszText, bstrName); data/wine-5.0/programs/oleview/typelib.c:1642:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if(wszFileName) lstrcpyW(typelib.wszFileName, wszFileName); data/wine-5.0/programs/oleview/typelib.c:1652:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(typelib.wszFileName, ((ITEM_INFO*)tvi.lParam)->path); data/wine-5.0/programs/ping/ping_main.c:157:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ip, inet_ntoa(addr)); data/wine-5.0/programs/progman/dialog.c:82:3: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(*p, filter); data/wine-5.0/programs/progman/dialog.c:486:8: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ProgramAttributes.lpszIconFile, data/wine-5.0/programs/progman/dialog.c:535:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(ProgramAttributes.lpszTmpIconFile, lpszIconFile, MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/dialog.c:576:6: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WinExec(cmdline, IsDlgButtonChecked(hDlg, PM_SYMBOL) ? data/wine-5.0/programs/progman/group.c:203:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szName, LocalLock(group->hName), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/group.c:204:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szFile, LocalLock(group->hGrpFile), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/grpfile.c:53:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(lpszNewName, lpszOrigName, nSize); data/wine-5.0/programs/progman/main.c:460:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(newstring, replace); data/wine-5.0/programs/progman/program.c:136:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szName, LocalLock(program->hName), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/program.c:137:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szCmdLine, LocalLock(program->hCmdLine), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/program.c:138:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szIconFile, LocalLock(program->hIconFile), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/program.c:139:3: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(szWorkDir, LocalLock(program->hWorkDir), MAX_PATHNAME_LEN); data/wine-5.0/programs/progman/program.c:279:3: [4] (shell) WinExec: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. WinExec(lpszCmdLine, program->nCmdShow); data/wine-5.0/programs/reg/export.c:95:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. line_len = swprintf(buf, line_len + 4, quoted_fmt, str); data/wine-5.0/programs/reg/export.c:119:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*buf, line_len + 3, fmt, str); data/wine-5.0/programs/reg/export.c:128:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*buf, 15, fmt, *data); data/wine-5.0/programs/reg/export.c:145:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. line_len = swprintf(buf, 15, hexp_fmt, type); data/wine-5.0/programs/reg/export.c:171:16: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. pos += swprintf(*buf + pos, 3, fmt, ((BYTE *)data)[i]); data/wine-5.0/programs/reg/export.c:236:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, lstrlenW(name) + 7, fmt, name); data/wine-5.0/programs/reg/import.c:392:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parser->key_name, path); data/wine-5.0/programs/reg/import.c:493:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(header + 2, line); data/wine-5.0/programs/reg/import.c:655:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parser->value_name, val_name); data/wine-5.0/programs/reg/reg.c:269:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((LPWSTR)out_data,data); data/wine-5.0/programs/reg/reg.c:531:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, (WCHAR *)src); data/wine-5.0/programs/reg/reg.c:542:24: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. ptr += swprintf(ptr, 3, fmt, src[i]); data/wine-5.0/programs/reg/reg.c:553:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, zero_x_dword + 1, fmt, *(DWORD *)src); data/wine-5.0/programs/reg/reg.c:638:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(subkey_path, path_len + subkey_len + 2, fmt, path, subkey_name); data/wine-5.0/programs/reg/reg.c:853:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(long_key, root_rels[i].long_name); data/wine-5.0/programs/reg/reg.c:859:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(long_key, len + 1, fmt, root_rels[i].long_name, path); data/wine-5.0/programs/reg/tests/reg.c:46:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cmdline, cmd); data/wine-5.0/programs/regedit/childwnd.c:116:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(combined, pPaths[i]); data/wine-5.0/programs/regedit/childwnd.c:119:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(combined+pos, pPaths[i]); data/wine-5.0/programs/regedit/edit.c:291:10: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (sscanf(valueA, isDecimal ? "%u" : "%x", &val)) { data/wine-5.0/programs/regedit/edit.c:540:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parentPath, keyPath); data/wine-5.0/programs/regedit/framewnd.c:429:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( FilterBuffer, ARRAY_SIZE(FilterBuffer), filterW, data/wine-5.0/programs/regedit/framewnd.c:596:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pLoc, keyName); data/wine-5.0/programs/regedit/framewnd.c:734:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(favoriteName, lpName); data/wine-5.0/programs/regedit/listview.c:79:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(g_currentPath, path); data/wine-5.0/programs/regedit/listview.c:157:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(linfo->name, Name); data/wine-5.0/programs/regedit/regproc.c:486:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parser->key_name, path); data/wine-5.0/programs/regedit/regproc.c:587:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(header + 2, line); data/wine-5.0/programs/regedit/regproc.c:741:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(parser->value_name, val_name); data/wine-5.0/programs/regedit/regproc.c:1219:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. line_len = swprintf(buf, line_len + 4, quoted_fmt, str); data/wine-5.0/programs/regedit/regproc.c:1243:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*buf, line_len + 3, fmt, str); data/wine-5.0/programs/regedit/regproc.c:1252:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(*buf, 15, fmt, *data); data/wine-5.0/programs/regedit/regproc.c:1269:20: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. line_len = swprintf(buf, 15, hexp_fmt, type); data/wine-5.0/programs/regedit/regproc.c:1298:16: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. pos += swprintf(*buf + pos, 3, fmt, ((BYTE *)data)[i]); data/wine-5.0/programs/regedit/regproc.c:1363:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(subkey_path, path_len + subkey_len + 2, fmt, path, subkey_name); data/wine-5.0/programs/regedit/regproc.c:1374:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buf, lstrlenW(name) + 7, fmt, name); data/wine-5.0/programs/regedit/regproc.c:1548:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(class_name, reg_class_namesW[i]); data/wine-5.0/programs/regedit/tests/regedit.c:38:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cmdline, cmd); data/wine-5.0/programs/regedit/treeview.c:122:6: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(lpResult, *lplpKeyName, len); data/wine-5.0/programs/regsvr32/regsvr32.c:142:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(systemdir, sysnative); data/wine-5.0/programs/regsvr32/regsvr32.c:150:5: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(cmdline, systemdir); data/wine-5.0/programs/regsvr32/regsvr32.c:151:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(cmdline, exe_name); data/wine-5.0/programs/regsvr32/regsvr32.c:152:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(cmdline, args); data/wine-5.0/programs/rundll.exe16/rundll.c:40:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, cmdline ); data/wine-5.0/programs/sc/sc.c:145:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( actions, arg ); data/wine-5.0/programs/schtasks/tests/schtasks.c:75:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(command, cmd); data/wine-5.0/programs/services/rpc.c:68:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/wine-5.0/programs/services/rpc.c:230:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((needed_access & hdr->access) != needed_access) data/wine-5.0/programs/services/rpc.c:232:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. WINE_ERR("Access denied - handle created with access %x, needed %x\n", hdr->access, needed_access); data/wine-5.0/programs/services/rpc.c:293:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RtlMapGenericMask(&manager->hdr.access, &g_scm_generic); data/wine-5.0/programs/services/rpc.c:435:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. RtlMapGenericMask(&service->hdr.access, &g_svc_generic); data/wine-5.0/programs/services/rpc.c:509:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(s, ptr); data/wine-5.0/programs/services/rpc.c:533:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(s, ptr + 1); data/wine-5.0/programs/services/rpc.c:1002:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( desc->description, service->service_entry->description ); data/wine-5.0/programs/services/rpc.c:1204:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW((WCHAR *)ssi->data, name); data/wine-5.0/programs/services/services.c:810:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), format, service_current); data/wine-5.0/programs/services/services.c:846:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( redirected, system_dir ); data/wine-5.0/programs/services/services.c:847:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( redirected, &(*path)[len] ); data/wine-5.0/programs/services/services.c:874:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*path, system_dir); data/wine-5.0/programs/services/services.c:875:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(*path, winedeviceW); data/wine-5.0/programs/services/services.c:916:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(name, ARRAY_SIZE(name), format, ++current); data/wine-5.0/programs/services/services.c:1165:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, name); data/wine-5.0/programs/services/services.c:1169:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, argv[i]); data/wine-5.0/programs/services/tests/service.c:45:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s:%s", type, msg); data/wine-5.0/programs/services/tests/service.c:65:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buf, msg, valist); data/wine-5.0/programs/services/tests/service.c:361:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(ptr, "%s ", test_name); data/wine-5.0/programs/services/tests/service.c:363:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, service_name); data/wine-5.0/programs/services/tests/service.c:392:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(evt, current_event); data/wine-5.0/programs/services/tests/service.c:427:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(current_event, ptr+6); data/wine-5.0/programs/services/tests/service.c:589:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(named_pipe_name, "\\\\.\\pipe\\%s_pipe", service_name); data/wine-5.0/programs/services/tests/service.c:641:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(service_name, argv[3]); data/wine-5.0/programs/services/tests/service.c:642:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(named_pipe_name, "\\\\.\\pipe\\%s_pipe", service_name); data/wine-5.0/programs/services/utils.c:43:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buf, str); data/wine-5.0/programs/start/start.c:143:26: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf(p, wlen - (p - ret), FormatQuotesW, argvW[i]); data/wine-5.0/programs/start/start.c:145:26: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. p += swprintf(p, wlen - (p - ret), FormatW, argvW[i]); data/wine-5.0/programs/start/start.c:221:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pathtosearch, curDir); data/wine-5.0/programs/start/start.c:225:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (pathtosearch, curDir); data/wine-5.0/programs/start/start.c:232:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stemofsearch, firstParam); data/wine-5.0/programs/start/start.c:240:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stemofsearch, lastSlash+1); data/wine-5.0/programs/start/start.c:250:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (pathext, dfltPathExt); data/wine-5.0/programs/start/start.c:278:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisDir, pathposn); data/wine-5.0/programs/start/start.c:288:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, thisDir); data/wine-5.0/programs/start/start.c:290:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(temp, thisDir + 1); data/wine-5.0/programs/start/start.c:297:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir, slashW); data/wine-5.0/programs/start/start.c:298:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir, stemofsearch); data/wine-5.0/programs/start/start.c:314:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(thisDir,allFiles); data/wine-5.0/programs/start/start.c:330:25: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pos, thisExt); data/wine-5.0/programs/start/start.c:346:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(*full_path, thisDir); data/wine-5.0/programs/start/start.c:578:21: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(commandline, lstrlenW(sei.lpFile) + 3 + lstrlenW(sei.lpParameters), data/wine-5.0/programs/start/start.c:637:21: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(name, filename); data/wine-5.0/programs/svchost/svchost.c:152:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(service_param_key, service_reg_path); data/wine-5.0/programs/svchost/svchost.c:153:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(service_param_key, reg_separator); data/wine-5.0/programs/svchost/svchost.c:154:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(service_param_key, service_name); data/wine-5.0/programs/svchost/svchost.c:155:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(service_param_key, reg_separator); data/wine-5.0/programs/svchost/svchost.c:156:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(service_param_key, parameters); data/wine-5.0/programs/taskmgr/applpage.c:155:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pAPLI->wszTitle, wszTitle); data/wine-5.0/programs/taskmgr/applpage.c:176:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pAPLI->wszTitle, wszTitle); data/wine-5.0/programs/taskmgr/applpage.c:433:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pnmdi->item.pszText, pAPLI->wszTitle, pnmdi->item.cchTextMax); data/wine-5.0/programs/taskmgr/applpage.c:440:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pnmdi->item.pszText, wszNotResponding, pnmdi->item.cchTextMax); data/wine-5.0/programs/taskmgr/applpage.c:442:21: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(pnmdi->item.pszText, wszRunning, pnmdi->item.cchTextMax); data/wine-5.0/programs/taskmgr/graph.c:86:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Text, ARRAY_SIZE(Text), wszFormatI, (int)CpuUsage); data/wine-5.0/programs/taskmgr/graph.c:90:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Text, ARRAY_SIZE(Text), wszFormatII, (int)CpuUsage); data/wine-5.0/programs/taskmgr/graph.c:94:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(Text, ARRAY_SIZE(Text), wszFormatIII, (int)CpuUsage); data/wine-5.0/programs/taskmgr/perfdata.c:247:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pPerfData[Idx].ImageName, pSPI->ProcessName.Buffer); data/wine-5.0/programs/taskmgr/perfdata.c:252:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pPerfData[Idx].ImageName, idleW ); data/wine-5.0/programs/taskmgr/perfdata.c:288:17: [4] (access) ImpersonateLoggedOnUser: If this call fails, the program could fail to drop heightened privileges (CWE-250). Make sure the return value is checked, and do not continue if a failure is reported. ImpersonateLoggedOnUser(hProcessToken); data/wine-5.0/programs/taskmgr/perfdata.c:347:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(lpImageName, proc32W); data/wine-5.0/programs/taskmgr/procpage.c:206:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/procpage.c:212:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/procpage.c:218:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/procpage.c:234:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/procpage.c:240:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/procpage.c:246:17: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(pnmdi->item.pszText, wszUnitK); data/wine-5.0/programs/taskmgr/taskmgr.c:701:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(lpwszBuf, dwSize, wszFormat, lpwszTemp, GetLastError()); data/wine-5.0/programs/uninstaller/main.c:290:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(entries[numentries-1].key, subKeyName); data/wine-5.0/programs/view/view.c:62:3: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( filter, ARRAY_SIZE(filter), filterW, metafileFilter, 0, 0 ); data/wine-5.0/programs/view/view.c:226:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szCaption, szFileTitle); data/wine-5.0/programs/view/view.c:228:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szCaption, hyphenW); data/wine-5.0/programs/view/view.c:229:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szCaption, szView); data/wine-5.0/programs/view/view.c:232:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szCaption, szView); data/wine-5.0/programs/wineboot/wineboot.c:102:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, dir ); data/wine-5.0/programs/wineboot/wineboot.c:103:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( name, loaderW ); data/wine-5.0/programs/wineboot/wineboot.c:109:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( name, dir ); data/wine-5.0/programs/wineboot/wineboot.c:113:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( name, wine_infW ); data/wine-5.0/programs/wineboot/wineboot.c:128:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( file, config_dir ); data/wine-5.0/programs/wineboot/wineboot.c:129:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( file, timestampW ); data/wine-5.0/programs/wineboot/wineboot.c:168:5: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( buffer, path, ARRAY_SIZE(buffer) ); data/wine-5.0/programs/wineboot/wineboot.c:170:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer + ARRAY_SIZE(buffer) - 4, L"..." ); data/wine-5.0/programs/wineboot/wineboot.c:261:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buf, size, fmtW, arch, family, model, stepping ); data/wine-5.0/programs/wineboot/wineboot.c:344:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( id, ARRAY_SIZE(id), ARMCpuDescrW, sci.Level, HIBYTE(sci.Revision), LOBYTE(sci.Revision) ); data/wine-5.0/programs/wineboot/wineboot.c:391:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( numW, ARRAY_SIZE(numW), PercentDW, i ); data/wine-5.0/programs/wineboot/wineboot.c:466:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), PercentDW, NtCurrentTeb()->Peb->NumberOfProcessors ); data/wine-5.0/programs/wineboot/wineboot.c:487:9: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), ARMCpuDescrW, data/wine-5.0/programs/wineboot/wineboot.c:495:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, commaW ); data/wine-5.0/programs/wineboot/wineboot.c:496:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, vendorid ); data/wine-5.0/programs/wineboot/wineboot.c:501:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), PercentDW, sci.Level ); data/wine-5.0/programs/wineboot/wineboot.c:504:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, ARRAY_SIZE(buffer), Percent04XW, sci.Revision ); data/wine-5.0/programs/wineboot/wineboot.c:942:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dllcache, wildcardW ); data/wine-5.0/programs/wineboot/wineboot.c:952:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( dllcache, dllcacheW ); data/wine-5.0/programs/wineboot/wineboot.c:988:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( targetpath, dllcache, MAX_PATH - 1 ); data/wine-5.0/programs/wineboot/wineboot.c:991:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( targetpath + sz, finddata.cFileName, MAX_PATH - sz ); data/wine-5.0/programs/wineboot/wineboot.c:1013:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, services); data/wine-5.0/programs/wineboot/wineboot.c:1056:13: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf( buffer, len, text, name ); data/wine-5.0/programs/wineboot/wineboot.c:1097:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( app, rundll ); data/wine-5.0/programs/wineboot/wineboot.c:1103:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( buffer, app ); data/wine-5.0/programs/wineboot/wineboot.c:1104:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, setupapi ); data/wine-5.0/programs/wineboot/wineboot.c:1105:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, wow64 ? wowinstall : definstall ); data/wine-5.0/programs/wineboot/wineboot.c:1106:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, flags ); data/wine-5.0/programs/wineboot/wineboot.c:1107:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( buffer, inf_path ); data/wine-5.0/programs/winebrowser/main.c:358:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(dst, schema); data/wine-5.0/programs/winecfg/audio.c:253:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(g_drv_keyW, pv.u.pwszVal); data/wine-5.0/programs/winecfg/drive.c:346:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, drives[i].unixpath ); data/wine-5.0/programs/winecfg/drive.c:351:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ptr, drives[i].device ); data/wine-5.0/programs/winecfg/drivedetect.c:178:23: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = snprintf(NULL, 0, s, strerror(errno)); data/wine-5.0/programs/winecfg/drivedetect.c:180:17: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buffer, len, s, strerror(errno)); data/wine-5.0/programs/winecfg/driveui.c:616:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(pszPath, pszSelectedPath); data/wine-5.0/programs/winecfg/libraries.c:280:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "%s/%s/%s%s", dir_path, de->d_name, de->d_name, ext[i] ); data/wine-5.0/programs/winecfg/libraries.c:319:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dir, build_dir ); data/wine-5.0/programs/winecfg/libraries.c:340:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( item1, item2 ); data/wine-5.0/programs/winecfg/libraries.c:383:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(str, *p); data/wine-5.0/programs/winecfg/libraries.c:385:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(str, label); data/wine-5.0/programs/winecfg/theme.c:109:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (item.name, name); data/wine-5.0/programs/winecfg/theme.c:113:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (item.fancyName, fancyName); data/wine-5.0/programs/winecfg/theme.c:223:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (newEntry.themeFileName, pszThemeFileName); data/wine-5.0/programs/winecfg/theme.c:227:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW (newEntry.fancyName, pszThemeName); data/wine-5.0/programs/winecfg/theme.c:248:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themesPath, themesSubdir); data/wine-5.0/programs/winecfg/theme.c:669:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themeFilePath, themesSubdir); data/wine-5.0/programs/winecfg/theme.c:670:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themeFilePath, backslash); data/wine-5.0/programs/winecfg/theme.c:671:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themeFilePath, filetitle); data/wine-5.0/programs/winecfg/theme.c:677:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themeFilePath, backslash); data/wine-5.0/programs/winecfg/theme.c:678:7: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW (themeFilePath, PathFindFileNameW (file)); data/wine-5.0/programs/winecfg/theme.c:915:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szUnixPath, pszUnixPath); data/wine-5.0/programs/winecfg/theme.c:919:9: [4] (buffer) lstrcpyA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyA(szBackupPath, szUnixPath); data/wine-5.0/programs/winecfg/theme.c:920:9: [4] (buffer) lstrcatA: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatA(szBackupPath, ".winecfg"); data/wine-5.0/programs/winecfg/winecfg.c:163:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int set_config_key(HKEY root, const WCHAR *subkey, REGSAM access, const WCHAR *name, const void *value, DWORD type) data/wine-5.0/programs/winecfg/winecfg.c:176:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, NULL, &key, NULL ); data/wine-5.0/programs/winecfg/winecfg.c:700:25: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (section[0]) sprintf( result + strlen(result), "\\%s", section ); data/wine-5.0/programs/winecfg/winecfg.c:721:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( result, appdefaultsW ); data/wine-5.0/programs/winecfg/winecfg.c:722:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( result, current_app ); data/wine-5.0/programs/winecfg/winecfg.c:727:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( result + len, section ); data/wine-5.0/programs/winecfg/winecfg.h:130:12: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy(r, s); data/wine-5.0/programs/winecfg/winecfg.h:136:12: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return lstrcpyW(r, s); data/wine-5.0/programs/winecfg/x11drvdlg.c:187:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( new, width ); data/wine-5.0/programs/winecfg/x11drvdlg.c:337:13: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW(lf.lfFaceName, tahomaW); data/wine-5.0/programs/wineconsole/dialog.c:379:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(di->font[i].faceName, lf->lfFaceName); data/wine-5.0/programs/wineconsole/dialog.c:419:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(di->font[idx].faceName, lf->lfFaceName); data/wine-5.0/programs/wineconsole/user.c:419:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(defcfg.face_name, fc->data->curcfg.face_name); data/wine-5.0/programs/wineconsole/user.c:472:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(config->face_name, lf->lfFaceName); data/wine-5.0/programs/wineconsole/user.c:502:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(lf->lfFaceName, name); data/wine-5.0/programs/wineconsole/wineconsole.c:50:5: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(ansi, args); data/wine-5.0/programs/winedbg/be_arm.c:1715:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, condflags); data/wine-5.0/programs/winedbg/be_arm64.c:78:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, condflags); data/wine-5.0/programs/winedbg/be_i386.c:266:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, flags); data/wine-5.0/programs/winedbg/be_x86_64.c:94:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, flags); data/wine-5.0/programs/winedbg/break.c:265:90: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). dbg_curr_process->delayed_bp[dbg_curr_process->num_delayed_bp - 1].u.symbol.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(name) + 1), name); data/wine-5.0/programs/winedbg/crashdlg.c:101:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(output, programname); data/wine-5.0/programs/winedbg/crashdlg.c:169:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( path, default_name ); data/wine-5.0/programs/winedbg/crashdlg.c:173:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, txt_files); data/wine-5.0/programs/winedbg/crashdlg.c:177:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, all_files); data/wine-5.0/programs/winedbg/db_disasm64.c:36:85: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static int (*db_printf)(const char* format, ...) __attribute__((format (printf,1,2))); data/wine-5.0/programs/winedbg/debugger.h:463:79: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. extern int dbg_printf(const char* format, ...) __attribute__((format (printf,1,2))); data/wine-5.0/programs/winedbg/expr.c:789:31: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). rtn->un.intvar.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.intvar.name) + 1), exp->un.intvar.name); data/wine-5.0/programs/winedbg/expr.c:795:30: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). rtn->un.string.str = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.string.str) + 1), exp->un.string.str); data/wine-5.0/programs/winedbg/expr.c:798:31: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). rtn->un.symbol.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.symbol.name) + 1), exp->un.symbol.name); data/wine-5.0/programs/winedbg/expr.c:805:42: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). rtn->un.structure.element_name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.structure.element_name) + 1), exp->un.structure.element_name); data/wine-5.0/programs/winedbg/expr.c:812:33: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). rtn->un.call.funcname = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.call.funcname) + 1), exp->un.call.funcname); data/wine-5.0/programs/winedbg/gdbproxy.c:1872:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf, tmp_path); data/wine-5.0/programs/winedbg/gdbproxy.c:1894:9: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execlp("xterm", "xterm", "-e", gdb_path, "-x", buf, NULL); data/wine-5.0/programs/winedbg/gdbproxy.c:1896:9: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execlp(gdb_path, gdb_path, "-x", buf, NULL); data/wine-5.0/programs/winedbg/info.c:201:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(im->modules[im->num_used].name, mod_name, dst_len - 1); data/wine-5.0/programs/winedbg/memory.c:264:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(buffer, addr, size); data/wine-5.0/programs/winedbg/memory.c:698:25: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (buffer) lstrcpynA(buffer, div->name, len); data/wine-5.0/programs/winedbg/source.c:66:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&new[pos], path); data/wine-5.0/programs/winedbg/source.c:72:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(new, path); data/wine-5.0/programs/winedbg/source.c:123:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, srcfile); data/wine-5.0/programs/winedbg/source.c:152:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ol->path = (char*)(ol + 1), name); data/wine-5.0/programs/winedbg/source.c:154:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ol->real_path = ol->path + nlen, realpath); data/wine-5.0/programs/winedbg/source.c:219:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&tmppath[len], basename); data/wine-5.0/programs/winedbg/source.c:351:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dbg_curr_process->source_current_file, sourcefile); data/wine-5.0/programs/winedbg/symbol.c:385:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buffer, name); data/wine-5.0/programs/winedbg/symbol.c:391:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[2], name); data/wine-5.0/programs/winedbg/symbol.c:410:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[offset + 2], ptr + 1); data/wine-5.0/programs/winedbg/symbol.c:417:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[3], name); data/wine-5.0/programs/winedbg/symbol.c:554:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (sscanf(buffer, "%lx %c %s", &addr, &type, name) == 3) data/wine-5.0/programs/winedbg/symbol.c:653:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[2], name); data/wine-5.0/programs/winedbg/symbol.c:668:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[3], name); data/wine-5.0/programs/winedbg/symbol.c:807:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&buffer[2], str); data/wine-5.0/programs/winedbg/tgt_active.c:200:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). last_name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(si->Name) + 1), si->Name); data/wine-5.0/programs/winedbg/tgt_active.c:201:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). last_file = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(il.FileName) + 1), il.FileName); data/wine-5.0/programs/winedbg/tgt_active.c:849:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cmd_line, argv[i]); data/wine-5.0/programs/winedbg/tgt_active.c:973:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else strcpy(tmp + 10, file); data/wine-5.0/programs/winedbg/tgt_minidump.c:221:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(exec_name, default_exec_name); data/wine-5.0/programs/winedbg/tgt_minidump.c:268:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tmp, str); data/wine-5.0/programs/winedbg/types.c:788:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(X(WCHAR*), name); data/wine-5.0/programs/winedbg/winedbg.c:160:11: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. len = vsnprintf(buf, sizeof(buf), format, valist); data/wine-5.0/programs/winedbg/winedbg.c:353:33: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (tmp) p->imageName = lstrcpyW(tmp, imageName); data/wine-5.0/programs/winedevice/device.c:72:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( str, servicesW ); data/wine-5.0/programs/winedevice/device.c:73:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( str, driver_name ); data/wine-5.0/programs/winefile/winefile.c:167:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( ret, p ); data/wine-5.0/programs/winefile/winefile.c:360:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, entry->data.cFileName); data/wine-5.0/programs/winefile/winefile.c:1019:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(d, entry->data.cFileName); data/wine-5.0/programs/winefile/winefile.c:1050:2: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(drv, sBackslash); data/wine-5.0/programs/winefile/winefile.c:1053:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(root->path, drv); data/wine-5.0/programs/winefile/winefile.c:1112:3: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(child->path, npath, pathlen + 1); data/wine-5.0/programs/winefile/winefile.c:1117:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(child->filter_pattern, sAsterics); data/wine-5.0/programs/winefile/winefile.c:1122:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dir_path, drv); data/wine-5.0/programs/winefile/winefile.c:1123:2: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(dir_path, dir); data/wine-5.0/programs/winefile/winefile.c:1556:41: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, ARRAY_SIZE(buffer), sFmt, data/wine-5.0/programs/winefile/winefile.c:2307:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(b1, str); data/wine-5.0/programs/winefile/winefile.c:2308:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(b2, pattern); data/wine-5.0/programs/winefile/winefile.c:2409:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, sQMarks); data/wine-5.0/programs/winefile/winefile.c:2468:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). {err: lstrcpyW(buffer,sQMarks); return;} data/wine-5.0/programs/winefile/winefile.c:2853:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, s11Tabs); data/wine-5.0/programs/winefile/winefile.c:3111:2: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(child->path, path); data/wine-5.0/programs/winefile/winefile.c:3407:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(target+len, path); data/wine-5.0/programs/winefile/winefile.c:3409:3: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(target, path); data/wine-5.0/programs/winefile/winefile.c:3714:6: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(dlg.pattern, child->filter_pattern); data/wine-5.0/programs/winefile/winefile.c:3718:7: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(child->filter_pattern, dlg.pattern); data/wine-5.0/programs/winefile/winefile.c:4054:4: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fullname,name); data/wine-5.0/programs/winefile/winefile.c:4055:4: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fullname,ext); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:229:68: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ret = HeapAlloc( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:246:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf(buffer, size, format, args); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1944:17: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szArgs, s, argsSize); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2797:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(start_path, startW); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2932:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szArgs + 1, szPath); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2936:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szPath, startW); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2943:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(szWMClass, p); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2954:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(szArgs, link, MAX_PATH); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2956:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(szPath, startW); data/wine-5.0/programs/winemine/main.c:115:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( p_board->best_name[i], data, ARRAY_SIZE(p_board->best_name[i])); data/wine-5.0/programs/winemine/main.c:182:9: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW( data, p_board->best_name[i], ARRAY_SIZE(data)); data/wine-5.0/programs/winepath/winepath.c:68:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(helpmsg); data/wine-5.0/programs/winepath/winepath.c:209:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(ntpath, argv[i]); data/wine-5.0/programs/winetest/main.c:91:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( dllname, module ); data/wine-5.0/programs/winetest/main.c:503:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (path + dirlen, lp); data/wine-5.0/programs/winetest/main.c:523:15: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. len = sprintf(buffer, "programs/%s", test) - 4; data/wine-5.0/programs/winetest/main.c:526:16: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. else len = sprintf(buffer, "dlls/%s", test); data/wine-5.0/programs/winetest/main.c:528:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buffer + len, "/tests/%s.c", subtest); data/wine-5.0/programs/winetest/main.c:598:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(newpath, curpath); data/wine-5.0/programs/winetest/main.c:600:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(newpath, path); data/wine-5.0/programs/winetest/main.c:862:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( filename, dllname ); data/wine-5.0/programs/winetest/main.c:879:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, dllpath); data/wine-5.0/programs/winetest/main.c:900:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dllname, lpszName); data/wine-5.0/programs/winetest/main.c:929:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, dllname); data/wine-5.0/programs/winetest/main.c:1050:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tempdir, tmppath ); data/wine-5.0/programs/winetest/main.c:1063:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tempdir, outdir); data/wine-5.0/programs/winetest/main.c:1183:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, lpszName); data/wine-5.0/programs/winetest/util.c:69:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf (p, size, fmt, ap); data/wine-5.0/programs/winevdm/winevdm.c:123:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( path, envpath ); data/wine-5.0/programs/winevdm/winevdm.c:133:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, dir ); data/wine-5.0/programs/winevdm/winevdm.c:186:18: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. p += sprintf( p, "mount %c %s/dosdevices/%c:\n", 'a' + i, config_dir, 'a' + i ); data/wine-5.0/programs/winevdm/winevdm.c:190:10: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. p += sprintf( p, "%s %s\n", app, args ); data/wine-5.0/programs/winevdm/winevdm.c:286:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( progname, pifheader.program, sizeof(pifheader.program)+1); data/wine-5.0/programs/winevdm/winevdm.c:287:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( title, pifheader.windowtitle, sizeof(pifheader.windowtitle)+1); data/wine-5.0/programs/winevdm/winevdm.c:289:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( optparams, pif386rec.optparams, sizeof( pif386rec.optparams)+1); data/wine-5.0/programs/winevdm/winevdm.c:291:9: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( optparams, pifheader.optparams, sizeof(pifheader.optparams)+1); data/wine-5.0/programs/winevdm/winevdm.c:292:5: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA( startdir, pifheader.startdir, sizeof(pifheader.startdir)+1); data/wine-5.0/programs/winevdm/winevdm.c:326:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%s\nInvalid file format. Check your pif file.", data/wine-5.0/programs/winevdm/winevdm.c:338:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%s\nInvalid startup directory. Check your pif file.", data/wine-5.0/programs/winevdm/winevdm.c:344:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buf, "%s\nInvalid program file name. Check your pif file.", data/wine-5.0/programs/winevdm/winevdm.c:463:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p,*arg); data/wine-5.0/programs/winhelp.exe16/winhelp.c:39:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, cmdline ); data/wine-5.0/programs/winhlp32/hlpfile.c:1418:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "%s\\tx%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1492:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "\\f%d\\cf%d\\fs%d%s%s%s%s", data/wine-5.0/programs/winhlp32/hlpfile.c:1748:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "{\\rtf1\\%s\\deff0", ck); data/wine-5.0/programs/winhlp32/hlpfile.c:1771:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "{\\f%d\\f%s\\fprq%d\\fcharset%d %s;}", data/wine-5.0/programs/winhlp32/hlpfile.c:2053:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hlpfile->lpszTitle, str); data/wine-5.0/programs/winhlp32/hlpfile.c:2067:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hlpfile->lpszTitle, str); data/wine-5.0/programs/winhlp32/hlpfile.c:2075:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hlpfile->lpszCopyright, str); data/wine-5.0/programs/winhlp32/hlpfile.c:2089:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, str); data/wine-5.0/programs/winhlp32/hlpfile.c:2120:37: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (flags & 0x0001) strcpy(wi->type, &str[2]); data/wine-5.0/programs/winhlp32/hlpfile.c:2122:37: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (flags & 0x0002) strcpy(wi->name, &str[12]); data/wine-5.0/programs/winhlp32/hlpfile.c:2124:37: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (flags & 0x0004) strcpy(wi->caption, &str[21]); data/wine-5.0/programs/winhlp32/hlpfile.c:2125:22: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). else lstrcpynA(wi->caption, hlpfile->lpszTitle, sizeof(wi->caption)); data/wine-5.0/programs/winhlp32/hlpfile.c:2781:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hlpfile->lpszPath, lpszPath); data/wine-5.0/programs/winhlp32/macro.c:55:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dst, str); data/wine-5.0/programs/winhlp32/macro.c:92:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, id); data/wine-5.0/programs/winhlp32/macro.c:96:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, name); data/wine-5.0/programs/winhlp32/macro.c:100:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, macro); data/wine-5.0/programs/winhlp32/macro.c:251:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, id); data/wine-5.0/programs/winhlp32/macro.c:255:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, (*b)->lpszName); data/wine-5.0/programs/winhlp32/macro.c:259:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, macro); data/wine-5.0/programs/winhlp32/macro.c:618:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tmp, lpszPathWindow); data/wine-5.0/programs/winhlp32/macro.c:847:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(page->file->help_on_file, str); data/wine-5.0/programs/winhlp32/winhelp.c:224:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(szAddPath, Globals.active_win->page->file->lpszPath); data/wine-5.0/programs/winhlp32/winhelp.c:1181:17: [4] (buffer) lstrcpynA: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynA(&buffer[len], Globals.history.set[i].page->lpszTitle, sizeof(buffer) - len); data/wine-5.0/programs/winhlp32/winhelp.c:1582:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, Globals.active_win->info->caption); data/wine-5.0/programs/wmic/main.c:96:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( dst, src ); data/wine-5.0/programs/wmic/main.c:131:11: [4] (format) vswprintf: Potential format string problem (CWE-134). Make format string constant. len = vswprintf( buffer, ARRAY_SIZE(buffer), msg, va_args ); data/wine-5.0/programs/wmic/main.c:156:11: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. len = swprintf( buffer, ARRAY_SIZE(buffer), fmtW, column_width, prop ); data/wine-5.0/programs/wmic/main.c:208:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( query, select_allW ); data/wine-5.0/programs/wmic/main.c:209:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW( query, class ); data/wine-5.0/programs/wordpad/print.c:69:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_prn); data/wine-5.0/programs/wordpad/print.c:73:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_all); data/wine-5.0/programs/wordpad/registry.c:61:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(key, wszProgramKey); data/wine-5.0/programs/wordpad/registry.c:62:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(key, backslash); data/wine-5.0/programs/wordpad/registry.c:63:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(key, subKey); data/wine-5.0/programs/wordpad/registry.c:143:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, file); data/wine-5.0/programs/wordpad/registry.c:144:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, dots); data/wine-5.0/programs/wordpad/registry.c:145:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, pos2); data/wine-5.0/programs/wordpad/registry.c:208:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, pos_basename); data/wine-5.0/programs/wordpad/registry.c:210:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(out, file); data/wine-5.0/programs/wordpad/registry.c:251:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(buffer, pFile[i]); data/wine-5.0/programs/wordpad/wordpad.c:110:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_rtf); data/wine-5.0/programs/wordpad/wordpad.c:113:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_txt); data/wine-5.0/programs/wordpad/wordpad.c:116:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_txt); data/wine-5.0/programs/wordpad/wordpad.c:119:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(p, files_all); data/wine-5.0/programs/wordpad/wordpad.c:496:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fmt.szFaceName, wszFaceName); data/wine-5.0/programs/wordpad/wordpad.c:524:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(fmt.szFaceName, font); data/wine-5.0/programs/wordpad/wordpad.c:559:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW( cbItem.pszText, fontName ); data/wine-5.0/programs/wordpad/wordpad.c:587:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(cf.lpLogFont->lfFaceName, fmt.szFaceName); data/wine-5.0/programs/wordpad/wordpad.c:820:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszFileName, szOpenFileName); data/wine-5.0/programs/wordpad/wordpad.c:889:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(wszFileName, wszSaveFileName); data/wine-5.0/programs/wordpad/wordpad.c:1236:13: [4] (buffer) lstrcpynW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpynW(custom_data->findBuffer, pFr->lpstrFindWhat, data/wine-5.0/programs/wordpad/wordpad.c:1376:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, space); data/wine-5.0/programs/wordpad/wordpad.c:1377:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(buffer, units_cmW); data/wine-5.0/programs/wordpad/wordpad.c:1385:5: [4] (format) swprintf: Potential format string problem (CWE-134). Make format string constant. swprintf(buffer, MAX_STRING_LEN, fmt, converted, units_cmW); data/wine-5.0/programs/write/write.c:38:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(path, SZ_WORDPAD); data/wine-5.0/programs/wscript/main.c:263:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(fileid, script_engineW); data/wine-5.0/programs/wscript/tests/run.c:351:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(command, "wscript.exe %s arg1 2 ar3", file_name); data/wine-5.0/programs/wscript/tests/run.c:388:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_name, "test%s", ext); data/wine-5.0/programs/wusa/main.c:138:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(result, path); data/wine-5.0/programs/wusa/main.c:139:60: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). if (result[0] && result[lstrlenW(result) - 1] != '\\') lstrcatW(result, L"\\"); data/wine-5.0/programs/wusa/main.c:140:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(result, filename); data/wine-5.0/programs/wusa/wusa.h:133:14: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (ret) lstrcpyW(ret, str); data/wine-5.0/programs/xcopy/tests/xcopy.c:33:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(wcmd, cmd); data/wine-5.0/programs/xcopy/xcopy.c:88:8: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(msg, failedMsg); data/wine-5.0/programs/xcopy/xcopy.c:209:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(new_path,path); data/wine-5.0/programs/xcopy/xcopy.c:283:11: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(thisEntry->name, buffer); data/wine-5.0/programs/xcopy/xcopy.c:365:5: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(inputpath, srcstem); data/wine-5.0/programs/xcopy/xcopy.c:366:5: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inputpath, srcspec); data/wine-5.0/programs/xcopy/xcopy.c:383:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(copyFrom, srcstem); data/wine-5.0/programs/xcopy/xcopy.c:385:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(copyFrom, finddata->cAlternateFileName); data/wine-5.0/programs/xcopy/xcopy.c:387:15: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(copyFrom, finddata->cFileName); data/wine-5.0/programs/xcopy/xcopy.c:390:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(copyTo, deststem); data/wine-5.0/programs/xcopy/xcopy.c:393:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(copyTo, finddata->cAlternateFileName); data/wine-5.0/programs/xcopy/xcopy.c:395:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(copyTo, finddata->cFileName); data/wine-5.0/programs/xcopy/xcopy.c:398:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(copyTo, destspec); data/wine-5.0/programs/xcopy/xcopy.c:460:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(copyFromUpper, copyFrom); data/wine-5.0/programs/xcopy/xcopy.c:485:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(yesChar, XCOPY_LoadMessage(STRING_YES_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:486:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(noChar, XCOPY_LoadMessage(STRING_NO_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:511:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(yesChar, XCOPY_LoadMessage(STRING_YES_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:512:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(allChar, XCOPY_LoadMessage(STRING_ALL_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:513:17: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(noChar, XCOPY_LoadMessage(STRING_NO_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:609:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(inputpath, srcstem); data/wine-5.0/programs/xcopy/xcopy.c:610:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inputpath, wchr_star); data/wine-5.0/programs/xcopy/xcopy.c:625:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(inputpath, srcstem); data/wine-5.0/programs/xcopy/xcopy.c:626:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inputpath, finddata->cFileName); data/wine-5.0/programs/xcopy/xcopy.c:627:17: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(inputpath, wchr_slash); data/wine-5.0/programs/xcopy/xcopy.c:629:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(outputpath, deststem); data/wine-5.0/programs/xcopy/xcopy.c:631:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(outputpath, finddata->cFileName); data/wine-5.0/programs/xcopy/xcopy.c:632:21: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(outputpath, wchr_slash); data/wine-5.0/programs/xcopy/xcopy.c:746:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(suppliedsource, word); data/wine-5.0/programs/xcopy/xcopy.c:748:17: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(supplieddestination, word); data/wine-5.0/programs/xcopy/xcopy.c:893:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(supplieddestination, wchr_dot); data/wine-5.0/programs/xcopy/xcopy.c:926:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(suppliedsource, actualsource); data/wine-5.0/programs/xcopy/xcopy.c:961:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stem, suppliedsource); data/wine-5.0/programs/xcopy/xcopy.c:964:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(stem, wchr_slash); data/wine-5.0/programs/xcopy/xcopy.c:966:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(spec, wchr_star); data/wine-5.0/programs/xcopy/xcopy.c:980:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stem, suppliedsource); data/wine-5.0/programs/xcopy/xcopy.c:982:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(spec, (lastDir+1)); data/wine-5.0/programs/xcopy/xcopy.c:984:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stem, suppliedsource); data/wine-5.0/programs/xcopy/xcopy.c:986:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(spec, suppliedsource+2); data/wine-5.0/programs/xcopy/xcopy.c:993:13: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(spec, suppliedsource); data/wine-5.0/programs/xcopy/xcopy.c:1039:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(fileChar, XCOPY_LoadMessage(STRING_FILE_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:1040:13: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(dirChar, XCOPY_LoadMessage(STRING_DIR_CHAR)); data/wine-5.0/programs/xcopy/xcopy.c:1062:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stem, actualdestination); data/wine-5.0/programs/xcopy/xcopy.c:1067:13: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(stem, wchr_slash); data/wine-5.0/programs/xcopy/xcopy.c:1076:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(stem, drive); data/wine-5.0/programs/xcopy/xcopy.c:1077:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(stem, dir); data/wine-5.0/programs/xcopy/xcopy.c:1078:9: [4] (buffer) lstrcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). lstrcpyW(spec, fname); data/wine-5.0/programs/xcopy/xcopy.c:1079:9: [4] (buffer) lstrcatW: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). lstrcatW(spec, ext); data/wine-5.0/server/change.c:462:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct dir *get_dir_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/change.c:464:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct dir *)get_handle_obj( process, handle, access, &dir_ops ); data/wine-5.0/server/change.c:759:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, inode->name ); data/wine-5.0/server/change.c:777:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( path, name ); data/wine-5.0/server/change.c:1133:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct object *create_dir_obj( struct fd *fd, unsigned int access, mode_t mode ) data/wine-5.0/server/completion.c:57:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int completion_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/completion.c:125:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int completion_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/completion.c:127:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYNCHRONIZE | IO_COMPLETION_QUERY_STATE; data/wine-5.0/server/completion.c:127:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYNCHRONIZE | IO_COMPLETION_QUERY_STATE; data/wine-5.0/server/completion.c:128:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/completion.c:128:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/completion.c:129:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/completion.c:129:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/completion.c:130:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | IO_COMPLETION_ALL_ACCESS; data/wine-5.0/server/completion.c:130:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | IO_COMPLETION_ALL_ACCESS; data/wine-5.0/server/completion.c:131:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/completion.c:152:99: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct completion *get_completion_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/completion.c:154:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct completion *) get_handle_obj( process, handle, access, &completion_ops ); data/wine-5.0/server/completion.c:188:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, completion, req->access, objattr->attributes ); data/wine-5.0/server/completion.c:200:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/console.c:546:79: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct console_input* console_input_get( obj_handle_t handle, unsigned access ) data/wine-5.0/server/console.c:552:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, &console_input_ops ); data/wine-5.0/server/console.c:1503:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((in = alloc_handle( current->process, console, req->access, req->attributes ))) data/wine-5.0/server/console.c:1571:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, obj, req->access, req->attributes ); data/wine-5.0/server/console.c:1736:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle_out = alloc_handle( current->process, screen_buffer, req->access, req->attributes ); data/wine-5.0/server/device.c:141:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/device.c:433:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/device.c:449:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = file->obj.ops->map_access( &file->obj, access ); data/wine-5.0/server/device.c:451:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. &mode, access, sharing, options ); data/wine-5.0/server/device.c:471:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. params.create.access = access; data/wine-5.0/server/device.c:558:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. irp->params.create.access, 0 ); data/wine-5.0/server/device.c:854:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, manager, req->access, req->attributes ); data/wine-5.0/server/device.c:1101:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, ref->object, req->access, 0 ); data/wine-5.0/server/directory.c:453:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, dir, req->access, objattr->attributes ); data/wine-5.0/server/directory.c:465:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/event.c:51:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int event_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/event.c:52:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int event_signal( struct object *obj, unsigned int access); data/wine-5.0/server/event.c:87:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int keyed_event_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/event.c:132:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct event *get_event_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/event.c:134:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct event *)get_handle_obj( process, handle, access, &event_ops ); data/wine-5.0/server/event.c:187:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int event_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/event.c:189:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | EVENT_QUERY_STATE; data/wine-5.0/server/event.c:189:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | EVENT_QUERY_STATE; data/wine-5.0/server/event.c:190:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | EVENT_MODIFY_STATE; data/wine-5.0/server/event.c:190:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | EVENT_MODIFY_STATE; data/wine-5.0/server/event.c:191:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/event.c:191:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/event.c:192:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | EVENT_QUERY_STATE | EVENT_MODIFY_STATE; data/wine-5.0/server/event.c:192:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | EVENT_QUERY_STATE | EVENT_MODIFY_STATE; data/wine-5.0/server/event.c:193:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/event.c:196:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int event_signal( struct object *obj, unsigned int access ) data/wine-5.0/server/event.c:201:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & EVENT_MODIFY_STATE)) data/wine-5.0/server/event.c:231:101: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct keyed_event *get_keyed_event_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/event.c:233:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct keyed_event *)get_handle_obj( process, handle, access, &keyed_event_ops ); data/wine-5.0/server/event.c:276:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int keyed_event_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/event.c:278:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | KEYEDEVENT_WAIT; data/wine-5.0/server/event.c:278:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | KEYEDEVENT_WAIT; data/wine-5.0/server/event.c:279:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | KEYEDEVENT_WAKE; data/wine-5.0/server/event.c:279:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | KEYEDEVENT_WAKE; data/wine-5.0/server/event.c:280:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/event.c:280:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/event.c:281:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= KEYEDEVENT_ALL_ACCESS; data/wine-5.0/server/event.c:281:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= KEYEDEVENT_ALL_ACCESS; data/wine-5.0/server/event.c:282:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/event.c:300:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, event, req->access, objattr->attributes ); data/wine-5.0/server/event.c:303:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/event.c:315:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/event.c:371:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, event, req->access, objattr->attributes ); data/wine-5.0/server/event.c:374:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/event.c:385:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/fd.c:182:26: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; /* file access (FILE_READ_DATA etc.) */ data/wine-5.0/server/fd.c:1503:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int check_sharing( struct fd *fd, unsigned int access, unsigned int sharing, data/wine-5.0/server/fd.c:1515:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. fd->access = access; data/wine-5.0/server/fd.c:1524:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (fd_ptr->access & all_access) existing_sharing &= fd_ptr->sharing; data/wine-5.0/server/fd.c:1525:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. existing_access |= fd_ptr->access; data/wine-5.0/server/fd.c:1529:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((access & read_access) && !(existing_sharing & FILE_SHARE_READ)) || data/wine-5.0/server/fd.c:1530:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ((access & write_access) && !(existing_sharing & FILE_SHARE_WRITE)) || data/wine-5.0/server/fd.c:1531:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ((access & DELETE) && !(existing_sharing & FILE_SHARE_DELETE))) data/wine-5.0/server/fd.c:1534:53: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ((existing_access & FILE_MAPPING_IMAGE) && (access & FILE_WRITE_DATA))) data/wine-5.0/server/fd.c:1540:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & all_access)) data/wine-5.0/server/fd.c:1659:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct fd *dup_fd_object( struct fd *orig, unsigned int access, unsigned int sharing, unsigned int options ) data/wine-5.0/server/fd.c:1672:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( fd->unix_name, orig->unix_name ); data/wine-5.0/server/fd.c:1691:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((err = check_sharing( fd, access, sharing, 0, options ))) data/wine-5.0/server/fd.c:1710:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct fd *get_fd_object_for_mapping( struct fd *fd, unsigned int access, unsigned int sharing ) data/wine-5.0/server/fd.c:1717:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (fd_ptr->access == access && fd_ptr->sharing == sharing) data/wine-5.0/server/fd.c:1743:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret, root->unix_name ); data/wine-5.0/server/fd.c:1745:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( ret, name ); data/wine-5.0/server/fd.c:1751:94: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct fd *open_fd( struct fd *root, const char *name, int flags, mode_t *mode, unsigned int access, data/wine-5.0/server/fd.c:1760:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((options & FILE_DELETE_ON_CLOSE) && !(access & DELETE)) || data/wine-5.0/server/fd.c:1801:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((access & FILE_UNIX_WRITE_ACCESS) && !(options & FILE_DIRECTORY_FILE)) data/wine-5.0/server/fd.c:1803:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_UNIX_READ_ACCESS) rw_mode = O_RDWR; data/wine-5.0/server/fd.c:1815:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((access & FILE_UNIX_WRITE_ACCESS) || (flags & O_CREAT)) data/wine-5.0/server/fd.c:1862:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((err = check_sharing( fd, access, sharing, flags, options ))) data/wine-5.0/server/fd.c:2012:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int default_fd_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/fd.c:2014:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/fd.c:2014:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/fd.c:2015:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/fd.c:2015:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/fd.c:2016:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/server/fd.c:2016:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/server/fd.c:2017:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/server/fd.c:2017:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/server/fd.c:2018:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/fd.c:2271:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access ) data/wine-5.0/server/fd.c:2276:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((obj = get_handle_obj( process, handle, access, NULL ))) data/wine-5.0/server/fd.c:2490:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((result = obj->ops->open_file( obj, req->access, req->sharing, req->options ))) data/wine-5.0/server/fd.c:2492:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, result, req->access, req->attributes ); data/wine-5.0/server/fd.c:2575:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct fd *fd = get_handle_fd_obj( current->process, req->async.handle, access ); data/wine-5.0/server/fd.c:2592:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/server/fd.c:2609:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((fd = get_handle_fd_obj( current->process, req->async.handle, access ))) data/wine-5.0/server/file.c:59:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; /* file access (FILE_READ_DATA etc.) */ data/wine-5.0/server/file.c:65:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int generic_file_map_access( unsigned int access ); data/wine-5.0/server/file.c:72:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *file_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/file.c:121:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct file *create_file_for_fd( int fd, unsigned int access, unsigned int sharing ) data/wine-5.0/server/file.c:140:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file->access = default_fd_map_access( &file->obj, access ); data/wine-5.0/server/file.c:153:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct file *create_file_for_fd_obj( struct fd *fd, unsigned int access, unsigned int sharing ) data/wine-5.0/server/file.c:167:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file->access = default_fd_map_access( &file->obj, access ); data/wine-5.0/server/file.c:169:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(file->fd = dup_fd_object( fd, access, sharing, FILE_SYNCHRONOUS_IO_NONALERT ))) data/wine-5.0/server/file.c:179:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *create_file_obj( struct fd *fd, unsigned int access, mode_t mode ) data/wine-5.0/server/file.c:184:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. file->access = access; data/wine-5.0/server/file.c:195:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int sharing, int create, data/wine-5.0/server/file.c:218:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= FILE_WRITE_ATTRIBUTES; data/wine-5.0/server/file.c:223:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= FILE_WRITE_ATTRIBUTES; break; data/wine-5.0/server/file.c:250:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = generic_file_map_access( access ); data/wine-5.0/server/file.c:253:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. fd = open_fd( root, name, flags | O_NONBLOCK | O_LARGEFILE, &mode, access, sharing, options ); data/wine-5.0/server/file.c:257:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. obj = create_dir_obj( fd, access, mode ); data/wine-5.0/server/file.c:261:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. obj = create_file_obj( fd, access, mode ); data/wine-5.0/server/file.c:289:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (file->access & FILE_UNIX_READ_ACCESS) events |= POLLIN; data/wine-5.0/server/file.c:290:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (file->access & FILE_UNIX_WRITE_ACCESS) events |= POLLOUT; data/wine-5.0/server/file.c:321:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int generic_file_map_access( unsigned int access ) data/wine-5.0/server/file.c:323:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/file.c:323:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/file.c:324:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/file.c:324:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/file.c:325:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/server/file.c:325:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= FILE_GENERIC_EXECUTE; data/wine-5.0/server/file.c:326:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/server/file.c:326:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_ALL_ACCESS; data/wine-5.0/server/file.c:327:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/file.c:477:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static mode_t file_access_to_mode( unsigned int access ) data/wine-5.0/server/file.c:481:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = generic_file_map_access( access ); data/wine-5.0/server/file.c:482:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_READ_DATA) mode |= 4; data/wine-5.0/server/file.c:483:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & (FILE_WRITE_DATA|FILE_APPEND_DATA)) mode |= 2; data/wine-5.0/server/file.c:484:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_EXECUTE) mode |= 1; data/wine-5.0/server/file.c:620:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *file_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/file.c:631:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. new_file = create_file( NULL, unix_name, strlen(unix_name), access, data/wine-5.0/server/file.c:692:87: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct file *get_file_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/file.c:694:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct file *)get_handle_obj( process, handle, access, &file_ops ); data/wine-5.0/server/file.c:735:60: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((file = create_file( root_fd, name, name_len, req->access, req->sharing, data/wine-5.0/server/file.c:738:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, file, req->access, objattr->attributes ); data/wine-5.0/server/file.c:756:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((file = create_file_for_fd( fd, req->access, FILE_SHARE_READ | FILE_SHARE_WRITE ))) data/wine-5.0/server/file.c:758:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, file, req->access, req->attributes ); data/wine-5.0/server/file.h:82:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int sharing, unsigned int options ); data/wine-5.0/server/file.h:85:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct fd *dup_fd_object( struct fd *orig, unsigned int access, unsigned int sharing, data/wine-5.0/server/file.h:87:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct fd *get_fd_object_for_mapping( struct fd *fd, unsigned int access, unsigned int sharing ); data/wine-5.0/server/file.h:106:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern unsigned int default_fd_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/file.h:144:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access ); data/wine-5.0/server/file.h:146:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct file *create_file_for_fd( int fd, unsigned int access, unsigned int sharing ); data/wine-5.0/server/file.h:147:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct file *create_file_for_fd_obj( struct fd *fd, unsigned int access, unsigned int sharing ); data/wine-5.0/server/file.h:156:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access ); data/wine-5.0/server/file.h:158:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int sharing ); data/wine-5.0/server/file.h:173:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct object *create_dir_obj( struct fd *fd, unsigned int access, mode_t mode ); data/wine-5.0/server/file.h:174:92: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct dir *get_dir_obj( struct process *process, obj_handle_t handle, unsigned int access ); data/wine-5.0/server/file.h:178:106: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct completion *get_completion_obj( struct process *process, obj_handle_t handle, unsigned int access ); data/wine-5.0/server/handle.c:45:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; /* access rights */ data/wine-5.0/server/handle.c:158:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. index_to_handle(i), entry->ptr, entry->access ); data/wine-5.0/server/handle.c:236:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static obj_handle_t alloc_entry( struct handle_table *table, void *obj, unsigned int access ) data/wine-5.0/server/handle.c:251:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. entry->access = access; data/wine-5.0/server/handle.c:257:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attr ) data/wine-5.0/server/handle.c:261:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. assert( !(access & RESERVED_ALL) ); data/wine-5.0/server/handle.c:262:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (attr & OBJ_INHERIT) access |= RESERVED_INHERIT; data/wine-5.0/server/handle.c:268:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return alloc_entry( process->handles, obj, access ); data/wine-5.0/server/handle.c:273:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. obj_handle_t alloc_handle_no_access_check( struct process *process, void *ptr, unsigned int access, unsigned int attr ) data/wine-5.0/server/handle.c:276:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & MAXIMUM_ALLOWED) access = GENERIC_ALL; data/wine-5.0/server/handle.c:277:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = obj->ops->map_access( obj, access ) & ~RESERVED_ALL; data/wine-5.0/server/handle.c:278:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return alloc_handle_entry( process, ptr, access, attr ); data/wine-5.0/server/handle.c:284:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. obj_handle_t alloc_handle( struct process *process, void *ptr, unsigned int access, unsigned int attr ) data/wine-5.0/server/handle.c:287:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = obj->ops->map_access( obj, access ) & ~RESERVED_ALL; data/wine-5.0/server/handle.c:288:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access && !check_object_access( obj, &access )) return 0; data/wine-5.0/server/handle.c:288:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access && !check_object_access( obj, &access )) return 0; data/wine-5.0/server/handle.c:289:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return alloc_handle_entry( process, ptr, access, attr ); data/wine-5.0/server/handle.c:294:82: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static obj_handle_t alloc_global_handle_no_access_check( void *obj, unsigned int access ) data/wine-5.0/server/handle.c:302:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return handle_local_to_global( alloc_entry( global_table, obj, access )); data/wine-5.0/server/handle.c:308:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static obj_handle_t alloc_global_handle( void *obj, unsigned int access ) data/wine-5.0/server/handle.c:310:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access && !check_object_access( obj, &access )) return 0; data/wine-5.0/server/handle.c:310:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access && !check_object_access( obj, &access )) return 0; data/wine-5.0/server/handle.c:311:54: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return alloc_global_handle_no_access_check( obj, access ); data/wine-5.0/server/handle.c:377:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (ptr->access & RESERVED_INHERIT) grab_object_for_handle( ptr->ptr ); data/wine-5.0/server/handle.c:394:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (entry->access & RESERVED_CLOSE_PROTECT) return STATUS_HANDLE_NOT_CLOSABLE; data/wine-5.0/server/handle.c:428:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, const struct object_ops *ops ) data/wine-5.0/server/handle.c:446:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((entry->access & access) != access) data/wine-5.0/server/handle.c:446:30: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((entry->access & access) != access) data/wine-5.0/server/handle.c:446:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((entry->access & access) != access) data/wine-5.0/server/handle.c:467:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return entry->access & ~RESERVED_ALL; data/wine-5.0/server/handle.c:484:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (ptr->access & RESERVED_INHERIT) return index_to_handle(i); data/wine-5.0/server/handle.c:528:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. old_access = entry->access; data/wine-5.0/server/handle.c:531:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. entry->access = (entry->access & ~mask) | flags; data/wine-5.0/server/handle.c:537:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attr, unsigned int options ) data/wine-5.0/server/handle.c:546:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. src_access = entry->access; data/wine-5.0/server/handle.c:554:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access = obj->ops->map_access( obj, access ) & ~RESERVED_ALL; data/wine-5.0/server/handle.c:557:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & ~src_access) data/wine-5.0/server/handle.c:560:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = alloc_global_handle( obj, access ); data/wine-5.0/server/handle.c:562:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = alloc_handle( dst, obj, access, attr ); data/wine-5.0/server/handle.c:567:61: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = alloc_global_handle_no_access_check( obj, access ); data/wine-5.0/server/handle.c:569:36: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. entry && !(entry->access & RESERVED_CLOSE_PROTECT)) data/wine-5.0/server/handle.c:571:37: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (attr & OBJ_INHERIT) access |= RESERVED_INHERIT; data/wine-5.0/server/handle.c:572:29: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. entry->access = access; data/wine-5.0/server/handle.c:576:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = alloc_handle_entry( dst, obj, access, attr ); data/wine-5.0/server/handle.c:584:86: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. obj_handle_t open_object( struct process *process, obj_handle_t parent, unsigned int access, data/wine-5.0/server/handle.c:608:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle = alloc_handle( process, obj, access, attributes ); data/wine-5.0/server/handle.c:646:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, req->attributes, req->options ); data/wine-5.0/server/handle.c:651:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, req->attributes, req->options ); data/wine-5.0/server/handle.c:693:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WRITE_OWNER; data/wine-5.0/server/handle.c:695:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/server/handle.c:697:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= WRITE_DAC; data/wine-5.0/server/handle.c:699:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(obj = get_handle_obj( current->process, req->handle, access, NULL ))) return; data/wine-5.0/server/handle.c:717:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= ACCESS_SYSTEM_SECURITY; data/wine-5.0/server/handle.c:719:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(obj = get_handle_obj( current->process, req->handle, access, NULL ))) return; data/wine-5.0/server/handle.c:810:33: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle->access = entry->access & ~RESERVED_ALL; data/wine-5.0/server/handle.h:38:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attr ); data/wine-5.0/server/handle.h:40:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attr ); data/wine-5.0/server/handle.h:43:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, const struct object_ops *ops ); data/wine-5.0/server/handle.h:46:52: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attr, unsigned int options ); data/wine-5.0/server/handle.h:47:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern obj_handle_t open_object( struct process *process, obj_handle_t parent, unsigned int access, data/wine-5.0/server/mailslot.c:68:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mailslot_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/mailslot.c:70:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *mailslot_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/mailslot.c:122:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access; data/wine-5.0/server/mailslot.c:128:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mail_writer_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/mailslot.c:184:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *mailslot_device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/mailslot.c:262:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mailslot_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/mailslot.c:265:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/mailslot.c:265:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= FILE_GENERIC_READ; data/wine-5.0/server/mailslot.c:266:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_GENERIC_READ; data/wine-5.0/server/mailslot.c:266:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_GENERIC_READ; data/wine-5.0/server/mailslot.c:267:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/mailslot.c:284:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *mailslot_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/mailslot.c:304:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((access & (GENERIC_WRITE|FILE_WRITE_DATA)) || (writer->access & FILE_WRITE_DATA)) && data/wine-5.0/server/mailslot.c:304:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((access & (GENERIC_WRITE|FILE_WRITE_DATA)) || (writer->access & FILE_WRITE_DATA)) && data/wine-5.0/server/mailslot.c:324:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. writer->access = mail_writer_map_access( &writer->obj, access ); data/wine-5.0/server/mailslot.c:383:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *mailslot_device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/mailslot.c:480:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mail_writer_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/mailslot.c:483:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/mailslot.c:483:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/mailslot.c:484:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/mailslot.c:484:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= FILE_GENERIC_WRITE; data/wine-5.0/server/mailslot.c:485:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/mailslot.c:489:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access ) data/wine-5.0/server/mailslot.c:491:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct mailslot *)get_handle_obj( process, handle, access, &mailslot_ops ); data/wine-5.0/server/mailslot.c:519:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, mailslot, req->access, objattr->attributes ); data/wine-5.0/server/mapping.c:149:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mapping_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/mapping.c:880:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct mapping *get_mapping_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/mapping.c:882:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct mapping *)get_handle_obj( process, handle, access, &mapping_ops ); data/wine-5.0/server/mapping.c:887:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int sharing ) data/wine-5.0/server/mapping.c:892:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return create_file_for_fd_obj( view->fd, access, sharing ); data/wine-5.0/server/mapping.c:917:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mapping_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/mapping.c:919:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SECTION_QUERY | SECTION_MAP_READ; data/wine-5.0/server/mapping.c:919:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SECTION_QUERY | SECTION_MAP_READ; data/wine-5.0/server/mapping.c:920:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | SECTION_MAP_WRITE; data/wine-5.0/server/mapping.c:920:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | SECTION_MAP_WRITE; data/wine-5.0/server/mapping.c:921:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SECTION_MAP_EXECUTE; data/wine-5.0/server/mapping.c:921:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SECTION_MAP_EXECUTE; data/wine-5.0/server/mapping.c:922:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= SECTION_ALL_ACCESS; data/wine-5.0/server/mapping.c:922:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= SECTION_ALL_ACCESS; data/wine-5.0/server/mapping.c:923:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/mapping.c:960:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, obj, req->access, objattr->attributes ); data/wine-5.0/server/mapping.c:963:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/mapping.c:975:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/mapping.c:984:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(mapping = get_mapping_obj( current->process, req->handle, req->access ))) return; data/wine-5.0/server/mapping.c:992:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(req->access & (SECTION_MAP_READ | SECTION_MAP_WRITE))) /* query only */ data/wine-5.0/server/mapping.c:1025:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(mapping = get_mapping_obj( current->process, req->mapping, req->access ))) return; data/wine-5.0/server/mutex.c:52:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mutex_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/mutex.c:54:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int mutex_signal( struct object *obj, unsigned int access ); data/wine-5.0/server/mutex.c:167:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int mutex_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/mutex.c:169:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | MUTANT_QUERY_STATE; data/wine-5.0/server/mutex.c:169:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | MUTANT_QUERY_STATE; data/wine-5.0/server/mutex.c:170:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/mutex.c:170:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/mutex.c:171:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/mutex.c:171:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/mutex.c:172:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | MUTEX_ALL_ACCESS; data/wine-5.0/server/mutex.c:172:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | MUTEX_ALL_ACCESS; data/wine-5.0/server/mutex.c:173:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/mutex.c:176:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int mutex_signal( struct object *obj, unsigned int access ) data/wine-5.0/server/mutex.c:181:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & SYNCHRONIZE)) data/wine-5.0/server/mutex.c:219:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, mutex, req->access, objattr->attributes ); data/wine-5.0/server/mutex.c:222:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/mutex.c:234:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/named_pipe.c:107:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int named_pipe_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/named_pipe.c:109:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *named_pipe_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/named_pipe.c:239:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *named_pipe_device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/named_pipe.c:315:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int named_pipe_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/named_pipe.c:317:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/named_pipe.c:317:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/named_pipe.c:318:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | FILE_CREATE_PIPE_INSTANCE; data/wine-5.0/server/named_pipe.c:318:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | FILE_CREATE_PIPE_INSTANCE; data/wine-5.0/server/named_pipe.c:319:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/named_pipe.c:319:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/named_pipe.c:320:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL; data/wine-5.0/server/named_pipe.c:320:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL; data/wine-5.0/server/named_pipe.c:321:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/named_pipe.c:480:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *named_pipe_device_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/named_pipe.c:1239:78: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct object *named_pipe_open_file( struct object *obj, unsigned int access, data/wine-5.0/server/named_pipe.c:1255:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (((access & GENERIC_READ) && !(pipe_sharing & FILE_SHARE_READ)) || data/wine-5.0/server/named_pipe.c:1256:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ((access & GENERIC_WRITE) && !(pipe_sharing & FILE_SHARE_WRITE))) data/wine-5.0/server/named_pipe.c:1388:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, server, req->access, objattr->attributes ); data/wine-5.0/server/object.c:513:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int no_signal( struct object *obj, unsigned int access ) data/wine-5.0/server/object.c:525:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int no_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/object.c:527:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/object.c:527:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/object.c:528:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/object.c:528:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/object.c:529:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/object.c:529:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/object.c:530:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL; data/wine-5.0/server/object.c:530:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL; data/wine-5.0/server/object.c:531:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/object.c:689:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct object *no_open_file( struct object *obj, unsigned int access, unsigned int sharing, data/wine-5.0/server/object.h:90:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct object *(*open_file)(struct object *, unsigned int access, unsigned int sharing, data/wine-5.0/server/object.h:157:56: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern int no_signal( struct object *obj, unsigned int access ); data/wine-5.0/server/object.h:159:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern unsigned int no_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/object.h:167:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct object *no_open_file( struct object *obj, unsigned int access, unsigned int sharing, data/wine-5.0/server/object.h:187:96: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct event *get_event_obj( struct process *process, obj_handle_t handle, unsigned int access ); data/wine-5.0/server/object.h:188:108: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct keyed_event *get_keyed_event_obj( struct process *process, obj_handle_t handle, unsigned int access ); data/wine-5.0/server/process.c:65:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int process_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/process.c:150:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int job_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/process.c:211:92: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct job *get_job_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/process.c:213:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct job *)get_handle_obj( process, handle, access, &job_ops ); data/wine-5.0/server/process.c:223:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int job_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/process.c:225:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/process.c:225:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ; data/wine-5.0/server/process.c:226:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/process.c:226:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/process.c:227:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/process.c:227:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/process.c:228:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= JOB_OBJECT_ALL_ACCESS; data/wine-5.0/server/process.c:228:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= JOB_OBJECT_ALL_ACCESS; data/wine-5.0/server/process.c:229:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/process.c:654:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int process_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/process.c:656:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | PROCESS_QUERY_INFORMATION | PROCESS_VM_READ; data/wine-5.0/server/process.c:656:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | PROCESS_QUERY_INFORMATION | PROCESS_VM_READ; data/wine-5.0/server/process.c:657:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | PROCESS_SET_QUOTA | PROCESS_SET_INFORMATION | PROCESS_SUSPEND_RESUME | data/wine-5.0/server/process.c:657:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | PROCESS_SET_QUOTA | PROCESS_SET_INFORMATION | PROCESS_SUSPEND_RESUME | data/wine-5.0/server/process.c:659:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE | PROCESS_QUERY_LIMITED_INFORMATION | PROCESS_TERMINATE; data/wine-5.0/server/process.c:659:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE | PROCESS_QUERY_LIMITED_INFORMATION | PROCESS_TERMINATE; data/wine-5.0/server/process.c:660:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= PROCESS_ALL_ACCESS; data/wine-5.0/server/process.c:660:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= PROCESS_ALL_ACCESS; data/wine-5.0/server/process.c:662:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROCESS_QUERY_INFORMATION) access |= PROCESS_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/process.c:662:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROCESS_QUERY_INFORMATION) access |= PROCESS_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/process.c:663:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROCESS_SET_INFORMATION) access |= PROCESS_SET_LIMITED_INFORMATION; data/wine-5.0/server/process.c:663:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & PROCESS_SET_INFORMATION) access |= PROCESS_SET_LIMITED_INFORMATION; data/wine-5.0/server/process.c:665:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/process.c:764:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct process *get_process_from_handle( obj_handle_t handle, unsigned int access ) data/wine-5.0/server/process.c:767:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, &process_ops ); data/wine-5.0/server/process.c:1281:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle_no_access_check( current->process, process, req->access, objattr->attributes ); data/wine-5.0/server/process.c:1397:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, process, req->access, req->attributes ); data/wine-5.0/server/process.c:1657:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, job, req->access, objattr->attributes ); data/wine-5.0/server/process.c:1660:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/process.c:1671:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/process.h:125:83: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct process *get_process_from_handle( obj_handle_t handle, unsigned int access ); data/wine-5.0/server/registry.c:149:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int key_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/registry.c:340:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int key_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/registry.c:342:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= KEY_READ; data/wine-5.0/server/registry.c:342:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= KEY_READ; data/wine-5.0/server/registry.c:343:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= KEY_WRITE; data/wine-5.0/server/registry.c:343:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= KEY_WRITE; data/wine-5.0/server/registry.c:344:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= KEY_EXECUTE; data/wine-5.0/server/registry.c:344:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= KEY_EXECUTE; data/wine-5.0/server/registry.c:345:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= KEY_ALL_ACCESS; data/wine-5.0/server/registry.c:345:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= KEY_ALL_ACCESS; data/wine-5.0/server/registry.c:347:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL | data/wine-5.0/server/registry.c:713:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, struct unicode_str *token, int *index ) data/wine-5.0/server/registry.c:717:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & KEY_WOW64_32KEY) key = find_wow64_subkey( key, token ); data/wine-5.0/server/registry.c:723:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((key->flags & KEY_WOWSHARE) && !(access & KEY_WOW64_64KEY)) data/wine-5.0/server/registry.c:734:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & KEY_WOW64_64KEY)) key = find_wow64_subkey( key, token ); data/wine-5.0/server/registry.c:745:92: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct key *open_key( struct key *key, const struct unicode_str *name, unsigned int access, data/wine-5.0/server/registry.c:751:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(key = open_key_prefix( key, name, access, &token, &index ))) return NULL; data/wine-5.0/server/registry.c:758:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & KEY_WOW64_64KEY)) key = find_wow64_subkey( key, &token ); data/wine-5.0/server/registry.c:772:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access, unsigned int attributes, data/wine-5.0/server/registry.c:779:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(key = open_key_prefix( key, name, access, &token, &index ))) return NULL; data/wine-5.0/server/registry.c:783:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & KEY_WOW64_64KEY)) key = find_wow64_subkey( key, &token ); data/wine-5.0/server/registry.c:1248:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct key *get_hkey_obj( obj_handle_t hkey, unsigned int access ) data/wine-5.0/server/registry.c:1250:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct key *key = (struct key *)get_handle_obj( current->process, hkey, access, &key_ops ); data/wine-5.0/server/registry.c:1749:5: [4] (buffer) strcpyW: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpyW( p, prefixW ); data/wine-5.0/server/registry.c:1958:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tmp, path ); data/wine-5.0/server/registry.c:2051:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access = req->access; data/wine-5.0/server/registry.c:2057:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!is_wow64_thread( current )) access = (access & ~KEY_WOW64_32KEY) | KEY_WOW64_64KEY; data/wine-5.0/server/registry.c:2072:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((key = create_key( parent, &name, &class, req->options, access, data/wine-5.0/server/registry.c:2075:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->hkey = alloc_handle( current->process, key, access, objattr->attributes ); data/wine-5.0/server/registry.c:2087:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. unsigned int access = req->access; data/wine-5.0/server/registry.c:2089:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!is_wow64_thread( current )) access = (access & ~KEY_WOW64_32KEY) | KEY_WOW64_64KEY; data/wine-5.0/server/registry.c:2096:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ((key = open_key( parent, &name, access, req->attributes ))) data/wine-5.0/server/registry.c:2098:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->hkey = alloc_handle( current->process, key, access, req->attributes ); data/wine-5.0/server/request.c:144:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/server/request.c:157:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, err, args ); data/wine-5.0/server/request.c:625:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret + len, name ); data/wine-5.0/server/request.c:659:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( config_dir, home ); data/wine-5.0/server/request.c:681:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( server_dir, config_dir ); data/wine-5.0/server/request.c:687:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( run_dir, "%s/%u", server_root_prefix, getuid() ); data/wine-5.0/server/request.c:694:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( server_dir, "%s/wine", run_dir ); data/wine-5.0/server/request.c:709:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tmp_dir, tmp_env ); data/wine-5.0/server/request.c:716:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( tmp_dir, tmp_default ); data/wine-5.0/server/request.c:721:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if ( access( wineserver_file, F_OK ) != -1 ) data/wine-5.0/server/request.c:787:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( server_dir, tmp_root ); data/wine-5.0/server/request.c:971:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( addr.sun_path, server_socket_name ); data/wine-5.0/server/request.h:40:81: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. const char *err, ... ) __attribute__((format (printf,2,3))); data/wine-5.0/server/request.h:41:81: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. extern void fatal_error( const char *err, ... ) __attribute__((noreturn,format(printf,1,2))); data/wine-5.0/server/security.h:86:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern int check_object_access( struct object *obj, unsigned int *access ); data/wine-5.0/server/semaphore.c:50:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int semaphore_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/semaphore.c:51:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int semaphore_signal( struct object *obj, unsigned int access ); data/wine-5.0/server/semaphore.c:151:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int semaphore_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/semaphore.c:153:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SEMAPHORE_QUERY_STATE; data/wine-5.0/server/semaphore.c:153:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SEMAPHORE_QUERY_STATE; data/wine-5.0/server/semaphore.c:154:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | SEMAPHORE_MODIFY_STATE; data/wine-5.0/server/semaphore.c:154:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | SEMAPHORE_MODIFY_STATE; data/wine-5.0/server/semaphore.c:155:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/semaphore.c:155:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE; data/wine-5.0/server/semaphore.c:156:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | SEMAPHORE_ALL_ACCESS; data/wine-5.0/server/semaphore.c:156:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_ALL | SEMAPHORE_ALL_ACCESS; data/wine-5.0/server/semaphore.c:157:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/semaphore.c:160:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int semaphore_signal( struct object *obj, unsigned int access ) data/wine-5.0/server/semaphore.c:165:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access & SEMAPHORE_MODIFY_STATE)) data/wine-5.0/server/semaphore.c:187:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, sem, req->access, objattr->attributes ); data/wine-5.0/server/semaphore.c:190:64: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ); data/wine-5.0/server/semaphore.c:202:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/serial.c:171:98: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static struct serial *get_serial_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/serial.c:173:62: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct serial *)get_handle_obj( process, handle, access, &serial_ops ); data/wine-5.0/server/sock.c:1175:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, obj, req->access, req->attributes ); data/wine-5.0/server/sock.c:1188:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, &sock->obj, req->access, req->attributes ); data/wine-5.0/server/symlink.c:50:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int symlink_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/symlink.c:121:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int symlink_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/symlink.c:123:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYMBOLIC_LINK_QUERY; data/wine-5.0/server/symlink.c:123:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYMBOLIC_LINK_QUERY; data/wine-5.0/server/symlink.c:124:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/symlink.c:124:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE; data/wine-5.0/server/symlink.c:125:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/symlink.c:125:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/symlink.c:126:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= SYMBOLIC_LINK_ALL_ACCESS; data/wine-5.0/server/symlink.c:126:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= SYMBOLIC_LINK_ALL_ACCESS; data/wine-5.0/server/symlink.c:127:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/symlink.c:206:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, symlink, req->access, objattr->attributes ); data/wine-5.0/server/symlink.c:218:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/thread.c:134:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int thread_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/thread.c:391:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int thread_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/thread.c:393:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | THREAD_QUERY_INFORMATION | THREAD_GET_CONTEXT; data/wine-5.0/server/thread.c:393:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | THREAD_QUERY_INFORMATION | THREAD_GET_CONTEXT; data/wine-5.0/server/thread.c:394:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | THREAD_SET_INFORMATION | THREAD_SET_CONTEXT | data/wine-5.0/server/thread.c:394:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | THREAD_SET_INFORMATION | THREAD_SET_CONTEXT | data/wine-5.0/server/thread.c:396:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE | THREAD_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:396:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | SYNCHRONIZE | THREAD_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:397:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= THREAD_ALL_ACCESS; data/wine-5.0/server/thread.c:397:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= THREAD_ALL_ACCESS; data/wine-5.0/server/thread.c:399:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & THREAD_QUERY_INFORMATION) access |= THREAD_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:399:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & THREAD_QUERY_INFORMATION) access |= THREAD_QUERY_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:400:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & THREAD_SET_INFORMATION) access |= THREAD_SET_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:400:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & THREAD_SET_INFORMATION) access |= THREAD_SET_LIMITED_INFORMATION; data/wine-5.0/server/thread.c:402:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/thread.c:454:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct thread *get_thread_from_handle( obj_handle_t handle, unsigned int access ) data/wine-5.0/server/thread.c:457:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, &thread_ops ); data/wine-5.0/server/thread.c:1323:65: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, objattr->attributes ))) data/wine-5.0/server/thread.c:1442:70: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, thread, req->access, req->attributes ); data/wine-5.0/server/thread.h:109:81: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct thread *get_thread_from_handle( obj_handle_t handle, unsigned int access ); data/wine-5.0/server/timer.c:57:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int timer_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/timer.c:212:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int timer_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/timer.c:214:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYNCHRONIZE | TIMER_QUERY_STATE; data/wine-5.0/server/timer.c:214:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | SYNCHRONIZE | TIMER_QUERY_STATE; data/wine-5.0/server/timer.c:215:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | TIMER_MODIFY_STATE; data/wine-5.0/server/timer.c:215:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | TIMER_MODIFY_STATE; data/wine-5.0/server/timer.c:216:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/timer.c:216:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/timer.c:217:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= TIMER_ALL_ACCESS; data/wine-5.0/server/timer.c:217:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= TIMER_ALL_ACCESS; data/wine-5.0/server/timer.c:218:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/timer.c:243:69: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, timer, req->access, objattr->attributes ); data/wine-5.0/server/timer.c:255:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/token.c:140:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int token_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/token.c:181:72: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int token_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/token.c:183:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= TOKEN_READ; data/wine-5.0/server/token.c:183:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= TOKEN_READ; data/wine-5.0/server/token.c:184:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= TOKEN_WRITE; data/wine-5.0/server/token.c:184:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= TOKEN_WRITE; data/wine-5.0/server/token.c:185:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/token.c:185:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE; data/wine-5.0/server/token.c:186:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= TOKEN_ALL_ACCESS; data/wine-5.0/server/token.c:186:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= TOKEN_ALL_ACCESS; data/wine-5.0/server/token.c:187:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/token.c:1098:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. map_generic_mask(&access, mapping); data/wine-5.0/server/token.c:1100:38: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. denied_access |= access; data/wine-5.0/server/token.c:1103:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. denied_access |= (access & ~current_access); data/wine-5.0/server/token.c:1104:42: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (desired_access & access) goto done; data/wine-5.0/server/token.c:1114:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. map_generic_mask(&access, mapping); data/wine-5.0/server/token.c:1116:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. current_access |= access; data/wine-5.0/server/token.c:1118:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. current_access |= (access & ~denied_access); data/wine-5.0/server/token.c:1157:59: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int check_object_access(struct object *obj, unsigned int *access) data/wine-5.0/server/token.c:1168:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (*access & MAXIMUM_ALLOWED) data/wine-5.0/server/token.c:1177:48: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. res = token_access_check( token, obj->sd, *access, NULL, NULL, data/wine-5.0/server/token.c:1178:41: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. &mapping, access, &status ) == STATUS_SUCCESS && data/wine-5.0/server/token.c:1200:55: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. req->access, req->attributes ); data/wine-5.0/server/token.c:1213:85: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->token = alloc_handle( current->process, process->token, req->access, data/wine-5.0/server/token.c:1228:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (req->get_modified_state) access |= TOKEN_QUERY; data/wine-5.0/server/token.c:1231:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, &token_ops ))) data/wine-5.0/server/token.c:1319:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->new_handle = alloc_handle_no_access_check( current->process, token, req->access, objattr->attributes ); data/wine-5.0/server/trace.c:333:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. prefix, data->create.access, data->create.sharing, data->create.options ); data/wine-5.0/server/trace.c:1233:57: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. handle->owner, handle->handle, handle->access ); data/wine-5.0/server/user.h:183:100: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct desktop *get_desktop_obj( struct process *process, obj_handle_t handle, unsigned int access ); data/wine-5.0/server/user.h:184:89: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct winstation *get_process_winstation( struct process *process, unsigned int access ); data/wine-5.0/server/user.h:185:80: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. extern struct desktop *get_thread_desktop( struct thread *thread, unsigned int access ); data/wine-5.0/server/winstation.c:52:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int winstation_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/winstation.c:58:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int desktop_map_access( struct object *obj, unsigned int access ); data/wine-5.0/server/winstation.c:188:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int winstation_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/winstation.c:190:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | WINSTA_ENUMDESKTOPS | WINSTA_READATTRIBUTES | data/wine-5.0/server/winstation.c:190:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | WINSTA_ENUMDESKTOPS | WINSTA_READATTRIBUTES | data/wine-5.0/server/winstation.c:192:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | WINSTA_ACCESSCLIPBOARD | WINSTA_CREATEDESKTOP | data/wine-5.0/server/winstation.c:192:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | WINSTA_ACCESSCLIPBOARD | WINSTA_CREATEDESKTOP | data/wine-5.0/server/winstation.c:194:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | WINSTA_ACCESSGLOBALATOMS | WINSTA_EXITWINDOWS; data/wine-5.0/server/winstation.c:194:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | WINSTA_ACCESSGLOBALATOMS | WINSTA_EXITWINDOWS; data/wine-5.0/server/winstation.c:195:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_REQUIRED | WINSTA_ALL_ACCESS; data/wine-5.0/server/winstation.c:195:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_REQUIRED | WINSTA_ALL_ACCESS; data/wine-5.0/server/winstation.c:196:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/winstation.c:200:82: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct winstation *get_process_winstation( struct process *process, unsigned int access ) data/wine-5.0/server/winstation.c:203:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, &winstation_ops ); data/wine-5.0/server/winstation.c:207:93: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct desktop *get_desktop_obj( struct process *process, obj_handle_t handle, unsigned int access ) data/wine-5.0/server/winstation.c:209:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return (struct desktop *)get_handle_obj( process, handle, access, &desktop_ops ); data/wine-5.0/server/winstation.c:298:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static unsigned int desktop_map_access( struct object *obj, unsigned int access ) data/wine-5.0/server/winstation.c:300:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | DESKTOP_READOBJECTS | DESKTOP_ENUMERATE; data/wine-5.0/server/winstation.c:300:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_READ) access |= STANDARD_RIGHTS_READ | DESKTOP_READOBJECTS | DESKTOP_ENUMERATE; data/wine-5.0/server/winstation.c:301:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | DESKTOP_CREATEMENU | DESKTOP_CREATEWINDOW | data/wine-5.0/server/winstation.c:301:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_WRITE) access |= STANDARD_RIGHTS_WRITE | DESKTOP_CREATEMENU | DESKTOP_CREATEWINDOW | data/wine-5.0/server/winstation.c:304:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | DESKTOP_SWITCHDESKTOP; data/wine-5.0/server/winstation.c:304:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_EXECUTE) access |= STANDARD_RIGHTS_EXECUTE | DESKTOP_SWITCHDESKTOP; data/wine-5.0/server/winstation.c:305:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_REQUIRED | DESKTOP_ALL_ACCESS; data/wine-5.0/server/winstation.c:305:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & GENERIC_ALL) access |= STANDARD_RIGHTS_REQUIRED | DESKTOP_ALL_ACCESS; data/wine-5.0/server/winstation.c:306:12: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return access & ~(GENERIC_READ | GENERIC_WRITE | GENERIC_EXECUTE | GENERIC_ALL); data/wine-5.0/server/winstation.c:310:73: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. struct desktop *get_thread_desktop( struct thread *thread, unsigned int access ) data/wine-5.0/server/winstation.c:312:63: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return get_desktop_obj( thread->process, thread->desktop, access ); data/wine-5.0/server/winstation.c:458:74: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, winstation, req->access, req->attributes ); data/wine-5.0/server/winstation.c:469:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = open_object( current->process, req->rootdir, req->access, data/wine-5.0/server/winstation.c:521:75: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, desktop, req->access, req->attributes ); data/wine-5.0/server/winstation.c:545:67: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, obj, req->access, req->attributes ); data/wine-5.0/server/winstation.c:570:71: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. reply->handle = alloc_handle( current->process, desktop, req->access, req->attributes ); data/wine-5.0/server/winstation.c:714:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!check_object_access( &winsta->obj, &access )) continue; data/wine-5.0/server/winstation.c:743:51: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!check_object_access( &desktop->obj, &access )) continue; data/wine-5.0/tools/make_xftmpl.c:123:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/make_xftmpl.c:239:11: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. ret = sscanf(buf, guidfmt, &guid.Data1, tab, tab+1, tab+2, tab+3, tab+4, tab+5, tab+6, tab+7, tab+8, tab+9); data/wine-5.0/tools/makedep.c:267:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/makedep.c:287:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/makedep.c:361:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf (p, size, fmt, ap); data/wine-5.0/tools/makedep.c:392:11: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. ret = vfprintf( output_file, format, valist ); data/wine-5.0/tools/makedep.c:603:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret + name_len, new_ext ); data/wine-5.0/tools/makedep.c:622:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret + len, name ); data/wine-5.0/tools/makedep.c:651:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret + pos, replace ); data/wine-5.0/tools/makedep.c:652:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( ret + pos, start + len ); data/wine-5.0/tools/makedep.c:697:19: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (start[0]) strcpy( p, start ); data/wine-5.0/tools/makedep.c:2309:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( second, ext ); data/wine-5.0/tools/makedep.c:2313:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( first, ext ); data/wine-5.0/tools/makedep.c:3959:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( name, "%s.tmp%08x", orig, id ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:273:62: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:280:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:753:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(non_resident_name, "FONTRES 100,%d,%d : %s %d", data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:756:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(resident_name, name); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:812:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( option_output, p ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:815:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, option_fnt_mode ? ".fnt" : ".fon" ); data/wine-5.0/tools/widl/client.c:44:76: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void print_client( const char *format, ... ) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/header.c:61:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(f, fmt, ap); data/wine-5.0/tools/widl/header.c:971:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(inherit_name, get_name(funccmp)); data/wine-5.0/tools/widl/header.c:996:10: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(inherit_name, get_name(funccmp)); data/wine-5.0/tools/widl/header.c:1017:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "%s_%s", iface->name, get_name(func)); data/wine-5.0/tools/widl/header.c:1019:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "%s", get_name(func)); data/wine-5.0/tools/widl/proxy.c:43:75: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void print_proxy( const char *format, ... ) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/server.c:43:74: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void print_server(const char *format, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/typegen.c:876:96: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. static void print_file(FILE *file, int indent, const char *format, ...) __attribute__((format (printf, 3, 4))); data/wine-5.0/tools/widl/typegen.c:892:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(file, format, va); data/wine-5.0/tools/widl/typetree.c:98:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(ptr, separator); data/wine-5.0/tools/widl/typetree.c:103:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, namespace->name); data/wine-5.0/tools/widl/typetree.c:104:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(ptr, separator); data/wine-5.0/tools/widl/typetree.c:122:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ret, prefix); data/wine-5.0/tools/widl/typetree.c:124:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr, suffix); data/wine-5.0/tools/widl/utils.c:53:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/widl/utils.c:109:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/widl/utils.c:119:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/widl/utils.c:138:3: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/widl/utils.c:164:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(base, name); data/wine-5.0/tools/widl/utils.c:239:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf( p, size, fmt, ap ); data/wine-5.0/tools/widl/utils.c:254:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy(s, str); data/wine-5.0/tools/widl/utils.c:455:6: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf( (char *)output_buffer + output_buffer_pos, size, format, args ); data/wine-5.0/tools/widl/utils.h:40:63: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int parser_warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/utils.h:41:59: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void error_loc(const char *s, ...) __attribute__((format (printf, 1, 2))) __attribute__((noreturn)); data/wine-5.0/tools/widl/utils.h:42:55: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void error(const char *s, ...) __attribute__((format (printf, 1, 2))) __attribute__((noreturn)); data/wine-5.0/tools/widl/utils.h:43:84: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void error_loc_info(const loc_info_t *, const char *s, ...) __attribute__((format (printf, 2, 3))) __attribute__((noreturn)); data/wine-5.0/tools/widl/utils.h:44:57: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/utils.h:45:86: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void warning_loc_info(const loc_info_t *, const char *s, ...) __attribute__((format (printf, 2, 3))); data/wine-5.0/tools/widl/utils.h:46:54: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void chat(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/widl/utils.h:72:83: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. extern void put_str( int indent, const char *format, ... ) __attribute__((format (printf, 2, 3))); data/wine-5.0/tools/widl/widl.c:910:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name, header_name ); data/wine-5.0/tools/widl/write_msft.c:2735:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(info_string, "Created by WIDL version %s at %s\n", PACKAGE_VERSION, ctime(&cur_time)); data/wine-5.0/tools/winebuild/import.c:344:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret, basename ); data/wine-5.0/tools/winebuild/import.c:350:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ret, name ); data/wine-5.0/tools/winebuild/import.c:625:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name_prefix, asm_name("") ); data/wine-5.0/tools/winebuild/import.c:633:15: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!(f = popen( cmd, "r" ))) data/wine-5.0/tools/winebuild/main.c:147:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( spec->file_name, name ); data/wine-5.0/tools/winebuild/main.c:550:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( spec->file_name, exec_mode == MODE_EXE ? ".exe" : ".dll" ); data/wine-5.0/tools/winebuild/spec16.c:259:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, get_args_str(odp) ); data/wine-5.0/tools/winebuild/spec16.c:477:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( args1, get_args_str( odp1 )); data/wine-5.0/tools/winebuild/spec16.c:493:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name1, get_relay_name(odp1) ); data/wine-5.0/tools/winebuild/spec32.c:189:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, str ); data/wine-5.0/tools/winebuild/utils.c:139:6: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf( p, size, fmt, ap ); data/wine-5.0/tools/winebuild/utils.c:216:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/winebuild/utils.c:232:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/winebuild/utils.c:249:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/winebuild/utils.c:268:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/winebuild/utils.c:278:11: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. ret = vfprintf( output_file, format, valist ); data/wine-5.0/tools/winebuild/utils.c:325:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( file, dirs.str[i] ); data/wine-5.0/tools/winebuild/utils.c:331:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, prefix ); data/wine-5.0/tools/winebuild/utils.c:335:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, name ); data/wine-5.0/tools/winebuild/utils.c:336:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( p, EXEEXT ); data/wine-5.0/tools/winebuild/utils.c:514:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( name, suffix ); data/wine-5.0/tools/winebuild/utils.c:521:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( name, suffix ); data/wine-5.0/tools/winebuild/utils.c:1152:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( output_file, format, valist ); data/wine-5.0/tools/winebuild/utils.c:1167:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( output_file, format, valist ); data/wine-5.0/tools/winebuild/utils.c:1172:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( output_file, format, valist ); data/wine-5.0/tools/winedump/debug.c:712:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(stabbuff, ptr); data/wine-5.0/tools/winedump/debug.c:717:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(stabbuff, ptr); data/wine-5.0/tools/winedump/debug.c:723:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(n_buffer, "%-6s", stabs_defs[stab_ptr->n_type / 2]); data/wine-5.0/tools/winedump/dump.c:157:22: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (tmp) strcpy(tmp, symbol.arg_text[0]); data/wine-5.0/tools/winedump/dump.c:176:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "%s __%s %s(", data/wine-5.0/tools/winedump/dump.c:185:21: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tmp, symbol.arg_text[i]); data/wine-5.0/tools/winedump/main.c:150:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(symbolp->symbolname, symstring); data/wine-5.0/tools/winedump/minidump.c:266:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tmp, str); data/wine-5.0/tools/winedump/misc.c:52:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (tmp, t); data/wine-5.0/tools/winedump/misc.c:83:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (tmp, t); data/wine-5.0/tools/winedump/msc.c:247:42: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). #define X(s) {if (pos) tmp[pos++] = ';'; strcpy(tmp + pos, s); pos += strlen(s);} data/wine-5.0/tools/winedump/ne.c:324:50: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). #define ADD_FLAG(x) if (flags & NE_SEGFLAGS_##x) strcat( buffer, " " #x ); data/wine-5.0/tools/winedump/pe.c:409:51: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define X(b,s) if (sectHead->Characteristics & b) printf(" " s) data/wine-5.0/tools/winedump/pe.c:439:25: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define X2(b,s) case b: printf(" " s); break data/wine-5.0/tools/winedump/search.c:77:18: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!(grep = popen (cmd, "r"))) data/wine-5.0/tools/winedump/search.c:109:22: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (!(f_grep = popen (cmd, "r"))) data/wine-5.0/tools/winedump/tlb.c:198:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "%s %d", name, id); data/wine-5.0/tools/winedump/tlb.c:228:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buf, name, id); data/wine-5.0/tools/winedump/tlb.c:1200:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf, p); data/wine-5.0/tools/winegcc/utils.c:45:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/winegcc/utils.c:94:6: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf (p, size, fmt, ap); data/wine-5.0/tools/winegcc/utils.c:205:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(file, fmt, ap); data/wine-5.0/tools/winegcc/utils.c:254:22: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. if (verbose > 1) fprintf(stderr, type == expected_type ? "FOUND!\n" : "no\n"); data/wine-5.0/tools/winegcc/utils.c:261:22: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. if (verbose > 1) fprintf(stderr, type == expected_type ? "FOUND!\n" : "no\n"); data/wine-5.0/tools/winegcc/winegcc.c:562:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, root ); data/wine-5.0/tools/winegcc/winegcc.c:563:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, stdlibpath[i] ); data/wine-5.0/tools/winegcc/winegcc.c:566:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, libwine ); data/wine-5.0/tools/winegcc/winegcc.c:571:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, libwine ); data/wine-5.0/tools/winegcc/winegcc.c:574:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, bit_suffix ); data/wine-5.0/tools/winegcc/winegcc.c:575:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( p, libwine ); data/wine-5.0/tools/winegcc/winegcc.c:577:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, target_multiarch ); data/wine-5.0/tools/winegcc/winegcc.c:578:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( p, libwine ); data/wine-5.0/tools/winegcc/winegcc.c:581:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( buffer, root ); data/wine-5.0/tools/winegcc/winegcc.c:582:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat( buffer, stdlibpath[i] ); data/wine-5.0/tools/winegcc/winegcc.c:585:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( p, libwine ); data/wine-5.0/tools/wmc/utils.c:40:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wmc/utils.c:86:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wmc/utils.c:96:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/wmc/utils.c:107:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wmc/utils.c:117:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wmc/utils.c:139:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(base, name); data/wine-5.0/tools/wmc/utils.c:181:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy(s, str); data/wine-5.0/tools/wmc/utils.c:194:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf( p, size, fmt, ap ); data/wine-5.0/tools/wmc/utils.h:37:58: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int mcy_error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wmc/utils.h:38:57: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int xyyerror(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wmc/utils.h:39:60: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int mcy_warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wmc/utils.h:40:92: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void internal_error(const char *file, int line, const char *s, ...) __attribute__((format (printf, 3, 4))); data/wine-5.0/tools/wmc/utils.h:41:66: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void fatal_perror( const char *msg, ... ) __attribute__((format (printf, 1, 2), noreturn)); data/wine-5.0/tools/wmc/utils.h:42:55: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wmc/utils.h:43:57: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wmc/wmc.c:184:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cmdline, argv[i]); data/wine-5.0/tools/wmc/wmc.c:260:4: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(version_string); data/wine-5.0/tools/wmc/write.c:174:2: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(fp, str_header, input_name ? input_name : "<stdin>", cmdline); data/wine-5.0/tools/wmc/write.c:489:2: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(fp, str_header, input_name ? input_name : "<stdin>", cmdline); data/wine-5.0/tools/wrc/utils.c:52:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wrc/utils.c:93:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wrc/utils.c:103:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf( stderr, msg, valist ); data/wine-5.0/tools/wrc/utils.c:114:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wrc/utils.c:124:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wrc/utils.c:135:3: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, s, ap); data/wine-5.0/tools/wrc/utils.c:158:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(base, name); data/wine-5.0/tools/wrc/utils.c:204:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. n = vsnprintf( p, size, fmt, ap ); data/wine-5.0/tools/wrc/utils.c:219:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy(s, str); data/wine-5.0/tools/wrc/utils.h:39:61: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int parser_error(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wrc/utils.h:40:63: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. int parser_warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wrc/utils.h:41:92: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void internal_error(const char *file, int line, const char *s, ...) __attribute__((format (printf, 3, 4), noreturn)); data/wine-5.0/tools/wrc/utils.h:42:66: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void fatal_perror( const char *msg, ... ) __attribute__((format (printf, 1, 2), noreturn)); data/wine-5.0/tools/wrc/utils.h:43:55: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void error(const char *s, ...) __attribute__((format (printf, 1, 2), noreturn)); data/wine-5.0/tools/wrc/utils.h:44:57: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void warning(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wrc/utils.h:45:54: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void chat(const char *s, ...) __attribute__((format (printf, 1, 2))); data/wine-5.0/tools/wrc/wrc.c:229:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "__WRC__=%s", major ? major : "0" ); data/wine-5.0/tools/wrc/wrc.c:231:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "__WRC_MINOR__=%s", minor ? minor : "0" ); data/wine-5.0/tools/wrc/wrc.c:233:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( buffer, "__WRC_PATCHLEVEL__=%s", patchlevel ? patchlevel : "0" ); data/wine-5.0/tools/wrc/wrc.c:366:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(cmdline, argv[i]); data/wine-5.0/tools/wrc/wrc.c:395:4: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(version_string); data/wine-5.0/tools/wrc/wrc.c:439:4: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(usage); data/wine-5.0/tools/wrc/wrc.c:496:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, usage); data/wine-5.0/dlls/advapi32/service.c:482:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:542:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:631:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:660:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:849:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:2609:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:2669:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/service.c:2746:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &service_cs ); data/wine-5.0/dlls/advapi32/tests/security.c:1428:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce(Acl, ACL_REVISION, KEY_READ, EveryoneSid); data/wine-5.0/dlls/advapi32/tests/security.c:2961:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce(Acl, ACL_REVISION, PROCESS_ALL_ACCESS, AdminSid); data/wine-5.0/dlls/advapi32/tests/security.c:3032:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce( ThreadAcl, ACL_REVISION, THREAD_ALL_ACCESS, AdminSid ); data/wine-5.0/dlls/advapi32/tests/security.c:3290:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce(OldAcl, ACL_REVISION, KEY_READ, UsersSid); data/wine-5.0/dlls/advapi32/tests/security.c:3415:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce(OldAcl, ACL_REVISION, KEY_READ, UsersSid); data/wine-5.0/dlls/advapi32/tests/security.c:6593:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. ret = AddAccessAllowedAce(acl, ACL_REVISION, KEY_READ, everyone); data/wine-5.0/dlls/advapi32/tests/security.c:7327:11: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. res = AddAccessAllowedAce(old_acl, ACL_REVISION, KEY_READ, users_sid); data/wine-5.0/dlls/amstream/audiostream.c:708:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/audiostream.c:738:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/audiostream.c:763:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/audiostream.c:788:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/audiostream.c:1032:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/amstream/ddrawstream.c:635:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/ddrawstream.c:671:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/ddrawstream.c:696:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/ddrawstream.c:721:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/amstream/ddrawstream.c:963:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/amstream/filter.c:279:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:298:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:317:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:355:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:390:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:409:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->cs); data/wine-5.0/dlls/amstream/filter.c:568:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/appwiz.cpl/addons.c:338:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_dir = getenv( "XDG_CACHE_HOME" ); data/wine-5.0/dlls/atl/atl.c:427:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&winmod->m_csWindowCreate); data/wine-5.0/dlls/atl/atl.c:442:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pM->m_csWindowCreate); data/wine-5.0/dlls/atl/atl.c:460:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&winmod->m_csWindowCreate); data/wine-5.0/dlls/atl/atl30.c:68:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pM->u.m_csTypeInfoHolder); data/wine-5.0/dlls/atl/atl30.c:69:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pM->m_csWindowCreate); data/wine-5.0/dlls/atl/atl30.c:70:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pM->m_csObjMap); data/wine-5.0/dlls/atl/atl30.c:409:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pM->m_csWindowCreate); data/wine-5.0/dlls/atl/atl30.c:429:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pM->m_csWindowCreate); data/wine-5.0/dlls/atl100/tests/atl.c:178:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&winmod.m_csWindowCreate); data/wine-5.0/dlls/atlthunk/atlthunk.c:137:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&thunk_alloc_cs); data/wine-5.0/dlls/browseui/compcatcachedaemon.c:155:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:218:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:233:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:356:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:398:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:413:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:489:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:523:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:545:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:610:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/browseui/progressdlg.c:647:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/comctl32/animate.c:142:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:158:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:374:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:394:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:825:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:933:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/animate.c:942:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&infoPtr->cs); data/wine-5.0/dlls/comctl32/tests/button.c:642:31: [3] (random) setstate: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. const struct message *setstate; data/wine-5.0/dlls/comctl32/tests/button.c:825:62: [3] (random) setstate: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ok_sequence(sequences, COMBINED_SEQ_INDEX, button[i].setstate, "BM_SETSTATE/TRUE on a button", FALSE); data/wine-5.0/dlls/credui/credui_main.c:673:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csPendingCredentials); data/wine-5.0/dlls/credui/credui_main.c:726:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csPendingCredentials); data/wine-5.0/dlls/crypt32/collectionstore.c:119:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:231:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:300:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:368:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:430:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:481:13: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:527:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&collection->cs); data/wine-5.0/dlls/crypt32/collectionstore.c:579:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&collection->cs); data/wine-5.0/dlls/crypt32/main.c:200:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&prov_param_cs); data/wine-5.0/dlls/crypt32/oid.c:119:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&funcSetCS); data/wine-5.0/dlls/crypt32/oid.c:137:17: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->cs); data/wine-5.0/dlls/crypt32/oid.c:249:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&set->cs); data/wine-5.0/dlls/crypt32/oid.c:399:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&set->cs); data/wine-5.0/dlls/crypt32/oid.c:438:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&funcSetCS); data/wine-5.0/dlls/crypt32/oid.c:444:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&set->cs); data/wine-5.0/dlls/crypt32/oid.c:1782:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&oidInfoCS); data/wine-5.0/dlls/crypt32/oid.c:1810:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&oidInfoCS); data/wine-5.0/dlls/crypt32/oid.c:1828:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&oidInfoCS); data/wine-5.0/dlls/crypt32/oid.c:1847:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&oidInfoCS); data/wine-5.0/dlls/crypt32/oid.c:1865:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&oidInfoCS); data/wine-5.0/dlls/crypt32/proplist.c:49:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&list->cs); data/wine-5.0/dlls/crypt32/proplist.c:80:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&list->cs); data/wine-5.0/dlls/crypt32/proplist.c:114:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&list->cs); data/wine-5.0/dlls/crypt32/proplist.c:153:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&list->cs); data/wine-5.0/dlls/crypt32/proplist.c:174:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&list->cs); data/wine-5.0/dlls/crypt32/proplist.c:211:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&from->cs); data/wine-5.0/dlls/crypt32/regstore.c:271:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/regstore.c:375:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/regstore.c:556:21: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(®Info->cs); data/wine-5.0/dlls/crypt32/sip.c:583:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&providers_cs); data/wine-5.0/dlls/crypt32/sip.c:593:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&providers_cs); data/wine-5.0/dlls/crypt32/store.c:157:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/store.c:183:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/store.c:206:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/crypt32/store.c:395:13: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&store->cs); data/wine-5.0/dlls/d2d1/tests/d2d1.c:8279:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. use_mt = !getenv("WINETEST_NO_MT_D3D"); data/wine-5.0/dlls/d3d10core/tests/d3d10core.c:18072:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. use_mt = !getenv("WINETEST_NO_MT_D3D"); data/wine-5.0/dlls/d3d11/tests/d3d11.c:29724:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. use_mt = !getenv("WINETEST_NO_MT_D3D"); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:640:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wpp_mutex); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:878:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wpp_mutex); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:915:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wpp_mutex); data/wine-5.0/dlls/d3dx9_36/effect.c:6789:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&from_file_mutex); data/wine-5.0/dlls/d3dx9_36/shader.c:363:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&from_file_mutex); data/wine-5.0/dlls/d3dx9_36/shader.c:501:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&from_file_mutex); data/wine-5.0/dlls/d3dx9_36/shader.c:627:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&from_file_mutex); data/wine-5.0/dlls/dbghelp/elf_module.c:1647:39: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. getenv("PATH"), elf_info) || data/wine-5.0/dlls/dbghelp/elf_module.c:1649:37: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. getenv("LD_LIBRARY_PATH"), elf_info); data/wine-5.0/dlls/dbghelp/macho_module.c:1632:39: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. getenv("PATH"), macho_info); data/wine-5.0/dlls/dbghelp/macho_module.c:1640:39: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. getenv("DYLD_LIBRARY_PATH"), macho_info); data/wine-5.0/dlls/dbghelp/macho_module.c:1648:32: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* fallback = getenv("DYLD_FALLBACK_LIBRARY_PATH"); data/wine-5.0/dlls/dbghelp/module.c:89:16: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((ptr = getenv("WINELOADER"))) data/wine-5.0/dlls/dbghelp/module.c:152:16: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((env = getenv("WINELOADER"))) data/wine-5.0/dlls/ddeml.dll16/ddeml.c:223:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ddeml_cs); data/wine-5.0/dlls/ddeml.dll16/ddeml.c:243:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ddeml_cs); data/wine-5.0/dlls/dinput/device.c:994:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1022:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1054:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1102:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1125:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1161:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->dinput->crit ); data/wine-5.0/dlls/dinput/device.c:1382:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1398:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/device.c:1560:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->crit); data/wine-5.0/dlls/dinput/dinput_main.c:621:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &This->crit ); data/wine-5.0/dlls/dinput/dinput_main.c:628:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput_hook_crit ); data/wine-5.0/dlls/dinput/dinput_main.c:650:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput_hook_crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1649:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput_hook_crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1654:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput->crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1680:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput_hook_crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1686:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput->crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1731:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput_hook_crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1738:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dinput->crit ); data/wine-5.0/dlls/dinput/dinput_main.c:1792:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput_hook_crit); data/wine-5.0/dlls/dinput/dinput_main.c:1828:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput_hook_crit); data/wine-5.0/dlls/dinput/joystick_linux.c:504:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newDevice->generic.base.crit); data/wine-5.0/dlls/dinput/joystick_linux.c:557:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput->crit); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:487:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newDevice->generic.base.crit); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:598:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput->crit); data/wine-5.0/dlls/dinput/joystick_osx.c:1171:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newDevice->generic.base.crit); data/wine-5.0/dlls/dinput/joystick_osx.c:1245:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput->crit); data/wine-5.0/dlls/dinput/keyboard.c:140:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->base.crit); data/wine-5.0/dlls/dinput/keyboard.c:268:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newDevice->base.crit); data/wine-5.0/dlls/dinput/keyboard.c:294:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput->crit); data/wine-5.0/dlls/dinput/keyboard.c:374:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->base.crit); data/wine-5.0/dlls/dinput/mouse.c:213:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newDevice->base.crit); data/wine-5.0/dlls/dinput/mouse.c:245:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dinput->crit); data/wine-5.0/dlls/dinput/mouse.c:325:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->base.crit); data/wine-5.0/dlls/dinput/mouse.c:560:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->base.crit); data/wine-5.0/dlls/dmime/performance.c:124:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->safe); data/wine-5.0/dlls/dmime/performance.c:418:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->safe); data/wine-5.0/dlls/dmime/performance.c:530:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->safe); data/wine-5.0/dlls/dmime/performance.c:1252:2: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&obj->safe); data/wine-5.0/dlls/dplayx/dplay.c:5705:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &obj->lock ); data/wine-5.0/dlls/dplayx/dplayx_messages.c:165:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplayx_messages.c:423:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:961:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:1027:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:1047:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:1320:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:1493:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:1556:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &This->lock ); data/wine-5.0/dlls/dplayx/dplobby.c:2053:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &obj->lock ); data/wine-5.0/dlls/dsound/capture.c:329:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->device->lock); data/wine-5.0/dlls/dsound/capture.c:402:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(This->device->lock)); data/wine-5.0/dlls/dsound/capture.c:457:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(This->device->lock)); data/wine-5.0/dlls/dsound/capture.c:503:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(This->device->lock)); data/wine-5.0/dlls/dsound/capture.c:543:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(This->device->lock)); data/wine-5.0/dlls/dsound/capture.c:842:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &(device->lock) ); data/wine-5.0/dlls/dsound/capture.c:859:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&DSOUND_capturers_lock); data/wine-5.0/dlls/dsound/capture.c:964:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&buffer->device->lock); data/wine-5.0/dlls/dsound/capture.c:1035:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&DSOUND_capturers_lock); data/wine-5.0/dlls/dsound/dsound.c:181:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&(device->mixlock)); data/wine-5.0/dlls/dsound/dsound.c:212:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&DSOUND_renderers_lock); data/wine-5.0/dlls/dsound/dsound.c:302:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&DSOUND_renderers_lock); data/wine-5.0/dlls/dsound/dsound.c:873:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dsound/mixer.c:672:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dsound/primary.c:397:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(device->mixlock)); data/wine-5.0/dlls/dsound/primary.c:476:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(device->mixlock)); data/wine-5.0/dlls/dsound/primary.c:556:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dsound/primary.c:616:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dsound/primary.c:727:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(device->mixlock)); data/wine-5.0/dlls/dsound/primary.c:912:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dsound/primary.c:972:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->mixlock); data/wine-5.0/dlls/dwrite/font.c:4898:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&local_fontfile_loader.cs); data/wine-5.0/dlls/dwrite/font.c:5100:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/dwrite/font.c:5174:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&local_fontfile_loader.cs); data/wine-5.0/dlls/dwrite/freetype.c:261:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:278:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:311:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:510:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:571:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:584:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:605:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:618:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:687:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:819:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:865:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/freetype.c:904:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&freetype_cs); data/wine-5.0/dlls/dwrite/main.c:598:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&factory->cs); data/wine-5.0/dlls/dwrite/main.c:853:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&factory->cs); data/wine-5.0/dlls/dwrite/main.c:898:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&factory->cs); data/wine-5.0/dlls/dwrite/main.c:950:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&factory->cs); data/wine-5.0/dlls/dwrite/main.c:1884:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&factory->cs); data/wine-5.0/dlls/dxgi/tests/dxgi.c:5775:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. use_mt = !getenv("WINETEST_NO_MT_D3D"); data/wine-5.0/dlls/gdi32/dibdrv/graphics.c:575:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &font_cache_cs ); data/wine-5.0/dlls/gdi32/driver.c:179:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:196:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:1332:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:1372:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:1401:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:1422:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/driver.c:1445:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &driver_section ); data/wine-5.0/dlls/gdi32/freetype.c:3059:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:3310:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:3355:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:3390:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:4354:67: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (ptr[0] == '~' && ptr[1] == '/' && (home = getenv( "HOME" )) && data/wine-5.0/dlls/gdi32/freetype.c:5603:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:6289:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:6318:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:6635:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8278:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8299:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8324:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8449:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8511:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8540:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8570:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8603:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:8779:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/freetype.c:9008:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &freetype_cs ); data/wine-5.0/dlls/gdi32/gdiobj.c:494:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:550:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:566:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:583:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:767:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:792:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:832:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:858:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:877:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:951:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1013:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1041:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1086:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1117:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1145:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1225:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/gdi32/gdiobj.c:1246:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &gdi_section ); data/wine-5.0/dlls/hidclass.sys/buffer.c:75:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:109:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:133:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:194:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:213:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/hidclass.sys/buffer.c:223:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ring->lock); data/wine-5.0/dlls/http.sys/http.c:1025:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1079:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1150:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1185:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1215:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1264:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1340:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/http.sys/http.c:1353:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&http_cs); data/wine-5.0/dlls/imm32/imm.c:257:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/imm32/imm.c:282:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/imm32/imm.c:537:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/imm32/imm.c:1687:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/inetcomm/mimeintl.c:250:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/inetcomm/mimeintl.c:268:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/inetcomm/mimeintl.c:288:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/inetcomm/mimeintl.c:530:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&global_internat->cs); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1278:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&res_init_cs); data/wine-5.0/dlls/itss/chm_lib.c:71:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&(a)); \ data/wine-5.0/dlls/itss/chm_lib.c:714:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->mutex); data/wine-5.0/dlls/itss/chm_lib.c:716:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->lzx_mutex); data/wine-5.0/dlls/itss/chm_lib.c:718:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->cache_mutex); data/wine-5.0/dlls/itss/chm_lib.c:848:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->mutex); data/wine-5.0/dlls/itss/chm_lib.c:850:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->lzx_mutex); data/wine-5.0/dlls/itss/chm_lib.c:852:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&newHandle->cache_mutex); data/wine-5.0/dlls/jsproxy/main.c:109:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &cs_jsproxy ); data/wine-5.0/dlls/jsproxy/main.c:157:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &cs_jsproxy ); data/wine-5.0/dlls/jsproxy/main.c:600:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &cs_jsproxy ); data/wine-5.0/dlls/kernel32/console.c:627:14: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((p = getenv("WINECONSOLE")) != NULL) data/wine-5.0/dlls/kernel32/term.c:417:10: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!getenv("TERM")) return FALSE; data/wine-5.0/dlls/kernel32/tests/file.c:201:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand( (unsigned)time( NULL ) ); data/wine-5.0/dlls/kernel32/tests/file.c:644:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand( (unsigned)time( NULL ) ); data/wine-5.0/dlls/kernel32/tests/loader.c:2238:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_lock); data/wine-5.0/dlls/kernel32/tests/loader.c:2354:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_lock); data/wine-5.0/dlls/kernel32/tests/loader.c:2682:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&cs_lock); data/wine-5.0/dlls/kernel32/tests/sync.c:1605:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&buffercrit); data/wine-5.0/dlls/kernel32/tests/sync.c:1630:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&buffercrit); data/wine-5.0/dlls/kernel32/tests/sync.c:1672:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&buffercrit); data/wine-5.0/dlls/kernel32/tests/sync.c:1755:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1759:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1764:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1803:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1813:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1819:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1825:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1832:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1838:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1892:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:1897:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection (&condvar_crit); data/wine-5.0/dlls/kernel32/tests/sync.c:2648:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&cs); data/wine-5.0/dlls/kernelbase/security.c:1309:13: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. BOOL WINAPI AddAccessAllowedAce( PACL acl, DWORD rev, DWORD access, PSID sid ) data/wine-5.0/dlls/localspl/localmon.c:433:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&port_handles_cs); data/wine-5.0/dlls/localspl/localmon.c:534:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&port_handles_cs); data/wine-5.0/dlls/localspl/localmon.c:561:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xcv_handles_cs); data/wine-5.0/dlls/localspl/localmon.c:744:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xcv_handles_cs); data/wine-5.0/dlls/localspl/provider.c:332:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:362:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:483:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:706:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:763:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:2044:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/localspl/provider.c:2272:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&monitor_handles_cs); data/wine-5.0/dlls/mapi32/prop.c:1481:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/mapi32/prop.c:2338:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&lpPropData->cs); data/wine-5.0/dlls/mciavi32/info.c:85:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/info.c:203:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/info.c:235:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/info.c:373:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:87:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:117:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:225:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:317:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:357:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:440:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:451:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:457:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:471:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:561:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:607:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:626:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:647:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:656:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:663:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:670:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:700:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:727:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:836:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:870:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mciavi.c:916:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/mmoutput.c:507:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/wnd.c:59:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/wnd.c:164:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/wnd.c:220:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mciavi32/wnd.c:287:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wma->cs); data/wine-5.0/dlls/mcicda/mcicda.c:130:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wmcda->cs); data/wine-5.0/dlls/mcicda/mcicda.c:204:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&wmcda->cs); data/wine-5.0/dlls/mf/main.c:778:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&handler->cs); data/wine-5.0/dlls/mf/main.c:817:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&handler->cs); data/wine-5.0/dlls/mf/main.c:963:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&handler->cs); data/wine-5.0/dlls/mf/main.c:1006:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&handler->cs); data/wine-5.0/dlls/mf/samplegrabber.c:431:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mf/samplegrabber.c:495:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mf/samplegrabber.c:515:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mf/samplegrabber.c:739:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mf/samplegrabber.c:915:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:940:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:964:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1007:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1032:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1037:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->stream->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1092:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&grabber->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1271:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mf/samplegrabber.c:1320:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mf/session.c:403:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:578:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:880:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1049:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1095:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1135:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1335:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1366:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/mf/session.c:1527:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mf/session.c:1664:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1680:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1703:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1717:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1733:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1764:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1788:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1814:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:1847:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2050:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2066:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2081:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2137:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2158:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/mf/session.c:2337:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mf/topology.c:190:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:213:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection->cs); data/wine-5.0/dlls/mf/topology.c:1277:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1314:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1396:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1397:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection->cs); data/wine-5.0/dlls/mf/topology.c:1461:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1492:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1522:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1550:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1575:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1609:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1651:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&node->cs); data/wine-5.0/dlls/mf/topology.c:1764:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&(*node)->cs); data/wine-5.0/dlls/mfplat/buffer.c:569:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:582:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:596:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:612:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:627:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:643:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:660:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:674:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:694:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:721:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:742:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:767:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:786:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sample->cs); data/wine-5.0/dlls/mfplat/buffer.c:876:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:1156:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1179:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1196:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1216:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1242:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1355:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1378:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1402:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1452:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1475:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1537:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1587:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1608:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1689:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1703:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1714:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:1735:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&attributes->cs); data/wine-5.0/dlls/mfplat/main.c:2069:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:2569:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2774:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2796:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2934:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2961:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2976:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:2994:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:3016:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:3038:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:3172:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:3204:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfplat/main.c:3267:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:3436:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:4883:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&resolver->cs); data/wine-5.0/dlls/mfplat/main.c:5120:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&local_handlers_section); data/wine-5.0/dlls/mfplat/main.c:5187:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&local_handlers_section); data/wine-5.0/dlls/mfplat/main.c:5291:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&resolver->cs); data/wine-5.0/dlls/mfplat/main.c:5630:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:6201:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/main.c:6251:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/main.c:6282:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/main.c:6312:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/main.c:6387:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/main.c:6432:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:6885:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:6917:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7028:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7046:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7061:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7079:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7102:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfplat/main.c:7141:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/main.c:7246:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&async_create_file_cs); data/wine-5.0/dlls/mfplat/main.c:7359:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&async_create_file_cs); data/wine-5.0/dlls/mfplat/main.c:7435:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&local_handlers_section); data/wine-5.0/dlls/mfplat/main.c:7465:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&local_handlers_section); data/wine-5.0/dlls/mfplat/main.c:7549:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/mfplat/main.c:7561:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/mfplat/main.c:7588:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/mfplat/main.c:7611:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&store->cs); data/wine-5.0/dlls/mfplat/main.c:7673:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1090:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1107:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1127:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1178:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1555:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&presentation_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1574:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&presentation_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1590:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&presentation_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1612:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&presentation_desc->cs); data/wine-5.0/dlls/mfplat/mediatype.c:1679:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfplat/queue.c:189:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/queue.c:218:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfplat/queue.c:246:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfplat/queue.c:267:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfplat/queue.c:289:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/queue.c:308:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfplat/queue.c:329:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfplat/queue.c:415:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&item->queue->cs); data/wine-5.0/dlls/mfplat/queue.c:489:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&item->queue->cs); data/wine-5.0/dlls/mfplat/queue.c:560:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/mfplat/queue.c:598:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queues_section); data/wine-5.0/dlls/mfreadwrite/main.c:297:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&reader->cs); data/wine-5.0/dlls/mfreadwrite/main.c:406:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&reader->streams[i].cs); data/wine-5.0/dlls/mfreadwrite/main.c:442:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&reader->streams[i].cs); data/wine-5.0/dlls/mfreadwrite/main.c:745:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&reader->cs); data/wine-5.0/dlls/mfreadwrite/main.c:779:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&reader->cs); data/wine-5.0/dlls/mfreadwrite/main.c:907:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&stream->cs); data/wine-5.0/dlls/mfreadwrite/main.c:1138:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/mfreadwrite/main.c:1184:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->streams[i].cs); data/wine-5.0/dlls/mfreadwrite/tests/mfplat.c:301:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfreadwrite/tests/mfplat.c:365:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&source->cs); data/wine-5.0/dlls/mfreadwrite/tests/mfplat.c:466:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&source->cs); data/wine-5.0/dlls/mlang/mlang.c:1358:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&font_cache_critical); data/wine-5.0/dlls/mlang/mlang.c:1391:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&font_cache_critical); data/wine-5.0/dlls/mlang/mlang.c:1411:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&font_cache_critical); data/wine-5.0/dlls/mlang/mlang.c:1433:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&font_cache_critical); data/wine-5.0/dlls/mmdevapi/devenum.c:320:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&cur->crst); data/wine-5.0/dlls/mmdevapi/devenum.c:1227:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_notif_lock); data/wine-5.0/dlls/mmdevapi/devenum.c:1264:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_notif_lock); data/wine-5.0/dlls/mmdevapi/devenum.c:1289:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_notif_lock); data/wine-5.0/dlls/mmsystem.dll16/message16.c:862:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdrv_cs); data/wine-5.0/dlls/mmsystem.dll16/message16.c:951:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdrv_cs); data/wine-5.0/dlls/mmsystem.dll16/mmio16.c:248:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmio_cs); data/wine-5.0/dlls/mmsystem.dll16/mmio16.c:299:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmio_cs); data/wine-5.0/dlls/mmsystem.dll16/mmio16.c:351:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmio_cs); data/wine-5.0/dlls/mmsystem.dll16/mmio16.c:509:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmio_cs); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:171:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdrv_cs); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:194:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdrv_cs); data/wine-5.0/dlls/mountmgr.sys/device.c:847:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mountmgr.sys/device.c:872:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mountmgr.sys/device.c:899:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mountmgr.sys/device.c:983:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mountmgr.sys/device.c:1029:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mountmgr.sys/device.c:1123:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &device_section ); data/wine-5.0/dlls/mscms/handle.c:71:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscms/handle.c:91:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscms/handle.c:138:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscms/handle.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscms/handle.c:219:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscms/handle.c:235:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mscms_handle_cs ); data/wine-5.0/dlls/mscoree/corruntimehost.c:135:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/mscoree/corruntimehost.c:173:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/mscoree/corruntimehost.c:233:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/mscoree/corruntimehost.c:1621:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/mscoree/metahost.c:346:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&runtime_list_cs); data/wine-5.0/dlls/mscoree/metahost.c:1159:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&runtime_list_cs); data/wine-5.0/dlls/mscoree/metahost.c:1379:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *override_string = getenv("WINE_MONO_OVERRIDES"); data/wine-5.0/dlls/mshtml/dispex.c:1463:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_dispex_static_data); data/wine-5.0/dlls/mshtml/dispex.c:1923:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_dispex_static_data); data/wine-5.0/dlls/mshtml/nsembed.c:819:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_load_gecko); data/wine-5.0/dlls/mshtml/pluginhost.c:2553:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_install_list); data/wine-5.0/dlls/msi/custom.c:397:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/custom.c:439:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/custom.c:688:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&msi_custom_action_cs); data/wine-5.0/dlls/msi/custom.c:739:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/custom.c:1098:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/custom.c:1472:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/custom.c:1496:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msi_custom_action_cs ); data/wine-5.0/dlls/msi/handle.c:116:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:140:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:187:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:233:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_object_cs ); data/wine-5.0/dlls/msi/handle.c:279:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:331:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msi/handle.c:338:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &MSI_handle_cs ); data/wine-5.0/dlls/msvcirt/msvcirt.c:351:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&this->lock); data/wine-5.0/dlls/msvcirt/msvcirt.c:554:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&this->lock); data/wine-5.0/dlls/msvcirt/msvcirt.c:1813:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&this->lock); data/wine-5.0/dlls/msvcirt/msvcirt.c:1835:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&this->lock); data/wine-5.0/dlls/msvcirt/msvcirt.c:2104:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&this->lock); data/wine-5.0/dlls/msvcirt/msvcirt.c:2119:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ios_static_lock); data/wine-5.0/dlls/msvcp90/misc.c:271:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(cs); data/wine-5.0/dlls/msvcp90/misc.c:292:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(this->mutex); data/wine-5.0/dlls/msvcp90/misc.c:349:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&init_locks_cs); data/wine-5.0/dlls/msvcp90/misc.c:354:13: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&lockit_cs[i]); data/wine-5.0/dlls/msvcp90/misc.c:377:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&init_locks_cs); data/wine-5.0/dlls/msvcp90/misc.c:409:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lockit_cs[locktype]); data/wine-5.0/dlls/msvcp90/misc.c:974:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&broadcast_at_thread_exit_cs); data/wine-5.0/dlls/msvcp90/misc.c:1008:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&broadcast_at_thread_exit_cs); data/wine-5.0/dlls/msvcp90/misc.c:1027:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&broadcast_at_thread_exit_cs); data/wine-5.0/dlls/msvcp90/misc.c:1193:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&call_once_cs); data/wine-5.0/dlls/msvcp90/misc.c:2634:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(*mtx); data/wine-5.0/dlls/msvcp90/misc.c:2644:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(mtx); data/wine-5.0/dlls/msvcrt/exit.c:71:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&MSVCRT_onexit_cs); data/wine-5.0/dlls/msvcrt/exit.c:115:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&MSVCRT_onexit_cs); data/wine-5.0/dlls/msvcrt/file.c:157:30: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. #define LOCK_FILES() do { EnterCriticalSection(&MSVCRT_file_cs); } while (0) data/wine-5.0/dlls/msvcrt/file.c:261:13: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&info->crit); data/wine-5.0/dlls/msvcrt/file.c:274:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ret->crit); data/wine-5.0/dlls/msvcrt/file.c:465:15: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&((file_crit*)file)->crit); data/wine-5.0/dlls/msvcrt/file.c:1320:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&((file_crit*)file)->crit); data/wine-5.0/dlls/msvcrt/lock.c:51:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &(lock_table[ locknum ].crit) ); data/wine-5.0/dlls/msvcrt/lock.c:110:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &(lock_table[ locknum ].crit) ); data/wine-5.0/dlls/msvcrt/lock.c:1400:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&this->cs); data/wine-5.0/dlls/msvcrt/lock.c:1422:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&this->cs); data/wine-5.0/dlls/msvcrt/scheduler.c:667:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&this->cs); data/wine-5.0/dlls/msvcrt/scheduler.c:782:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&this->cs); data/wine-5.0/dlls/msvcrt/scheduler.c:804:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&default_scheduler_cs); data/wine-5.0/dlls/msvcrt/scheduler.c:817:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&default_scheduler_cs); data/wine-5.0/dlls/msvcrt/scheduler.c:871:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&default_scheduler_cs); data/wine-5.0/dlls/msvcrt/tests/dir.c:451:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv("TEST_PATH")) { data/wine-5.0/dlls/msvcrt/tests/environ.c:247:16: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. ok( strcmp(getenv("cat"), "dog") == 0, "getenv did not return 'dog'\n" ); data/wine-5.0/dlls/msvcrt/tests/environ.c:254:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. ok( getenv("nonexistent") == NULL, "getenv should fail with nonexistent var name\n" ); data/wine-5.0/dlls/msvcrt/tests/file.c:1661:9: [3] (tmpfile) tmpnam: Temporary file race condition (CWE-377). res = tmpnam(NULL); data/wine-5.0/dlls/msvcrt/tests/file.c:1667:9: [3] (tmpfile) tmpnam: Temporary file race condition (CWE-377). res = tmpnam(name); data/wine-5.0/dlls/msvcrt/tests/misc.c:471:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(0); data/wine-5.0/dlls/msvcrt/tests/time.c:314:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvcrt/tests/time.c:314:48: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvcrt/tests/time.c:344:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvcrt/tests/time.c:344:48: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvcrt/tests/time.c:927:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvcrt/tests/time.c:927:48: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. _snprintf(TZ_env,255,"TZ=%s",(getenv("TZ")?getenv("TZ"):"")); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:793:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&msvideo_cs); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:852:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&msvideo_cs); data/wine-5.0/dlls/msxml3/dispex.c:332:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_dispex_static_data); data/wine-5.0/dlls/netapi32/nbcmdqueue.c:64:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&queue->cs); data/wine-5.0/dlls/netapi32/nbcmdqueue.c:83:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/netapi32/nbcmdqueue.c:119:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/netapi32/nbcmdqueue.c:151:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/netapi32/nbcmdqueue.c:177:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&queue->cs); data/wine-5.0/dlls/netapi32/nbnamecache.c:106:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&cache->cs); data/wine-5.0/dlls/netapi32/nbnamecache.c:122:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache->cs); data/wine-5.0/dlls/netapi32/nbnamecache.c:166:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache->cs); data/wine-5.0/dlls/netapi32/nbt.c:1044:25: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&session->cs); data/wine-5.0/dlls/netapi32/nbt.c:1137:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->cs); data/wine-5.0/dlls/netapi32/netbios.c:106:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:114:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:190:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:214:13: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&gNBTable.table[i].cs); data/wine-5.0/dlls/netapi32/netbios.c:236:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:262:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:306:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&gNBTable.cs); data/wine-5.0/dlls/netapi32/netbios.c:468:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&adapter->cs); data/wine-5.0/dlls/netapi32/netbios.c:510:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&adapter->cs); data/wine-5.0/dlls/netapi32/netbios.c:552:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&adapter->cs); data/wine-5.0/dlls/netapi32/netbios.c:637:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&adapter->cs); data/wine-5.0/dlls/ntdll/debugtools.c:171:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *wine_debug = getenv("WINEDEBUG"); data/wine-5.0/dlls/ntdll/env.c:397:48: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. set_wine_path_variable( env, winehomedirW, getenv("HOME") ); data/wine-5.0/dlls/ntdll/env.c:534:19: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(p = getenv(unix_vars[i]))) continue; data/wine-5.0/dlls/ntdll/env.c:547:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(p = getenv( unix_vars[i] ))) continue; data/wine-5.0/dlls/ntdll/env.c:606:11: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. pwd = getenv( "PWD" ); data/wine-5.0/dlls/ntdll/loadorder.c:231:25: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *order = getenv( "WINEDLLOVERRIDES" ); data/wine-5.0/dlls/ntdll/locale.c:486:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. unix_name = getenv( "LC_ALL" ); data/wine-5.0/dlls/ntdll/process.c:1008:30: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *loader_env = getenv( "WINELOADER" ); data/wine-5.0/dlls/ntdll/process.c:1167:60: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (argv) wine_exec_wine_binary( loader, argv, getenv("WINELOADER") ); data/wine-5.0/dlls/ntdll/process.c:1222:46: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. wine_exec_wine_binary( loader, argv, getenv("WINELOADER") ); data/wine-5.0/dlls/ntdll/process.c:1591:13: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv( "WINEPRELOADRESERVE" )) data/wine-5.0/dlls/ntdll/server.c:1118:51: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. wine_exec_wine_binary( argv[0], argv, getenv("WINESERVER") ); data/wine-5.0/dlls/ntdll/server.c:1381:30: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *env_socket = getenv( "WINESERVERSOCKET" ); data/wine-5.0/dlls/ntdll/server.c:1393:28: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *arch = getenv( "WINEARCH" ); data/wine-5.0/dlls/ntdll/server.c:1488:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *arch = getenv( "WINEARCH" ); data/wine-5.0/dlls/ntdll/tests/rtl.c:3082:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&info->crit); data/wine-5.0/dlls/ntdll/tests/rtl.c:3109:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&info.crit); data/wine-5.0/dlls/ntdll/tests/rtl.c:3120:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&info.crit); data/wine-5.0/dlls/ntdll/virtual.c:1964:20: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((preload = getenv("WINEPRELOADRESERVE"))) data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:186:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &obref_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:222:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &obref_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:268:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &handle_map_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:437:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &irp_completion_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:767:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &irp_completion_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1417:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drivers_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:1446:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drivers_cs ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2707:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&drivers_cs); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:72:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:114:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:255:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:286:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:339:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:379:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:430:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/ntoskrnl.exe/sync.c:448:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sync_cs ); data/wine-5.0/dlls/odbc32/proxyodbc.c:514:20: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *s = getenv("LIB_ODBC_DRIVER_MANAGER"); data/wine-5.0/dlls/ole32/clipboard.c:1052:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&latest_snapshot_cs); data/wine-5.0/dlls/ole32/clipboard.c:2247:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&latest_snapshot_cs); data/wine-5.0/dlls/ole32/compobj.c:493:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csOpenDllList); data/wine-5.0/dlls/ole32/compobj.c:543:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csOpenDllList ); data/wine-5.0/dlls/ole32/compobj.c:587:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csOpenDllList); data/wine-5.0/dlls/ole32/compobj.c:603:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csOpenDllList); data/wine-5.0/dlls/ole32/compobj.c:644:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:678:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:695:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:730:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:768:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csRegisteredClassList ); data/wine-5.0/dlls/ole32/compobj.c:783:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &cs_registered_psclsid_list ); data/wine-5.0/dlls/ole32/compobj.c:1002:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRegisteredClassList); data/wine-5.0/dlls/ole32/compobj.c:1029:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:1101:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csRegisteredClassList ); data/wine-5.0/dlls/ole32/compobj.c:1135:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:1176:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:1281:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:1305:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:1328:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csApartment); data/wine-5.0/dlls/ole32/compobj.c:1362:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:1592:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:2712:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_registered_psclsid_list); data/wine-5.0/dlls/ole32/compobj.c:2790:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_registered_psclsid_list); data/wine-5.0/dlls/ole32/compobj.c:2836:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csRegisteredClassList ); data/wine-5.0/dlls/ole32/compobj.c:2969:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csRegisteredClassList ); data/wine-5.0/dlls/ole32/compobj.c:4102:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/compobj.c:4203:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRegisteredClassList); data/wine-5.0/dlls/ole32/compobj.c:4234:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRegisteredClassList); data/wine-5.0/dlls/ole32/git.c:193:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&git_section); data/wine-5.0/dlls/ole32/git.c:222:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&git_section); data/wine-5.0/dlls/ole32/git.c:260:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&git_section); data/wine-5.0/dlls/ole32/ifs.c:175:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:210:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:262:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:299:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:324:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:345:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:469:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/ifs.c:505:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&IMalloc32_SpyCS); data/wine-5.0/dlls/ole32/marshal.c:833:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/marshal.c:858:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/marshal.c:1025:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/marshal.c:1044:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/marshal.c:1067:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/marshal.c:1104:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/marshal.c:1164:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->cs); data/wine-5.0/dlls/ole32/marshal.c:1205:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/moniker.c:646:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:667:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:709:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:781:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:859:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:927:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/ole32/moniker.c:1049:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&runningObjectTableInstance->lock); data/wine-5.0/dlls/ole32/rpc.c:197:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:240:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:281:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:315:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:359:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:401:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:438:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:450:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csChannelHook); data/wine-5.0/dlls/ole32/rpc.c:1538:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRegIf); data/wine-5.0/dlls/ole32/rpc.c:1590:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRegIf); data/wine-5.0/dlls/ole32/stg_prop.c:493:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:748:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:848:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:891:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:934:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:967:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:999:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:1019:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/ole32/stg_prop.c:2252:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&(*pps)->cs); data/wine-5.0/dlls/ole32/stubmanager.c:110:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:142:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:163:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:192:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&sm->lock); data/wine-5.0/dlls/ole32/stubmanager.c:234:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:248:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:301:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:316:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:350:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:385:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:413:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:444:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:479:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/ole32/stubmanager.c:573:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&m->lock); data/wine-5.0/dlls/ole32/stubmanager.c:823:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&apt->cs); data/wine-5.0/dlls/oleaut32/oleaut.c:146:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_bstr_cache); data/wine-5.0/dlls/oleaut32/oleaut.c:291:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_bstr_cache); data/wine-5.0/dlls/oleaut32/olefont.c:97:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:107:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:146:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:157:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:178:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:199:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:217:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/olefont.c:542:7: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&OLEFontImpl_csHFONTLIST); data/wine-5.0/dlls/oleaut32/typelib.c:3365:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache_section); data/wine-5.0/dlls/oleaut32/typelib.c:3416:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache_section); data/wine-5.0/dlls/oleaut32/typelib.c:4757:11: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache_section); data/wine-5.0/dlls/oleaut32/variant.c:1528:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cache_cs); data/wine-5.0/dlls/openal32/openal.c:172:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&openal_cs); data/wine-5.0/dlls/openal32/openal.c:823:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&openal_cs); data/wine-5.0/dlls/opengl32/wgl.c:115:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &wgl_section ); data/wine-5.0/dlls/opengl32/wgl.c:134:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &wgl_section ); data/wine-5.0/dlls/pdh/pdh_main.c:268:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:372:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:397:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:412:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:463:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:492:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:520:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:539:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:582:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:650:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:692:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:736:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:775:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:808:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:1000:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/pdh/pdh_main.c:1023:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &pdh_handle_cs ); data/wine-5.0/dlls/propsys/propstore.c:144:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:167:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:281:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:308:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:341:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:365:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:395:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:417:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/propsys/propstore.c:467:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/qcap/capturegraph.c:98:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pCapture->csFilter); data/wine-5.0/dlls/qcap/smartteefilter.c:103:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qcap/smartteefilter.c:221:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qcap/smartteefilter.c:230:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qcap/smartteefilter.c:269:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->filter.csFilter); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1142:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1152:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1198:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1218:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1227:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1240:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1279:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1290:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1593:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1641:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1666:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1683:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1877:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/qedit/samplegrabber.c:148:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qedit/samplegrabber.c:277:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qedit/samplegrabber.c:297:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/qmgr/enum_files.c:200:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/enum_jobs.c:196:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&qmgr->cs); data/wine-5.0/dlls/qmgr/file.c:124:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&file->owner->cs); data/wine-5.0/dlls/qmgr/file.c:244:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/file.c:256:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/file.c:411:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/file.c:439:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/file.c:501:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/file.c:540:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/job.c:34:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&globalMgr.cs); data/wine-5.0/dlls/qmgr/job.c:298:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:361:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&globalMgr.cs); data/wine-5.0/dlls/qmgr/job.c:396:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:413:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:444:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:515:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:605:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:894:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/job.c:929:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/job.c:1107:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/job.c:1138:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/job.c:1210:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/qmgr/job.c:1272:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&job->cs); data/wine-5.0/dlls/qmgr/qmgr.c:71:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&globalMgr.cs); data/wine-5.0/dlls/qmgr/qmgr.c:90:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&qmgr->cs); data/wine-5.0/dlls/qmgr/qmgr.c:175:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&qmgr->cs); data/wine-5.0/dlls/quartz/avidec.c:80:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->tf.filter.csFilter); data/wine-5.0/dlls/quartz/dsoundrender.c:225:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.csRenderLock); data/wine-5.0/dlls/quartz/dsoundrender.c:249:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.csRenderLock); data/wine-5.0/dlls/quartz/filesource.c:478:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->sample_cs); data/wine-5.0/dlls/quartz/filesource.c:786:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->sample_cs); data/wine-5.0/dlls/quartz/filesource.c:857:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->sample_cs); data/wine-5.0/dlls/quartz/filesource.c:872:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->sample_cs); data/wine-5.0/dlls/quartz/filesource.c:1074:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->sample_cs); data/wine-5.0/dlls/quartz/filesource.c:1092:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->sample_cs); data/wine-5.0/dlls/quartz/filtergraph.c:77:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&omr->msg_crst); data/wine-5.0/dlls/quartz/filtergraph.c:93:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&omr->msg_crst); data/wine-5.0/dlls/quartz/filtergraph.c:125:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&omr->msg_crst); data/wine-5.0/dlls/quartz/filtergraph.c:929:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:1122:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:1447:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2325:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2345:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2463:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2487:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2522:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:2583:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3124:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3144:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3164:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3184:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3300:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3320:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3340:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3360:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3380:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3400:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3420:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3440:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3460:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3480:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3500:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3520:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3540:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3560:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3580:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3600:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3620:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3640:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3660:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3680:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3701:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3722:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3743:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3763:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3805:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3825:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3845:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3866:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3887:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3907:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3927:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:3948:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4093:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4113:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4133:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4153:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4173:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4193:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4213:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4233:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4253:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4273:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4293:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4314:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4334:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4354:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4374:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4394:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4414:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4434:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4454:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4474:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4494:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4514:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4534:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4554:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4574:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4594:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4614:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4634:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4654:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4674:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4694:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4715:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4736:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4757:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4778:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4799:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4820:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4840:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:4860:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5200:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5227:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5260:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5297:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&graph->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5321:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5372:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5432:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->evqueue.msg_crst); data/wine-5.0/dlls/quartz/filtergraph.c:5528:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/quartz/filtergraph.c:5723:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&fimpl->cs); data/wine-5.0/dlls/quartz/memallocator.c:169:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:201:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:217:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:261:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:307:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:321:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:328:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:367:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(This->pCritSect); data/wine-5.0/dlls/quartz/memallocator.c:924:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pMemAlloc->csState); data/wine-5.0/dlls/quartz/systemclock.c:137:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/quartz/systemclock.c:213:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/quartz/systemclock.c:249:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/quartz/systemclock.c:285:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/quartz/systemclock.c:302:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clock->cs); data/wine-5.0/dlls/quartz/systemclock.c:348:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->cs); data/wine-5.0/dlls/quartz/videorenderer.c:187:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->renderer.csRenderLock); data/wine-5.0/dlls/quartz/videorenderer.c:368:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:328:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.csRenderLock); data/wine-5.0/dlls/quartz/vmr9.c:633:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pVMR9->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:1365:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:1507:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:1708:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:1762:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/quartz/vmr9.c:1779:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->renderer.filter.csFilter); data/wine-5.0/dlls/riched20/tests/editor.c:9039:7: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv( "WINETEST_RICHED20" )) { data/wine-5.0/dlls/riched20/txtsrv.c:398:4: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ITextImpl->csTxtSrv); data/wine-5.0/dlls/riched32/tests/editor.c:1468:7: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv( "WINETEST_RICHED32" )) { data/wine-5.0/dlls/rpcrt4/cstub.c:295:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&delegating_vtbl_section); data/wine-5.0/dlls/rpcrt4/cstub.c:329:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&delegating_vtbl_section); data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c:83:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ndr_context_cs); data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c:105:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ndr_context_cs); data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c:128:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ndr_context_cs); data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c:215:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ndr_context_cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:75:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:105:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc_list_cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:145:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc_list_cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:191:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc_list_cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:370:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:441:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:473:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:492:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:526:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_assoc.c:571:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&assoc->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:141:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:677:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:692:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:698:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:702:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:731:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:752:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:766:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:788:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:806:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:814:7: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:825:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:840:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:877:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:881:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:894:7: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ps->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:968:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&(*ps)->cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:996:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1105:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1193:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1218:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1376:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_auth_info_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1404:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_auth_info_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1475:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_auth_info_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1550:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1561:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1569:7: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&server_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1582:7: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_server.c:1714:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&listen_cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:229:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:289:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:652:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:748:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1335:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1530:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1608:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1759:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&httpc->async_data->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3352:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&old_connection->protseq->cs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3393:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection->protseq->cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:123:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:400:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&uuid_cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:938:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&tdata->cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:942:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:957:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&tdata->cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:1035:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&threaddata_cs); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:1039:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&tdata->cs); data/wine-5.0/dlls/rsaenh/handle.c:57:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/rsaenh/handle.c:100:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/rsaenh/handle.c:186:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/rsaenh/handle.c:235:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/rsaenh/handle.c:278:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/rsaenh/handle.c:314:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpTable->mutex); data/wine-5.0/dlls/schedsvc/atsvc.c:290:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:625:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:906:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:944:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1035:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1056:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1076:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1109:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1150:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1203:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/schedsvc/atsvc.c:1247:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&at_job_list_section); data/wine-5.0/dlls/scrrun/filesystem.c:3328:11: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. DWORD random; data/wine-5.0/dlls/scrrun/filesystem.c:3339:23: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if(!RtlGenRandom(&random, sizeof(random))) data/wine-5.0/dlls/scrrun/filesystem.c:3339:38: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if(!RtlGenRandom(&random, sizeof(random))) data/wine-5.0/dlls/scrrun/filesystem.c:3341:37: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. swprintf(*pbstrResult, 12, fmt, random & 0xfffff); data/wine-5.0/dlls/secur32/schannel_macosx.c:764:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&s->cs); data/wine-5.0/dlls/secur32/schannel_macosx.c:1121:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&s->cs); data/wine-5.0/dlls/secur32/schannel_macosx.c:1158:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&s->cs); data/wine-5.0/dlls/secur32/secur32.c:405:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs); data/wine-5.0/dlls/secur32/secur32.c:454:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs); data/wine-5.0/dlls/secur32/secur32.c:678:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs); data/wine-5.0/dlls/secur32/secur32.c:742:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs); data/wine-5.0/dlls/setupapi/misc.c:1642:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&setupapi_cs); data/wine-5.0/dlls/setupapi/misc.c:1663:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&setupapi_cs); data/wine-5.0/dlls/setupapi/misc.c:1714:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&setupapi_cs); data/wine-5.0/dlls/shell32/changenotify.c:143:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_ChangenotifyCS); data/wine-5.0/dlls/shell32/changenotify.c:189:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_ChangenotifyCS); data/wine-5.0/dlls/shell32/changenotify.c:207:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_ChangenotifyCS); data/wine-5.0/dlls/shell32/changenotify.c:331:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_ChangenotifyCS); data/wine-5.0/dlls/shell32/iconcache.c:126:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &SHELL32_SicCS ); data/wine-5.0/dlls/shell32/iconcache.c:320:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_SicCS); data/wine-5.0/dlls/shell32/iconcache.c:513:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_SicCS); data/wine-5.0/dlls/shell32/iconcache.c:553:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&SHELL32_SicCS); data/wine-5.0/dlls/shell32/shellpath.c:4513:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. pszHome = getenv("HOME"); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:407:16: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. pElement = realpath(pszUnixPath, szPath); data/wine-5.0/dlls/shell32/shlfileop.c:1747:13: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. LPCWSTR realpath; data/wine-5.0/dlls/shell32/shlfileop.c:1782:33: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. SHCreateDirectoryExW(0, realpath, NULL); data/wine-5.0/dlls/shell32/shlfileop.c:1786:30: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. res = GetFileAttributesW(realpath); data/wine-5.0/dlls/shell32/tests/shelllink.c:619:10: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. char realpath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:662:35: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (!GetLongPathNameA(mypath, realpath, MAX_PATH)) data/wine-5.0/dlls/shell32/tests/shelllink.c:663:17: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcpy( realpath, mypath ); data/wine-5.0/dlls/shell32/tests/shelllink.c:668:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path=realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:679:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. p=strrchr(realpath, '.'); data/wine-5.0/dlls/shell32/tests/shelllink.c:685:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path=realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:693:12: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcat(realpath, ".exe"); data/wine-5.0/dlls/shell32/tests/shelllink.c:708:51: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. SearchPathA( NULL, desc.path, NULL, MAX_PATH, realpath, NULL); data/wine-5.0/dlls/shell32/tests/shelllink.c:709:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path=realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:724:52: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. SearchPathA( NULL, "rundll32", NULL, MAX_PATH, realpath, NULL); data/wine-5.0/dlls/shell32/tests/shelllink.c:725:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path=realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:759:12: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcpy(realpath, mypath); data/wine-5.0/dlls/shell32/tests/shelllink.c:760:12: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcat(realpath, "\\test.txt"); data/wine-5.0/dlls/shell32/tests/shelllink.c:774:15: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path=realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:787:12: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcpy(realpath, mypath); data/wine-5.0/dlls/shell32/tests/shelllink.c:804:17: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. desc.path = realpath; data/wine-5.0/dlls/shell32/tests/shelllink.c:807:21: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. r = DeleteFileA(realpath); data/wine-5.0/dlls/shell32/tests/shelllink.c:808:46: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. ok(r, "failed to delete file %s (%d)\n", realpath, GetLastError()); data/wine-5.0/dlls/shell32/tests/shellpath.c:1493:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *envVal = getenv(envVar); data/wine-5.0/dlls/shell32/trash.c:423:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&TRASH_Creating); data/wine-5.0/dlls/shell32/xdg.c:113:17: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *env = getenv(paths[path_id].var_name); data/wine-5.0/dlls/shell32/xdg.c:126:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *home = getenv("HOME"); data/wine-5.0/dlls/shell32/xdg.c:170:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&XDG_PathsLock); data/wine-5.0/dlls/shell32/xdg.c:754:19: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. config_home = getenv("XDG_CONFIG_HOME"); data/wine-5.0/dlls/shell32/xdg.c:903:16: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. home_dir = getenv("HOME"); data/wine-5.0/dlls/shlwapi/ordinal.c:4290:26: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. if (!AddAccessAllowedAce(pAcl, ACL_REVISION, sup->dwAccessMask, sid)) data/wine-5.0/dlls/spoolss/router.c:182:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&backend_cs); data/wine-5.0/dlls/spoolss/router.c:217:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&backend_cs); data/wine-5.0/dlls/spoolss/router.c:271:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&backend_cs); data/wine-5.0/dlls/spoolss/router.c:299:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&backend_cs); data/wine-5.0/dlls/strmbase/filter.c:133:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csFilter); data/wine-5.0/dlls/strmbase/filter.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csFilter); data/wine-5.0/dlls/strmbase/filter.c:175:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csFilter); data/wine-5.0/dlls/strmbase/filter.c:196:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csFilter); data/wine-5.0/dlls/strmbase/filter.c:212:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csFilter); data/wine-5.0/dlls/strmbase/filter.c:230:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csFilter); data/wine-5.0/dlls/strmbase/filter.c:290:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csFilter); data/wine-5.0/dlls/strmbase/filter.c:343:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&filter->csFilter); data/wine-5.0/dlls/strmbase/outputqueue.c:72:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:79:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:101:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:132:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:168:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:182:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:207:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/outputqueue.c:243:21: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pOutputQueue->csQueue); data/wine-5.0/dlls/strmbase/pin.c:129:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:155:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:270:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:358:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:471:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:491:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:638:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:687:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pin->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:723:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:745:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pin->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pin.c:771:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pin->pin.filter->csFilter); data/wine-5.0/dlls/strmbase/pospass.c:259:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&fimpl->time_cs); data/wine-5.0/dlls/strmbase/pospass.c:457:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->time_cs); data/wine-5.0/dlls/strmbase/pospass.c:591:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->time_cs); data/wine-5.0/dlls/strmbase/pospass.c:601:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->time_cs); data/wine-5.0/dlls/strmbase/pospass.c:613:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->time_cs); data/wine-5.0/dlls/strmbase/renderer.c:206:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csRenderLock); data/wine-5.0/dlls/strmbase/renderer.c:242:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csRenderLock); data/wine-5.0/dlls/strmbase/renderer.c:329:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csRenderLock); data/wine-5.0/dlls/strmbase/renderer.c:369:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csRenderLock); data/wine-5.0/dlls/strmbase/renderer.c:428:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&filter->csRenderLock); data/wine-5.0/dlls/strmbase/seeking.c:52:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pSeeking->cs); data/wine-5.0/dlls/strmbase/seeking.c:114:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:128:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:150:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:163:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:177:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:224:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:259:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:273:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:295:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/seeking.c:310:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/strmbase/transform.c:69:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&pTransform->csReceive); data/wine-5.0/dlls/strmbase/transform.c:163:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/strmbase/transform.c:180:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/strmbase/transform.c:397:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&filter->csReceive); data/wine-5.0/dlls/urlmon/binding.c:1483:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->section); data/wine-5.0/dlls/urlmon/bindprot.c:42:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->section); data/wine-5.0/dlls/urlmon/bindprot.c:166:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->section); data/wine-5.0/dlls/urlmon/bindprot.c:1460:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->section); data/wine-5.0/dlls/urlmon/internet.c:525:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&process_features_cs); data/wine-5.0/dlls/urlmon/internet.c:641:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&process_features_cs); data/wine-5.0/dlls/urlmon/session.c:135:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:148:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:194:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:233:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:265:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:392:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:408:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:615:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:638:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:705:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/session.c:735:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session_cs); data/wine-5.0/dlls/urlmon/urlmon_main.c:82:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&tls_cs); data/wine-5.0/dlls/urlmon/urlmon_main.c:119:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&tls_cs); data/wine-5.0/dlls/user32/clipboard.c:696:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &clipboard_cs ); data/wine-5.0/dlls/user32/clipboard.c:751:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &clipboard_cs ); data/wine-5.0/dlls/user32/clipboard.c:897:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &clipboard_cs ); data/wine-5.0/dlls/user32/clipboard.c:1044:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &clipboard_cs ); data/wine-5.0/dlls/user32/dde_misc.c:905:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WDML_CritSect); data/wine-5.0/dlls/user32/dde_misc.c:1008:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WDML_CritSect); data/wine-5.0/dlls/user32/dde_misc.c:1200:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WDML_CritSect); data/wine-5.0/dlls/user32/dde_misc.c:1208:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WDML_CritSect); data/wine-5.0/dlls/user32/dde_misc.c:1247:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WDML_CritSect); data/wine-5.0/dlls/user32/message.c:1931:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dde_crst); data/wine-5.0/dlls/user32/message.c:1974:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dde_crst); data/wine-5.0/dlls/user32/rawinput.c:165:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&hid_devices_cs); data/wine-5.0/dlls/user32/sysparams.c:714:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &display_dc_section ); data/wine-5.0/dlls/user32/sysparams.c:3766:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &monitors_section ); data/wine-5.0/dlls/user32/sysparams.c:3854:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &monitors_section ); data/wine-5.0/dlls/user32/sysparams.c:3980:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &monitors_section ); data/wine-5.0/dlls/user32/tests/clipboard.c:909:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:955:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1044:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1122:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1183:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1206:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1229:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/clipboard.c:1281:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&clipboard_cs); data/wine-5.0/dlls/user32/tests/msg.c:2113:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sequence_cs ); data/wine-5.0/dlls/user32/tests/msg.c:2319:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &sequence_cs ); data/wine-5.0/dlls/user32/tests/msg.c:6311:31: [3] (random) setstate: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. const struct message *setstate; data/wine-5.0/dlls/user32/tests/msg.c:6471:31: [3] (random) setstate: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ok_sequence(button[i].setstate, "BM_SETSTATE/TRUE on a button", FALSE); data/wine-5.0/dlls/user32/tests/msg.c:17866:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &sequence_cs ); data/wine-5.0/dlls/user32/user_main.c:68:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &user_section ); data/wine-5.0/dlls/user32/win.c:599:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &surfaces_section ); data/wine-5.0/dlls/user32/win.c:617:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &surfaces_section ); data/wine-5.0/dlls/user32/winproc.c:155:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &winproc_cs ); data/wine-5.0/dlls/usp10/usp10.c:881:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_script_cache); data/wine-5.0/dlls/usp10/usp10.c:917:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_script_cache); data/wine-5.0/dlls/usp10/usp10.c:1086:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cs_script_cache); data/wine-5.0/dlls/vcomp/main.c:322:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:331:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:351:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:360:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1050:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1093:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1118:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1137:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1329:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1365:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1402:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1410:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1484:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1549:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&vcomp_section); data/wine-5.0/dlls/vcomp/main.c:1571:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(critsect); data/wine-5.0/dlls/vcomp/main.c:1606:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(*lock); data/wine-5.0/dlls/vcomp/main.c:1628:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(*lock); data/wine-5.0/dlls/vcomp/main.c:1654:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(*critsect); data/wine-5.0/dlls/vcomp/tests/vcomp.c:1433:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(critsect); data/wine-5.0/dlls/vcomp/tests/vcomp.c:1492:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/wine-5.0/dlls/vcomp/tests/vcomp.c:1537:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/wine-5.0/dlls/wbemprox/services.c:221:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &ws->cs ); data/wine-5.0/dlls/wbemprox/services.c:297:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &services->cs ); data/wine-5.0/dlls/wbemprox/services.c:713:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &services->cs ); data/wine-5.0/dlls/wbemprox/services.c:782:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &services->cs ); data/wine-5.0/dlls/wbemprox/services.c:935:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ws->cs ); data/wine-5.0/dlls/webservices/channel.c:108:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &queue->cs ); data/wine-5.0/dlls/webservices/channel.c:182:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &queue->cs ); data/wine-5.0/dlls/webservices/channel.c:252:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/channel.c:253:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->send_q.cs ); data/wine-5.0/dlls/webservices/channel.c:254:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->recv_q.cs ); data/wine-5.0/dlls/webservices/channel.c:596:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:623:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:655:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:698:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:746:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:820:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:855:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:1332:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:1461:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:1501:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:1970:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:1988:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2103:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2217:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2252:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2286:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2316:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2350:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2408:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/channel.c:2454:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &channel->cs ); data/wine-5.0/dlls/webservices/error.c:59:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/error.c:129:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &error->cs ); data/wine-5.0/dlls/webservices/error.c:156:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &error->cs ); data/wine-5.0/dlls/webservices/error.c:184:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &error->cs ); data/wine-5.0/dlls/webservices/error.c:221:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &error->cs ); data/wine-5.0/dlls/webservices/heap.c:70:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:86:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:102:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:127:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:151:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:187:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/heap.c:235:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:266:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/heap.c:295:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &heap->cs ); data/wine-5.0/dlls/webservices/listener.c:145:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/listener.c:273:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:464:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:500:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:528:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:560:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:608:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/listener.c:639:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &listener->cs ); data/wine-5.0/dlls/webservices/msg.c:107:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/msg.c:272:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:299:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:328:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:401:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:446:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:745:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:779:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:810:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:851:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:952:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:986:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1017:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1045:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1079:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1202:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1297:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1335:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1498:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1528:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1650:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1715:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1782:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1814:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:1917:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2054:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2073:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2091:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2109:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2132:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2156:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2189:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/msg.c:2208:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &msg->cs ); data/wine-5.0/dlls/webservices/proxy.c:65:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/proxy.c:225:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/proxy.c:254:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/proxy.c:282:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/proxy.c:321:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/proxy.c:351:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/proxy.c:523:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &proxy->cs ); data/wine-5.0/dlls/webservices/reader.c:425:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/reader.c:606:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:658:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:702:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:810:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3099:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3143:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3171:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3218:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3246:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3276:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3576:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3606:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:3640:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:4032:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:4256:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6654:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6689:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6720:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6752:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:6885:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7002:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7042:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7075:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7112:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7178:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7236:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7320:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7351:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/reader.c:7422:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &reader->cs ); data/wine-5.0/dlls/webservices/string.c:179:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dict_cs ); data/wine-5.0/dlls/webservices/string.c:237:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &dict_cs ); data/wine-5.0/dlls/webservices/writer.c:112:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &ret->cs ); data/wine-5.0/dlls/webservices/writer.c:261:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:289:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:375:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:483:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:542:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:1521:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:1733:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:1976:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2024:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2099:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2180:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2225:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2313:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2948:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:2978:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:3016:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:3054:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:3997:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4033:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4070:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4142:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4189:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4245:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4296:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4340:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4390:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4492:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4521:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4554:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4714:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4833:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4896:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4939:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/webservices/writer.c:4957:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &writer->cs ); data/wine-5.0/dlls/wer/main.c:227:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&report_table_cs); data/wine-5.0/dlls/wer/main.c:295:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&report_table_cs); data/wine-5.0/dlls/windowscodecs/bitmap.c:337:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/windowscodecs/bitmap.c:456:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->cs); data/wine-5.0/dlls/windowscodecs/bitmap.c:830:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->cs); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:216:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:326:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:1048:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:1166:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/clipper.c:204:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/clipper.c:253:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/converter.c:1701:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/converter.c:1819:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/fliprotate.c:221:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/fliprotate.c:281:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/gifformat.c:1118:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/gifformat.c:1276:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/gifformat.c:1444:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:173:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:194:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:216:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:261:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:282:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:327:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:419:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->encoder->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:540:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:611:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:659:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icnsformat.c:725:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icoformat.c:519:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icoformat.c:636:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icoformat.c:659:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/icoformat.c:775:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/info.c:2089:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&component_info_cache_cs); data/wine-5.0/dlls/windowscodecs/info.c:2265:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/info.c:2293:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/info.c:2313:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/info.c:2338:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&new_enum->lock); data/wine-5.0/dlls/windowscodecs/info.c:2341:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/info.c:2408:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:312:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:607:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:788:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:936:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:957:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:979:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1002:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1043:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1071:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1195:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1304:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1391:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1429:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1468:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1539:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:194:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:226:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:361:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:417:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:499:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:541:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:554:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:569:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/palette.c:410:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:440:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:754:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:788:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:804:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:825:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:843:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:871:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/palette.c:911:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:361:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&init_png_cs); data/wine-5.0/dlls/windowscodecs/pngformat.c:593:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1000:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1038:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1142:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1326:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1478:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1502:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1524:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1547:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1588:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1615:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1788:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:1938:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:2029:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:2063:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:2102:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/pngformat.c:2177:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/scaler.c:224:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/scaler.c:330:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/scaler.c:532:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:109:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:130:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:522:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:565:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:605:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:696:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/stream.c:1005:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pObject->lock); data/wine-5.0/dlls/windowscodecs/stream.c:1110:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&pObject->lock); data/wine-5.0/dlls/windowscodecs/tgaformat.c:214:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tgaformat.c:636:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tgaformat.c:825:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tgaformat.c:960:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:90:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&init_tiff_cs); data/wine-5.0/dlls/windowscodecs/tiffformat.c:646:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:750:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:954:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1113:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1195:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1303:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1386:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1518:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1539:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1561:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1585:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1629:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1656:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->parent->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1887:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1957:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1992:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:2072:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/windowscodecs/tiffformat.c:2136:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/midi.c:233:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:284:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:366:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/winealsa.drv/midi.c:415:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:438:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:447:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:526:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:587:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:616:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/winealsa.drv/midi.c:685:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/winealsa.drv/midi.c:795:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:834:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:961:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/midi.c:1053:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiSeqLock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:848:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:918:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1066:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1300:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1493:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1539:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1563:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1596:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1655:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1790:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2340:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2399:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2467:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2495:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2546:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2582:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2723:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2792:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2894:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2958:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2997:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3078:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3251:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->client->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3272:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3281:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&client->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3504:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3635:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3678:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3702:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3794:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:3844:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:397:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:472:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:605:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:845:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:986:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1032:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1058:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1084:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1330:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1352:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1406:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1448:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1508:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1544:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1685:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1756:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1856:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1922:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1962:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2041:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2194:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->client->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2215:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2224:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&client->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2445:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2480:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2577:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2620:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2646:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2736:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:2786:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineandroid.drv/opengl.c:134:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drawable_section ); data/wine-5.0/dlls/wineandroid.drv/opengl.c:143:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drawable_section ); data/wine-5.0/dlls/wineandroid.drv/opengl.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drawable_section ); data/wine-5.0/dlls/wineandroid.drv/opengl.c:443:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &drawable_section ); data/wine-5.0/dlls/wineandroid.drv/window.c:134:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &win_data_section ); data/wine-5.0/dlls/wineandroid.drv/window.c:163:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &win_data_section ); data/wine-5.0/dlls/wineandroid.drv/window.c:663:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &surface->crit ); data/wine-5.0/dlls/wineandroid.drv/window.c:923:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &surface->crit ); data/wine-5.0/dlls/winebus.sys/main.c:265:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:288:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ext->report_cs); data/wine-5.0/dlls/winebus.sys/main.c:306:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:331:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:338:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:354:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:369:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ext->report_cs); data/wine-5.0/dlls/winebus.sys/main.c:395:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_list_cs); data/wine-5.0/dlls/winebus.sys/main.c:782:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ext->report_cs); data/wine-5.0/dlls/winebus.sys/main.c:803:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ext->report_cs); data/wine-5.0/dlls/winebus.sys/main.c:879:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ext->report_cs); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:128:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&midiInLock); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:672:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiInLock); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:778:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiInLock); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:853:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiInLock); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:888:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&midiInLock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:772:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:949:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1473:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:2801:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:3078:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:3116:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:3378:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:3430:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/winecrt0/debug.c:153:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *wine_debug = getenv("WINEDEBUG"); data/wine-5.0/dlls/wined3d/wined3d_main.c:445:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wined3d_cs); data/wine-5.0/dlls/wined3d/wined3d_main.c:455:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&wined3d_wndproc_cs); data/wine-5.0/dlls/winegstreamer/gstdemux.c:500:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/winegstreamer/gstdemux.c:506:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/winegstreamer/gstdemux.c:1060:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->filter.csFilter); data/wine-5.0/dlls/winemac.drv/display.c:523:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&modes_section); data/wine-5.0/dlls/winemac.drv/display.c:1010:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&modes_section); data/wine-5.0/dlls/winemac.drv/gdi.c:93:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_data_section); data/wine-5.0/dlls/winemac.drv/gdi.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_data_section); data/wine-5.0/dlls/winemac.drv/gdi.c:164:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_data_section); data/wine-5.0/dlls/winemac.drv/gdi.c:231:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device_data_section); data/wine-5.0/dlls/winemac.drv/keyboard.c:568:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&layout_list_section); data/wine-5.0/dlls/winemac.drv/keyboard.c:1181:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&layout_list_section); data/wine-5.0/dlls/winemac.drv/keyboard.c:1327:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&layout_list_section); data/wine-5.0/dlls/winemac.drv/mouse.c:650:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cursor_cache_section); data/wine-5.0/dlls/winemac.drv/mouse.c:734:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cursor_cache_section); data/wine-5.0/dlls/winemac.drv/mouse.c:793:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cursor_cache_section); data/wine-5.0/dlls/winemac.drv/opengl.c:1370:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/opengl.c:1629:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winemac.drv/opengl.c:2908:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winemac.drv/opengl.c:3113:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/opengl.c:3561:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/opengl.c:3609:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/opengl.c:3956:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/opengl.c:4132:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winemac.drv/opengl.c:4443:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winemac.drv/opengl.c:4607:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&dc_pbuffers_section); data/wine-5.0/dlls/winemac.drv/window.c:247:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&win_data_section); data/wine-5.0/dlls/winemac.drv/window.c:266:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&win_data_section); data/wine-5.0/dlls/wineoss.drv/midi.c:449:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. device=getenv("MIDIDEV"); data/wine-5.0/dlls/wineoss.drv/midi.c:545:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/wineoss.drv/midi.c:831:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/wineoss.drv/midi.c:901:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&crit_sect); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:662:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:731:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:987:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&ret->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1085:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1134:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1169:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1195:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1221:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1545:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1566:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1603:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1629:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1671:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1707:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1848:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1918:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2018:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2083:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2122:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2201:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2367:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->client->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2388:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_sessions_lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2397:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&client->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2618:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2653:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2750:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2793:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2819:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2909:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2959:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&session->lock); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:231:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:283:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:306:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:425:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&This->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:540:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:546:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:564:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:587:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtsplitter.c:1191:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&filter->csReceive); data/wine-5.0/dlls/wineqtdecoder/qtvdecoder.c:187:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->tf.csReceive); data/wine-5.0/dlls/winex11.drv/bitblt.c:1824:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &surface->crit ); data/wine-5.0/dlls/winex11.drv/bitblt.c:2019:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &surface->crit ); data/wine-5.0/dlls/winex11.drv/display.c:151:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&screen_section); data/wine-5.0/dlls/winex11.drv/display.c:180:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&screen_section); data/wine-5.0/dlls/winex11.drv/display.c:219:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&screen_section); data/wine-5.0/dlls/winex11.drv/display.c:230:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&screen_section); data/wine-5.0/dlls/winex11.drv/keyboard.c:1222:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:1371:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:1640:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:2037:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:2088:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:2291:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/keyboard.c:2479:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &kbd_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1185:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1207:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1274:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1371:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1521:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1725:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1743:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1816:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:1861:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:2076:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:2272:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:2293:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:2327:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:2443:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:3032:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/opengl.c:3257:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &context_section ); data/wine-5.0/dlls/winex11.drv/palette.c:784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:839:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1012:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1078:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1224:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1334:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1381:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/palette.c:1404:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &palette_cs ); data/wine-5.0/dlls/winex11.drv/vulkan.c:215:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winex11.drv/vulkan.c:316:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&context_section); data/wine-5.0/dlls/winex11.drv/window.c:213:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &win_data_section ); data/wine-5.0/dlls/winex11.drv/window.c:1852:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &win_data_section ); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:778:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &x11drv_section ); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:893:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &x11drv_section ); data/wine-5.0/dlls/winex11.drv/xdnd.c:580:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xdnd_cs); data/wine-5.0/dlls/winex11.drv/xdnd.c:598:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xdnd_cs); data/wine-5.0/dlls/winex11.drv/xdnd.c:624:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xdnd_cs); data/wine-5.0/dlls/winex11.drv/xdnd.c:682:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xdnd_cs); data/wine-5.0/dlls/winex11.drv/xrender.c:569:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &xrender_cs ); data/wine-5.0/dlls/winex11.drv/xrender.c:878:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xrender_cs); data/wine-5.0/dlls/winex11.drv/xrender.c:971:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &xrender_cs ); data/wine-5.0/dlls/winex11.drv/xrender.c:1344:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xrender_cs); data/wine-5.0/dlls/winex11.drv/xrender.c:1549:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &xrender_cs ); data/wine-5.0/dlls/winex11.drv/xrender.c:1908:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &xrender_cs ); data/wine-5.0/dlls/winex11.drv/xrender.c:1997:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &xrender_cs ); data/wine-5.0/dlls/winhttp/cookie.c:140:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &session->cs ); data/wine-5.0/dlls/winhttp/cookie.c:327:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &session->cs ); data/wine-5.0/dlls/winhttp/handle.c:60:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &handle_cs ); data/wine-5.0/dlls/winhttp/handle.c:95:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &handle_cs ); data/wine-5.0/dlls/winhttp/handle.c:128:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &handle_cs ); data/wine-5.0/dlls/winhttp/handle.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &handle_cs ); data/wine-5.0/dlls/winhttp/request.c:127:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->task_cs ); data/wine-5.0/dlls/winhttp/request.c:198:9: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &request->task_cs ); data/wine-5.0/dlls/winhttp/request.c:202:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->task_cs ); data/wine-5.0/dlls/winhttp/request.c:1396:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &connection_pool_cs ); data/wine-5.0/dlls/winhttp/request.c:1422:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/winhttp/request.c:1450:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &connection_pool_cs ); data/wine-5.0/dlls/winhttp/request.c:1525:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &connection_pool_cs ); data/wine-5.0/dlls/winhttp/request.c:1563:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &connection_pool_cs ); data/wine-5.0/dlls/winhttp/request.c:3094:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3125:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3351:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3404:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3501:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3580:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3621:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3665:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3935:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3949:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:3991:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4021:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4091:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4126:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4327:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4367:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4393:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4443:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4471:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4488:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4514:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/request.c:4572:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &request->cs ); data/wine-5.0/dlls/winhttp/session.c:174:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &session->cs ); data/wine-5.0/dlls/winhttp/session.c:259:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &session->cs ); data/wine-5.0/dlls/wininet/cookie.c:650:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cookie_cs); data/wine-5.0/dlls/wininet/cookie.c:751:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cookie_cs); data/wine-5.0/dlls/wininet/cookie.c:1016:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cookie_cs); data/wine-5.0/dlls/wininet/cookie.c:1268:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&cookie_cs); data/wine-5.0/dlls/wininet/http.c:268:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/wininet/http.c:339:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/wininet/http.c:371:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->headers_section ); data/wine-5.0/dlls/wininet/http.c:420:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:633:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:692:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:748:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:848:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&authcache_cs); data/wine-5.0/dlls/wininet/http.c:885:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&authcache_cs); data/wine-5.0/dlls/wininet/http.c:925:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&authcache_cs); data/wine-5.0/dlls/wininet/http.c:963:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&authcache_cs); data/wine-5.0/dlls/wininet/http.c:1012:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&authcache_cs); data/wine-5.0/dlls/wininet/http.c:1976:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/wininet/http.c:1995:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/wininet/http.c:2437:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->headers_section ); data/wine-5.0/dlls/wininet/http.c:2546:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:2963:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:3002:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:3029:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:3074:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:3105:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&req->read_section); data/wine-5.0/dlls/wininet/http.c:3161:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&req->read_section); data/wine-5.0/dlls/wininet/http.c:3177:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:3248:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&req->read_section); data/wine-5.0/dlls/wininet/http.c:3259:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->read_section ); data/wine-5.0/dlls/wininet/http.c:3352:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:3355:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &request->read_section ); data/wine-5.0/dlls/wininet/http.c:3574:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:4675:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:4765:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:4784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &req->headers_section ); data/wine-5.0/dlls/wininet/http.c:4821:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&connection_pool_cs); data/wine-5.0/dlls/wininet/http.c:4975:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:5902:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/http.c:6123:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &request->headers_section ); data/wine-5.0/dlls/wininet/internet.c:120:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/internet.c:185:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/internet.c:243:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/internet.c:486:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/internet.c:552:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/internet.c:579:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(envproxy = getenv( "http_proxy" )) || lpwpi->proxyEnabled) data/wine-5.0/dlls/wininet/internet.c:652:26: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(envproxy = getenv( "no_proxy" ))) data/wine-5.0/dlls/wininet/internet.c:2904:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &WININET_cs ); data/wine-5.0/dlls/wininet/netconnection.c:231:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&init_sechandle_cs); data/wine-5.0/dlls/wininet/tests/http.c:6951:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( ¬ification_cs ); data/wine-5.0/dlls/wininet/tests/http.c:7160:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( ¬ification_cs ); data/wine-5.0/dlls/winmm/driver.c:59:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mmdriver_lock ); data/wine-5.0/dlls/winmm/driver.c:80:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mmdriver_lock ); data/wine-5.0/dlls/winmm/driver.c:175:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mmdriver_lock ); data/wine-5.0/dlls/winmm/driver.c:222:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mmdriver_lock ); data/wine-5.0/dlls/winmm/driver.c:623:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &mmdriver_lock ); data/wine-5.0/dlls/winmm/mci.c:97:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:120:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:823:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:1858:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:1931:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:1949:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mci.c:1992:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mmio.c:436:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mmio.c:457:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/mmio.c:477:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/playsound.c:210:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/playsound.c:472:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/playsound.c:506:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/playsound.c:521:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:161:52: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. if (flags & TIME_KILL_SYNCHRONOUS) EnterCriticalSection(&TIME_cbcrst); data/wine-5.0/dlls/winmm/time.c:166:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:186:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:231:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:284:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:313:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/time.c:336:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&TIME_cbcrst); data/wine-5.0/dlls/winmm/waveform.c:265:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:272:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:299:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:301:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:324:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:347:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:364:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdevice->lock); data/wine-5.0/dlls/winmm/waveform.c:554:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&dev->lock); data/wine-5.0/dlls/winmm/waveform.c:705:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:796:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:1236:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:1266:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/wine-5.0/dlls/winmm/waveform.c:1357:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/wine-5.0/dlls/winmm/waveform.c:1635:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:1869:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->lock); data/wine-5.0/dlls/winmm/waveform.c:2177:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdevice->lock); data/wine-5.0/dlls/winmm/waveform.c:2251:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&mmdevice->lock); data/wine-5.0/dlls/winmm/waveform.c:2432:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:2533:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:3194:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/waveform.c:3220:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&g_devthread_lock); data/wine-5.0/dlls/winmm/winmm.c:956:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/winmm.c:974:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/winmm.c:997:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&WINMM_cs); data/wine-5.0/dlls/winmm/winmm.c:1055:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1082:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1092:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1232:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1257:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1284:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1413:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1556:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1611:2: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winmm/winmm.c:1628:6: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&lpMidiStrm->lock); data/wine-5.0/dlls/winspool.drv/info.c:512:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:1191:19: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. env_default = getenv("PRINTER"); data/wine-5.0/dlls/winspool.drv/info.c:1477:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:2885:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:2972:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:3369:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:3681:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:3727:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:3826:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:8103:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/info.c:8528:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&printer_handles_cs); data/wine-5.0/dlls/winspool.drv/wspool.c:81:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&backend_cs); data/wine-5.0/dlls/wintab32/context.c:190:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:472:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:522:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:567:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:622:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:662:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:711:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:768:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:793:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:821:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:849:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:924:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:959:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:1017:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:1064:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:1096:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wintab32/context.c:1115:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csTablet); data/wine-5.0/dlls/wmiutils/path.c:133:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &parent->cs ); data/wine-5.0/dlls/wmiutils/path.c:224:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &parent->cs ); data/wine-5.0/dlls/wmiutils/path.c:524:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:784:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:822:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:857:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:894:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:918:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:939:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:995:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1017:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1045:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1132:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1177:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &path->cs ); data/wine-5.0/dlls/wmiutils/path.c:1285:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection( &path->cs ); data/wine-5.0/dlls/wnaspi32/winaspi32.c:96:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ASPI_CritSection); data/wine-5.0/dlls/wnaspi32/winaspi32.c:127:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&ASPI_CritSection); data/wine-5.0/dlls/ws2_32/socket.c:6271:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/ws2_32/socket.c:6460:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/ws2_32/socket.c:6547:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/ws2_32/socket.c:6581:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/ws2_32/socket.c:6628:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/ws2_32/socket.c:7328:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection( &csWSgetXXXbyYYY ); data/wine-5.0/dlls/wsdapi/discovery.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&impl->notification_sink_critical_section); data/wine-5.0/dlls/wsdapi/discovery.c:184:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&impl->notification_sink_critical_section); data/wine-5.0/dlls/wsdapi/discovery.c:462:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&obj->notification_sink_critical_section); data/wine-5.0/dlls/wsdapi/discovery.c:465:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&obj->message_ids_critical_section); data/wine-5.0/dlls/wsdapi/network.c:332:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(¶ms->impl->notification_sink_critical_section); data/wine-5.0/dlls/wsdapi/soap.c:1680:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&impl->message_ids_critical_section); data/wine-5.0/dlls/wsdapi/tests/discovery.c:205:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&msgStorage->criticalSection); data/wine-5.0/dlls/wsdapi/tests/discovery.c:679:17: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&msg_storage->criticalSection); data/wine-5.0/dlls/wsdapi/tests/discovery.c:998:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&msgStorage->criticalSection); data/wine-5.0/dlls/wsdapi/tests/discovery.c:1218:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&msg_storage->criticalSection); data/wine-5.0/dlls/xaudio2_7/compat.c:2148:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2153:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->mst.lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2383:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2388:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->mst.lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2617:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2622:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->mst.lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2805:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/compat.c:2810:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->mst.lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:725:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1066:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1300:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1471:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1499:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1550:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&voice->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1571:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1574:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&src->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1582:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&src->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1634:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1637:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sub->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1645:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&sub->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1735:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1744:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&This->mst.lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1937:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->lock); data/wine-5.0/dlls/xaudio2_7/xaudio_dll.c:1940:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&object->mst.lock); data/wine-5.0/dlls/xinput1_3/hid.c:223:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xinput_crit); data/wine-5.0/dlls/xinput1_3/hid.c:302:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->crit); data/wine-5.0/dlls/xinput1_3/hid.c:356:13: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&xinput_crit); data/wine-5.0/dlls/xinput1_3/xinput_main.c:82:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&device->crit); data/wine-5.0/include/dbgeng.h:544:8: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. #undef CreateProcess data/wine-5.0/include/dbgeng.h:560:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 image_handle, ULONG64 handle, ULONG64 base_offset, ULONG module_size, data/wine-5.0/include/dbgeng.h:589:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 image_handle, ULONG64 handle, ULONG64 base_offset, ULONG module_size, data/wine-5.0/include/dbgeng.h:619:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 image_handle, ULONG64 handle, ULONG64 baseoffset, ULONG module_size, data/wine-5.0/include/dbgeng.h:655:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:715:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:784:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:860:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:943:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:1060:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/dbgeng.h:1179:15: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. STDMETHOD(CreateProcess)(THIS_ ULONG64 server, char *cmdline, ULONG flags) PURE; data/wine-5.0/include/msvcrt/stdio.h:196:16: [3] (tmpfile) tmpnam: Temporary file race condition (CWE-377). char* __cdecl tmpnam(char*); data/wine-5.0/include/msvcrt/stdio.h:298:21: [3] (tmpfile) tempnam: Temporary file race condition (CWE-377). static inline char* tempnam(const char *dir, const char *prefix) { return _tempnam(dir, prefix); } data/wine-5.0/include/msvcrt/stdlib.h:208:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char* __cdecl getenv(const char*); data/wine-5.0/include/msvcrt/stdlib.h:217:23: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. void __cdecl srand(unsigned int); data/wine-5.0/include/tchar.h:183:42: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. #define _tgetenv WINE_tchar_routine(getenv, getenv, _wgetenv) data/wine-5.0/include/tchar.h:183:59: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. #define _tgetenv WINE_tchar_routine(getenv, getenv, _wgetenv) data/wine-5.0/include/tchar.h:217:42: [3] (tmpfile) tempnam: Temporary file race condition (CWE-377). #define _ttempnam WINE_tchar_routine(tempnam, _tempnam, _wtempnam) data/wine-5.0/include/tchar.h:218:42: [3] (tmpfile) tmpnam: Temporary file race condition (CWE-377). #define _ttmpnam WINE_tchar_routine(tmpnam, tmpnam, _wtmpnam) data/wine-5.0/include/tchar.h:218:59: [3] (tmpfile) tmpnam: Temporary file race condition (CWE-377). #define _ttmpnam WINE_tchar_routine(tmpnam, tmpnam, _wtmpnam) data/wine-5.0/include/winbase.h:1754:31: [3] (misc) AddAccessAllowedAce: This doesn't set the inheritance bits in the access control entry (ACE) header (CWE-732). Make sure that you set inheritance by hand if you wish it to inherit. WINADVAPI BOOL WINAPI AddAccessAllowedAce(PACL,DWORD,DWORD,PSID); data/wine-5.0/include/winbase.h:1885:31: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. #define CreateProcess WINELIB_NAME_AW(CreateProcess) data/wine-5.0/include/winbase.h:1885:61: [3] (shell) CreateProcess: This causes a new process to execute and is difficult to use safely (CWE-78). Specify the application path in the first argument, NOT as part of the second, or embedded spaces could allow an attacker to force a different program to run. #define CreateProcess WINELIB_NAME_AW(CreateProcess) data/wine-5.0/include/winbase.h:1888:31: [3] (shell) CreateProcessAsUser: This causes a new process to execute and is difficult to use safely (CWE-78). Especially watch out for embedded spaces. #define CreateProcessAsUser WINELIB_NAME_AW(CreateProcessAsUser) data/wine-5.0/include/winbase.h:1888:67: [3] (shell) CreateProcessAsUser: This causes a new process to execute and is difficult to use safely (CWE-78). Especially watch out for embedded spaces. #define CreateProcessAsUser WINELIB_NAME_AW(CreateProcessAsUser) data/wine-5.0/include/winbase.h:1975:31: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. WINBASEAPI void WINAPI EnterCriticalSection(CRITICAL_SECTION *lpCrit); data/wine-5.0/include/winbase.h:2293:31: [3] (tmpfile) GetTempFileName: Temporary file race condition in certain cases (e.g., if run as SYSTEM in many versions of Windows) (CWE-377). #define GetTempFileName WINELIB_NAME_AW(GetTempFileName) data/wine-5.0/include/winbase.h:2293:63: [3] (tmpfile) GetTempFileName: Temporary file race condition in certain cases (e.g., if run as SYSTEM in many versions of Windows) (CWE-377). #define GetTempFileName WINELIB_NAME_AW(GetTempFileName) data/wine-5.0/include/winbase.h:2376:31: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. WINBASEAPI void WINAPI InitializeCriticalSection(CRITICAL_SECTION *lpCrit); data/wine-5.0/include/winbase.h:2416:31: [3] (misc) LoadLibrary: Ensure that the full path to the library is specified, or current directory may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to find library path, if you aren't already. #define LoadLibrary WINELIB_NAME_AW(LoadLibrary) data/wine-5.0/include/winbase.h:2416:59: [3] (misc) LoadLibrary: Ensure that the full path to the library is specified, or current directory may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to find library path, if you aren't already. #define LoadLibrary WINELIB_NAME_AW(LoadLibrary) data/wine-5.0/include/winbase.h:2419:31: [3] (misc) LoadLibraryEx: Ensure that the full path to the library is specified, or current directory may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to find library path, if you aren't already. #define LoadLibraryEx WINELIB_NAME_AW(LoadLibraryEx) data/wine-5.0/include/winbase.h:2419:61: [3] (misc) LoadLibraryEx: Ensure that the full path to the library is specified, or current directory may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to find library path, if you aren't already. #define LoadLibraryEx WINELIB_NAME_AW(LoadLibraryEx) data/wine-5.0/include/wine/port.h:264:12: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. extern int getopt_long (int ___argc, char *const *___argv, data/wine-5.0/include/wine/port.h:483:9: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. #define getopt_long __WINE_NOT_PORTABLE(getopt_long) data/wine-5.0/include/wine/port.h:483:53: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. #define getopt_long __WINE_NOT_PORTABLE(getopt_long) data/wine-5.0/libs/port/getopt.c:332:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. posixly_correct = getenv ("POSIXLY_CORRECT"); data/wine-5.0/libs/port/getopt.c:1115:1: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. getopt (int argc, char * const *argv, const char *optstring) data/wine-5.0/libs/port/getopt.c:1124:1: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. getopt_long (int argc, char * const *argv, const char *options, const struct option *long_options, int *opt_index) data/wine-5.0/libs/port/stubs.c:34:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *ret = getenv( "WINEPREFIX" ); data/wine-5.0/libs/port/stubs.c:35:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!ret) ret = getenv( "USERPROFILE" ); data/wine-5.0/libs/port/stubs.c:51:12: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return getenv( "USERNAME" ); data/wine-5.0/libs/wine/config.c:168:26: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. char *p, *fullpath = realpath( name, NULL ); data/wine-5.0/libs/wine/config.c:359:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *home = getenv( "HOME" ); data/wine-5.0/libs/wine/config.c:361:26: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *prefix = getenv( "WINEPREFIX" ); data/wine-5.0/libs/wine/config.c:524:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((wineloader = getenv( "WINELOADER" ))) set_bindir( get_runtime_argvdir( wineloader )); data/wine-5.0/libs/wine/config.c:694:17: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((path = getenv( "PATH" ))) data/wine-5.0/libs/wine/debug.c:223:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((wine_debug = getenv("WINEDEBUG"))) data/wine-5.0/libs/wine/loader.c:109:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *p, *path = getenv( "WINEDLLPATH" ); data/wine-5.0/libs/wine/loader.c:1044:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. realpath( filename, path ); data/wine-5.0/loader/main.c:207:10: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!getenv( "WINELOADERNOEXEC" )) /* first time around */ data/wine-5.0/loader/main.c:216:48: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. wine_exec_wine_binary( NULL, argv, getenv( "WINELOADER" )); data/wine-5.0/programs/cmd/wcmdmain.c:2451:3: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(time(NULL)); data/wine-5.0/programs/rpcss/epmp.c:105:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csEpm); data/wine-5.0/programs/rpcss/epmp.c:154:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csEpm); data/wine-5.0/programs/rpcss/epmp.c:229:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csEpm); data/wine-5.0/programs/rpcss/irotp.c:125:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:207:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:235:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:274:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:301:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:328:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/rpcss/irotp.c:365:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&csRunningObjectTable); data/wine-5.0/programs/services/services.c:668:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&(*db)->cs); data/wine-5.0/programs/services/services.c:773:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&db->cs); data/wine-5.0/programs/services/services.c:783:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&service->db->cs); data/wine-5.0/programs/services/tests/service.c:391:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&event_cs); data/wine-5.0/programs/services/tests/service.c:425:17: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&event_cs); data/wine-5.0/programs/services/tests/service.c:620:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&event_cs); data/wine-5.0/programs/taskmgr/perfdata.c:66:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:162:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:341:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:360:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:376:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:394:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:410:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:426:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:440:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:456:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:472:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:488:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:504:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:520:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:536:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:552:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:568:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:584:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:600:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:616:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:632:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:648:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:668:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:685:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:702:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:721:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:742:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:759:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:776:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:793:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:809:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:824:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/taskmgr/perfdata.c:838:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PerfDataCriticalSection); data/wine-5.0/programs/winecfg/drivedetect.c:254:18: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *home = getenv("HOME"); data/wine-5.0/programs/wineconsole/curses.c:959:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PRIVATE(data)->lock); data/wine-5.0/programs/wineconsole/curses.c:1026:9: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&PRIVATE(data)->lock); data/wine-5.0/programs/wineconsole/curses.c:1114:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&PRIVATE(data)->lock); data/wine-5.0/programs/winedbg/gdbproxy.c:1870:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(gdb_path = getenv("WINE_GDB"))) gdb_path = "gdb"; data/wine-5.0/programs/winedbg/gdbproxy.c:1871:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(tmp_path = getenv("TMPDIR"))) tmp_path = "/tmp"; data/wine-5.0/programs/winedbg/source.c:142:77: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. static struct open_file_list* source_add_file(const char* name, const char* realpath) data/wine-5.0/programs/winedbg/source.c:149:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath) sz += strlen(realpath) + 1; data/wine-5.0/programs/winedbg/source.c:149:32: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath) sz += strlen(realpath) + 1; data/wine-5.0/programs/winedbg/source.c:153:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath) data/wine-5.0/programs/winedbg/source.c:154:49: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. strcpy(ol->real_path = ol->path + nlen, realpath); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1226:20: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(tmpdir = getenv("TMPDIR"))) tmpdir = "/tmp"; data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2092:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_data_dirs = getenv("XDG_DATA_DIRS"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3642:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv("XDG_CONFIG_HOME")) data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3643:70: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_config_dir = heap_printf("%s/menus/applications-merged", getenv("XDG_CONFIG_HOME")); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3645:78: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_config_dir = heap_printf("%s/.config/menus/applications-merged", getenv("HOME")); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3649:13: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv("XDG_DATA_HOME")) data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3650:36: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_data_dir = strdupA(getenv("XDG_DATA_HOME")); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3652:59: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. xdg_data_dir = heap_printf("%s/.local/share", getenv("HOME")); data/wine-5.0/programs/winemine/main.c:349:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand( (unsigned) time( NULL ) ); data/wine-5.0/programs/winevdm/winevdm.c:113:27: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *envpath = getenv( "PATH" ); data/wine-5.0/server/main.c:80:20: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((optc = getopt_long( argc, argv, "d::fhk::p::vw", long_options, NULL )) != -1) data/wine-5.0/server/registry.c:1826:18: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if ((p = getenv( "WINEARCH" )) && !strcmp( p, "win32" )) data/wine-5.0/server/request.c:633:26: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *prefix = getenv( "WINEPREFIX" ); data/wine-5.0/server/request.c:650:28: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *home = getenv( "HOME" ); data/wine-5.0/tools/make_xftmpl.c:93:12: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. extern int getopt(int argc, char *const *argv, const char *optstring); data/wine-5.0/tools/make_xftmpl.c:429:20: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((optc = getopt(argc, argv, "hHi:o:s:")) != -1) data/wine-5.0/tools/makedep.c:4359:29: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *makeflags = getenv( "MAKEFLAGS" ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:666:20: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((optc = getopt_long( argc, argv, "d:ho:qr:s", NULL, NULL )) != -1) data/wine-5.0/tools/widl/write_msft.c:2733:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. time_override = getenv( "WIDL_TIME_OVERRIDE"); data/wine-5.0/tools/winebuild/main.c:394:20: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((optc = getopt_long( argc, argv, short_options, long_options, NULL )) != -1) data/wine-5.0/tools/winebuild/utils.c:294:13: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv( "PATH" )) data/wine-5.0/tools/winebuild/utils.c:296:32: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *p = xstrdup( getenv( "PATH" )); data/wine-5.0/tools/winegcc/winegcc.c:293:24: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (!(tmpdir = getenv("TMPDIR"))) tmpdir = "/tmp"; data/wine-5.0/tools/winegcc/winegcc.c:833:29: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* winebuild = getenv("WINEBUILD"); data/wine-5.0/tools/wmc/wmc.c:189:16: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while((optc = getopt_long(argc, argv, short_options, long_options, &opti)) != EOF) data/wine-5.0/tools/wrc/wrc.c:371:16: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while((optc = getopt_long(argc, argv, short_options, long_options, &opti)) != EOF) data/wine-5.0/dlls/advapi32/advapi.c:88:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD i, len = MultiByteToWideChar( CP_UNIXCP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/advapi.c:99:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, name, -1, lpszName, len ); data/wine-5.0/dlls/advapi32/advapi.c:138:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pInfo->szHwProfileGuid,"{12340001-1234-1234-1234-123456789012}"); data/wine-5.0/dlls/advapi32/advapi.c:139:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pInfo->szHwProfileName,"Wine Profile"); data/wine-5.0/dlls/advapi32/advapi32_misc.h:47:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, src, -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/advapi32_misc.h:48:56: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ((dst = heap_alloc( len * sizeof(WCHAR) ))) MultiByteToWideChar( CP_ACP, 0, src, -1, dst, len ); data/wine-5.0/dlls/advapi32/cred.c:307:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:316:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:327:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:330:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:343:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:352:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[i].data, data/wine-5.0/dlls/advapi32/cred.c:389:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, user, (str_len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/cred.c:402:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, cred_blob, cred_blob_len, data/wine-5.0/dlls/advapi32/cred.c:410:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, cred_blob, cred_blob_len, data/wine-5.0/dlls/advapi32/cred.c:435:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(encrypted_credential_blob, credential_blob, credential_blob_size); data/wine-5.0/dlls/advapi32/cred.c:594:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_data, my_key_data, KEY_SIZE); data/wine-5.0/dlls/advapi32/cred.c:758:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, data, data_len, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:760:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, data, data_len, target_name, len); data/wine-5.0/dlls/advapi32/cred.c:868:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[0].data, attr_list->attr[0].length, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:870:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[0].data, attr_list->attr[0].length, target_name, str_len); data/wine-5.0/dlls/advapi32/cred.c:952:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CredentialA->CredentialBlob, CredentialW->CredentialBlob, data/wine-5.0/dlls/advapi32/cred.c:1000:39: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). needed += sizeof(WCHAR) * MultiByteToWideChar(CP_ACP, 0, CredentialA->TargetName, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1002:39: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). needed += sizeof(WCHAR) * MultiByteToWideChar(CP_ACP, 0, CredentialA->Comment, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1005:39: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). needed += sizeof(WCHAR) * MultiByteToWideChar(CP_ACP, 0, CredentialA->TargetAlias, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1007:39: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). needed += sizeof(WCHAR) * MultiByteToWideChar(CP_ACP, 0, CredentialA->UserName, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1019:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). string_len = MultiByteToWideChar(CP_ACP, 0, CredentialA->TargetName, -1, CredentialW->TargetName, len / sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/cred.c:1029:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). string_len = MultiByteToWideChar(CP_ACP, 0, CredentialA->Comment, -1, CredentialW->Comment, len / sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/cred.c:1041:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CredentialW->CredentialBlob, CredentialA->CredentialBlob, data/wine-5.0/dlls/advapi32/cred.c:1055:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). string_len = MultiByteToWideChar(CP_ACP, 0, CredentialA->TargetAlias, -1, CredentialW->TargetAlias, len / sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/cred.c:1065:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). string_len = MultiByteToWideChar(CP_ACP, 0, CredentialA->UserName, -1, CredentialW->UserName, len / sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/cred.c:1091:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, TargetName, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1098:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TargetName, -1, TargetNameW, len); data/wine-5.0/dlls/advapi32/cred.c:1185:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, Filter, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1192:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Filter, -1, FilterW, len); data/wine-5.0/dlls/advapi32/cred.c:1362:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, TargetName, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1369:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TargetName, -1, TargetNameW, len); data/wine-5.0/dlls/advapi32/cred.c:1457:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[0].data, attr_list->attr[0].length, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:1459:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, attr_list->attr[0].data, attr_list->attr[0].length, target_name, str_len); data/wine-5.0/dlls/advapi32/cred.c:1577:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->TargetName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1579:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->NetbiosServerName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1581:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsServerName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1583:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->NetbiosDomainName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1585:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsDomainName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1587:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsTreeName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1589:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, TargetInformation->PackageName, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/advapi32/cred.c:1603:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->TargetName, -1, data/wine-5.0/dlls/advapi32/cred.c:1611:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->NetbiosServerName, -1, data/wine-5.0/dlls/advapi32/cred.c:1619:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsServerName, -1, data/wine-5.0/dlls/advapi32/cred.c:1627:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->NetbiosDomainName, -1, data/wine-5.0/dlls/advapi32/cred.c:1635:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsDomainName, -1, data/wine-5.0/dlls/advapi32/cred.c:1643:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer += MultiByteToWideChar(CP_ACP, 0, TargetInformation->DnsTreeName, -1, data/wine-5.0/dlls/advapi32/cred.c:1651:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TargetInformation->PackageName, -1, data/wine-5.0/dlls/advapi32/cred.c:2003:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, cred, -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/cred.c:2005:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, cred, -1, credW, len ); data/wine-5.0/dlls/advapi32/cred.c:2086:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hash[CERT_HASH_LENGTH]; data/wine-5.0/dlls/advapi32/cred.c:2152:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hash[CERT_HASH_LENGTH]; data/wine-5.0/dlls/advapi32/cred.c:2190:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0); data/wine-5.0/dlls/advapi32/cred.c:2192:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, len); data/wine-5.0/dlls/advapi32/crypt.c:58:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/advapi32/crypt.c:59:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/advapi32/crypt.c:174:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wcount = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/advapi32/crypt.c:181:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, *wstr, wcount); data/wine-5.0/dlls/advapi32/crypt.c:2361:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash, ctx.digest, 0x10 ); data/wine-5.0/dlls/advapi32/crypt.c:2389:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash, ctx.digest, 0x10 ); data/wine-5.0/dlls/advapi32/crypt.c:2444:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). dev_random = open("/dev/urandom", O_RDONLY); data/wine-5.0/dlls/advapi32/crypt_arc4.c:33:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char state[256]; data/wine-5.0/dlls/advapi32/crypt_des.c:27:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char InitialPermuteMap[64] = data/wine-5.0/dlls/advapi32/crypt_des.c:39:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char KeyPermuteMap[56] = data/wine-5.0/dlls/advapi32/crypt_des.c:50:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char KeyRotation[16] = data/wine-5.0/dlls/advapi32/crypt_des.c:53:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char KeyCompression[48] = data/wine-5.0/dlls/advapi32/crypt_des.c:63:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char DataExpansion[48] = data/wine-5.0/dlls/advapi32/crypt_des.c:73:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char SBox[8][64] = data/wine-5.0/dlls/advapi32/crypt_des.c:125:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char PBox[32] = data/wine-5.0/dlls/advapi32/crypt_des.c:133:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char FinalPermuteMap[64] = data/wine-5.0/dlls/advapi32/crypt_des.c:258:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char K[7]; data/wine-5.0/dlls/advapi32/crypt_des.c:259:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char D[8]; data/wine-5.0/dlls/advapi32/crypt_des.c:269:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Rexp[6]; data/wine-5.0/dlls/advapi32/crypt_des.c:270:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Rn[4]; data/wine-5.0/dlls/advapi32/crypt_des.c:271:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char SubK[6]; data/wine-5.0/dlls/advapi32/crypt_des.c:298:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char K[7]; data/wine-5.0/dlls/advapi32/crypt_des.c:299:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char D[8]; data/wine-5.0/dlls/advapi32/crypt_des.c:309:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Rexp[6]; data/wine-5.0/dlls/advapi32/crypt_des.c:310:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Rn[4]; data/wine-5.0/dlls/advapi32/crypt_des.c:311:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char SubK[6]; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:32:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char CRYPT_LMhash_Magic[8] = data/wine-5.0/dlls/advapi32/crypt_lmhash.c:38:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp_pwd[14] = { 0,0,0,0,0,0,0,0,0,0,0,0,0,0 }; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:82:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, hash, 0x10); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:193:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char uc[8]; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:196:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char deskey[7]; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:212:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key->Buffer, key->Length); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:215:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key->Buffer, sizeof deskey); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:223:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data.uc, in->Buffer+ofs, in->Length +8-crypt_len); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:252:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char uc[8]; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:255:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char deskey[7]; data/wine-5.0/dlls/advapi32/crypt_lmhash.c:264:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key->Buffer, key->Length); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:267:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key->Buffer, sizeof deskey); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:284:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->Buffer+ofs, data.uc, crypt_len-ofs); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:367:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:368:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+4, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:369:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+8, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:370:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+12, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:395:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:396:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+4, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:397:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+8, key, 4); data/wine-5.0/dlls/advapi32/crypt_lmhash.c:398:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(deskey+12, key, 4); data/wine-5.0/dlls/advapi32/lsa.c:111:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ustr->Buffer, wDomain, sizeof(wDomain)); data/wine-5.0/dlls/advapi32/lsa.c:356:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(list->Domains[list->Entries].Name.Buffer, domain->Buffer, domain->MaximumLength); data/wine-5.0/dlls/advapi32/lsa.c:1057:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(strW, privnameW, length * sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/security.c:494:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, &computer_sid, sizeof(computer_sid) ); data/wine-5.0/dlls/advapi32/security.c:1398:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TOKEN_USER) + sizeof(SID) + sizeof(DWORD)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/advapi32/security.c:3193:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( tok, StringSecurityDescriptor, len * sizeof(WCHAR) ); data/wine-5.0/dlls/advapi32/security.c:3387:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pwptr, string, sizeof(WCHAR)*cch); data/wine-5.0/dlls/advapi32/service.c:128:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/service.c:130:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, wstr, len ); data/wine-5.0/dlls/advapi32/service.c:142:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar( CP_ACP, 0, &str[n], -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/service.c:149:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, n, wstr, len ); data/wine-5.0/dlls/advapi32/service.c:407:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (count) memcpy( service->args, data, count * sizeof(WCHAR) ); data/wine-5.0/dlls/advapi32/service.c:699:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, servent[i].lpServiceName, -1, NULL, 0); data/wine-5.0/dlls/advapi32/service.c:702:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, servent[i].lpServiceName, -1, info->name, len); data/wine-5.0/dlls/advapi32/service.c:1347:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy(lpservicestatus, &SvcStatusData, sizeof(SERVICE_STATUS)) ; data/wine-5.0/dlls/advapi32/service.c:1480:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*buf, *string_ptr, cb); data/wine-5.0/dlls/advapi32/service.c:1612:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, bufferW, *needed); data/wine-5.0/dlls/advapi32/service.c:1712:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc->lpDescription, s->description, s->size ); data/wine-5.0/dlls/advapi32/service.c:1888:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( services[i].lpServiceName, str, str_size ); data/wine-5.0/dlls/advapi32/service.c:1897:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( services[i].lpDisplayName, str, str_size ); data/wine-5.0/dlls/advapi32/service.c:1937:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, group, -1, NULL, 0 ); data/wine-5.0/dlls/advapi32/service.c:1944:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, group, -1, groupW, len * sizeof(WCHAR) ); data/wine-5.0/dlls/advapi32/service.c:2076:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( services[i].lpServiceName, str, str_size ); data/wine-5.0/dlls/advapi32/service.c:2085:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( services[i].lpDisplayName, str, str_size ); data/wine-5.0/dlls/advapi32/service.c:2680:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data->notify_buffer->ServiceStatus, &cparams->ServiceStatus, data/wine-5.0/dlls/advapi32/tests/crypt.c:904:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char originalGuid[40]; data/wine-5.0/dlls/advapi32/tests/crypt.c:951:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char key[key_length] = data/wine-5.0/dlls/advapi32/tests/crypt.c:979:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_blob.key_data, key, key_length); data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:78:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lmhash[16 + 1]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:97:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char hash[0x40] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:100:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char challenge[0x40] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:102:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expected[0x18] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:106:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[0x18]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:137:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[8] = { 0xff, 0x37, 0x50, 0xbc, 0xc2, 0xb2, 0x24, 0 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:138:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[8] = { 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:139:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expected[8] = { 0xc3, 0x37, 0xcd, 0x5c, 0xbd, 0x44, 0xfc, 0x97 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:140:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[16]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:157:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[8] = { 0xff, 0x37, 0x50, 0xbc, 0xc2, 0xb2, 0x24, 0 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:158:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expected[8] = { 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:159:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[8] = { 0xc3, 0x37, 0xcd, 0x5c, 0xbd, 0x44, 0xfc, 0x97 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:160:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[8]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:173:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char szData[8] = { 'b','a','r',0 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:195:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[8], data[8]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:196:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[7] = { 0xff, 0x37, 0x50, 0xbc, 0xc2, 0xb2, 0x24 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:197:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char exp1[8] = { 0x9d, 0x21, 0xc8, 0x86, 0x6c, 0x21, 0xcf, 0x43 }; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:221:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char inbuf[0x100], keybuf[0x100], resbuf[0x100]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:222:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[8]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:306:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[0x40], result[0x40]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:369:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char hash[0x10] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:372:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char challenge[8] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:374:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expected[0x18] = { data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:378:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[0x18]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:403:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[0x11]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:424:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output[0x11]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:450:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[4], output[0x11]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:462:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, "foo", 4); data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:472:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[4], output[0x11]; data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:484:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, "foo", 4); data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:494:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char arg1[0x20], arg2[0x20]; data/wine-5.0/dlls/advapi32/tests/crypt_md4.c:35:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/advapi32/tests/crypt_md4.c:36:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/advapi32/tests/crypt_md4.c:79:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expect[16] = data/wine-5.0/dlls/advapi32/tests/crypt_md4.c:129:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expected[0x10] = { data/wine-5.0/dlls/advapi32/tests/crypt_md4.c:132:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[0x10], output[0x10]; data/wine-5.0/dlls/advapi32/tests/crypt_md5.c:32:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/advapi32/tests/crypt_md5.c:33:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/advapi32/tests/crypt_md5.c:72:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char expect[16] = data/wine-5.0/dlls/advapi32/tests/eventlog.c:1057:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char eventlogfile[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/eventlog.c:1065:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sources[sizeof(eventsources)]; data/wine-5.0/dlls/advapi32/tests/eventlog.c:1066:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sysdir[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/eventlog.c:1077:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sources_verify[sizeof(eventsources)]; data/wine-5.0/dlls/advapi32/tests/eventlog.c:1134:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char winesvc[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/lsa.c:160:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/advapi32/tests/lsa.c:196:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char account[257], domain[257]; data/wine-5.0/dlls/advapi32/tests/lsa.c:252:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name[0].Buffer, n1, sizeof(n1)); data/wine-5.0/dlls/advapi32/tests/lsa.c:256:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name[1].Buffer, n1, sizeof(n1) - sizeof(WCHAR)); data/wine-5.0/dlls/advapi32/tests/lsa.c:260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name[2].Buffer, n2, sizeof(n2)); data/wine-5.0/dlls/advapi32/tests/registry.c:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/registry.c:469:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[20], data[20]; data/wine-5.0/dlls/advapi32/tests/registry.c:495:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:496:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:509:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:525:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:526:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:539:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:540:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:556:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:557:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:572:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:573:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:586:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:587:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:601:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:609:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:616:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( value, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:617:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data, "xxxxxxxxxx" ); data/wine-5.0/dlls/advapi32/tests/registry.c:637:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:638:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:651:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:652:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:665:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:666:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:680:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:694:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:702:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:709:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( valueW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:710:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dataW, xxxW, sizeof(xxxW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:1740:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char classbuffer[32]; data/wine-5.0/dlls/advapi32/tests/registry.c:1742:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expectbuffer[32]; data/wine-5.0/dlls/advapi32/tests/registry.c:1984:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[11]; data/wine-5.0/dlls/advapi32/tests/registry.c:2246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value_buf[2]; data/wine-5.0/dlls/advapi32/tests/registry.c:2308:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target, target_str.Buffer, target_str.Length ); data/wine-5.0/dlls/advapi32/tests/registry.c:2309:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target + target_str.Length/sizeof(WCHAR), targetW, sizeof(targetW) ); data/wine-5.0/dlls/advapi32/tests/registry.c:3253:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[20]; data/wine-5.0/dlls/advapi32/tests/registry.c:3299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char longname[401]; data/wine-5.0/dlls/advapi32/tests/registry.c:3785:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], *p, sysdir[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/registry.c:3786:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char with_env_var[128], filename[MAX_PATH], tmp_path[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/registry.c:3837:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(with_env_var, "@%windir%\\system32\\"); data/wine-5.0/dlls/advapi32/tests/registry.c:3845:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). i = atoi(p + 2); /* skip ',-' */ data/wine-5.0/dlls/advapi32/tests/security.c:631:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; /* arbitrary, seems long enough */ data/wine-5.0/dlls/advapi32/tests/security.c:784:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wintmpdir [MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:785:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path [MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:786:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file [MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:808:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (strcpy (path, wintmpdir), "rary"); data/wine-5.0/dlls/advapi32/tests/security.c:814:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (strcpy (file, path), "\\ess"); data/wine-5.0/dlls/advapi32/tests/security.c:891:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (wintmpdir, "\\Should not exist"); data/wine-5.0/dlls/advapi32/tests/security.c:2003:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char max[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:2013:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char account[MAX_PATH], domain[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:2101:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sid_buffer[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:2127:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf2[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:2455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wk_sid[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:2740:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8192]; data/wine-5.0/dlls/advapi32/tests/security.c:2873:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], account[MAX_PATH], domain[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3200:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(PrivilegeSet->Privilege, Privileges->Privileges, PrivilegeSet->PrivilegeCount * sizeof(PrivilegeSet->Privilege[0])); data/wine-5.0/dlls/advapi32/tests/security.c:3573:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char admin_ptr[sizeof(SID)+sizeof(ULONG)*SID_MAX_SUB_AUTHORITIES], *user; data/wine-5.0/dlls/advapi32/tests/security.c:3576:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sd[SECURITY_DESCRIPTOR_MIN_LENGTH]; data/wine-5.0/dlls/advapi32/tests/security.c:3582:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfile[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3582:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char tmpfile[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3583:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3655:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3656:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3658:25: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). hTemp = CreateFileA(tmpfile, GENERIC_WRITE, FILE_SHARE_READ, NULL, data/wine-5.0/dlls/advapi32/tests/security.c:3662:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, data/wine-5.0/dlls/advapi32/tests/security.c:3681:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3682:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3687:25: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). hTemp = CreateFileA(tmpfile, GENERIC_WRITE, FILE_SHARE_READ, &sa, data/wine-5.0/dlls/advapi32/tests/security.c:3702:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, data/wine-5.0/dlls/advapi32/tests/security.c:3719:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3720:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3721:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). get_nt_pathW(tmpfile, &tmpfileW); data/wine-5.0/dlls/advapi32/tests/security.c:3735:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, data/wine-5.0/dlls/advapi32/tests/security.c:3754:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcpy(tmpfile, tmpdir); data/wine-5.0/dlls/advapi32/tests/security.c:3755:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). lstrcatA(tmpfile, "/tmpfile"); data/wine-5.0/dlls/advapi32/tests/security.c:3756:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). get_nt_pathW(tmpfile, &tmpfileW); data/wine-5.0/dlls/advapi32/tests/security.c:3781:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, data/wine-5.0/dlls/advapi32/tests/security.c:3805:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char admin_ptr[sizeof(SID)+sizeof(ULONG)*SID_MAX_SUB_AUTHORITIES], *user; data/wine-5.0/dlls/advapi32/tests/security.c:3806:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char system_ptr[sizeof(SID)+sizeof(ULONG)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/advapi32/tests/security.c:3807:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char users_ptr[sizeof(SID)+sizeof(ULONG)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/advapi32/tests/security.c:3815:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sd[SECURITY_DESCRIPTOR_MIN_LENGTH+sizeof(void*)]; data/wine-5.0/dlls/advapi32/tests/security.c:3822:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfile[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3822:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char tmpfile[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:3936:37: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). GetTempFileNameA(".", "foo", 0, tmpfile); data/wine-5.0/dlls/advapi32/tests/security.c:3937:25: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). hTemp = CreateFileA(tmpfile, WRITE_DAC|GENERIC_WRITE, FILE_SHARE_DELETE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:3940:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pSetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION, NULL, data/wine-5.0/dlls/advapi32/tests/security.c:3952:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION, data/wine-5.0/dlls/advapi32/tests/security.c:3996:37: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pSetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION, data/wine-5.0/dlls/advapi32/tests/security.c:4001:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION, data/wine-5.0/dlls/advapi32/tests/security.c:4016:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4022:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pSetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, data/wine-5.0/dlls/advapi32/tests/security.c:4026:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION, data/wine-5.0/dlls/advapi32/tests/security.c:4032:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4048:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4057:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4067:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4084:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4100:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). h = CreateFileA(tmpfile, GENERIC_READ, FILE_SHARE_DELETE|FILE_SHARE_WRITE|FILE_SHARE_READ, data/wine-5.0/dlls/advapi32/tests/security.c:4345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sid_buf[256]; data/wine-5.0/dlls/advapi32/tests/security.c:4346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char acl_buf[8192]; data/wine-5.0/dlls/advapi32/tests/security.c:4623:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/advapi32/tests/security.c:4676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char domain_users_ptr[sizeof(TOKEN_USER) + sizeof(SID) + sizeof(DWORD)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/advapi32/tests/security.c:4677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b[sizeof(TOKEN_USER) + sizeof(SID) + sizeof(DWORD)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/advapi32/tests/security.c:4678:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char admin_ptr[sizeof(SID)+sizeof(ULONG)*SID_MAX_SUB_AUTHORITIES], dacl[100]; data/wine-5.0/dlls/advapi32/tests/security.c:4684:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sd[SECURITY_DESCRIPTOR_MIN_LENGTH]; data/wine-5.0/dlls/advapi32/tests/security.c:5044:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[UNLEN + 1], filler[UNLEN + 1]; data/wine-5.0/dlls/advapi32/tests/security.c:5085:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5094:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5106:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5156:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5165:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5174:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, filler, sizeof(filler)); data/wine-5.0/dlls/advapi32/tests/security.c:5700:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:5701:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:5702:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/advapi32/tests/security.c:5807:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:5808:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:6322:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char acl_buf[1024], ace_buf[256]; data/wine-5.0/dlls/advapi32/tests/security.c:6330:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ace->SidStart, &sidWorld, sizeof(sidWorld)); data/wine-5.0/dlls/advapi32/tests/security.c:6370:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_sd[SECURITY_DESCRIPTOR_MIN_LENGTH]; data/wine-5.0/dlls/advapi32/tests/security.c:6375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_acl[256]; data/wine-5.0/dlls/advapi32/tests/security.c:6728:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *user, buffer1[SECURITY_MAX_SID_SIZE], buffer2[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:6808:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/security.c:6888:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_sd[SECURITY_DESCRIPTOR_MIN_LENGTH], buffer_acl[256]; data/wine-5.0/dlls/advapi32/tests/security.c:7008:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_sd[SECURITY_DESCRIPTOR_MIN_LENGTH]; data/wine-5.0/dlls/advapi32/tests/security.c:7010:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_acl[256], buffer[MAX_PATH]; data/wine-5.0/dlls/advapi32/tests/security.c:7430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/advapi32/tests/security.c:7464:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sid_buffer[SECURITY_MAX_SID_SIZE], sid_buffer2[SECURITY_MAX_SID_SIZE]; data/wine-5.0/dlls/advapi32/tests/service.c:203:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/advapi32/tests/service.c:493:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(displayname, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:511:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(displayname, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:529:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(displayname, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:547:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(displayname, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:774:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(servicename, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:792:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(servicename, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:810:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(servicename, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:828:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(servicename, "ABC"); data/wine-5.0/dlls/advapi32/tests/service.c:882:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, displayname, -1, displaynameW, sizeof(displaynameW)/2); data/wine-5.0/dlls/advapi32/tests/service.c:2505:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH+20]; data/wine-5.0/dlls/advpack/advpack.c:533:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szGUID, -1, perUserW.szGUID, ARRAY_SIZE(perUserW.szGUID)); data/wine-5.0/dlls/advpack/advpack.c:534:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szDispName, -1, perUserW.szDispName, ARRAY_SIZE(perUserW.szDispName)); data/wine-5.0/dlls/advpack/advpack.c:535:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szLocale, -1, perUserW.szLocale, ARRAY_SIZE(perUserW.szLocale)); data/wine-5.0/dlls/advpack/advpack.c:536:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szStub, -1, perUserW.szStub, ARRAY_SIZE(perUserW.szStub)); data/wine-5.0/dlls/advpack/advpack.c:537:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szVersion, -1, perUserW.szVersion, ARRAY_SIZE(perUserW.szVersion)); data/wine-5.0/dlls/advpack/advpack.c:538:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPerUser->szCompID, -1, perUserW.szCompID, ARRAY_SIZE(perUserW.szCompID)); data/wine-5.0/dlls/advpack/files.c:48:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wlen = MultiByteToWideChar(CP_ACP, 0, ansi_list, len, NULL, 0); data/wine-5.0/dlls/advpack/files.c:50:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ansi_list, len, list, wlen); data/wine-5.0/dlls/advpack/install.c:640:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pCab->szSrcPath, -1, cabinfo.szSrcPath, ARRAY_SIZE(cabinfo.szSrcPath)); data/wine-5.0/dlls/advpack/reg.c:104:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). name_len = MultiByteToWideChar(CP_ACP, 0, aentry->pszName, -1, NULL, 0); data/wine-5.0/dlls/advpack/reg.c:105:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). val_len = MultiByteToWideChar(CP_ACP, 0, aentry->pszValue, -1, NULL, 0); data/wine-5.0/dlls/advpack/reg.c:110:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, aentry->pszName, -1, wentry->pszName, name_len); data/wine-5.0/dlls/advpack/reg.c:111:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, aentry->pszValue, -1, wentry->pszValue, val_len); data/wine-5.0/dlls/advpack/tests/advpack.c:204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1024]; data/wine-5.0/dlls/advpack/tests/advpack.c:248:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/advpack.c:329:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/advpack.c:469:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drive[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/advpack.c:493:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1024]; data/wine-5.0/dlls/advpack/tests/advpack.c:552:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char check[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/files.c:332:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/files.c:390:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char destFolder[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/files.c:496:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char destFolder[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/files.c:549:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:32:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:79:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char systemdir[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:191:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/advpack/tests/install.c:268:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/appwiz.cpl/addons.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/appwiz.cpl/addons.c:155:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf + i * 2, "%02x", sha[i]); data/wine-5.0/dlls/appwiz.cpl/addons.c:596:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*strs, wine_addon_downloaderW, sizeof(wine_addon_downloaderW)); data/wine-5.0/dlls/appwiz.cpl/appwiz.h:39:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size*sizeof(WCHAR)); data/wine-5.0/dlls/appwiz.cpl/appwiz.h:54:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/appwiz.cpl/appwiz.h:57:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/atl/atl.c:361:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+path_len, lpszIndex, (index_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/atl/atl.c:370:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tlb_extW, sizeof(tlb_extW)); data/wine-5.0/dlls/atl/atl.c:794:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, implemented_catW, sizeof(implemented_catW)); data/wine-5.0/dlls/atl/atl.c:797:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, required_catW, sizeof(required_catW)); data/wine-5.0/dlls/atl/atl30.c:316:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(wci->m_szAutoName, "ATL%08x", PtrToUint(wci)); data/wine-5.0/dlls/atl/atl_ax.c:1314:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/atl/atl_ax.c:1318:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, length ); data/wine-5.0/dlls/atl/registrar.c:97:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->str+buf->len, str, len*sizeof(OLECHAR)); data/wine-5.0/dlls/atl/registrar.c:466:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, regstra, reslen, NULL, 0)+1; data/wine-5.0/dlls/atl/registrar.c:468:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, regstra, reslen, regstrw, len); data/wine-5.0/dlls/atl/registrar.c:504:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, regstra, filelen, NULL, 0)+1; data/wine-5.0/dlls/atl/registrar.c:506:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, regstra, filelen, regstrw, len); data/wine-5.0/dlls/atl/registrar.c:573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_rep->key, Key, (new_rep->key_len+1)*sizeof(OLECHAR)); data/wine-5.0/dlls/atl/registrar.c:577:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_rep->item, item, len*sizeof(OLECHAR)); data/wine-5.0/dlls/atl/tests/registrar.c:75:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/atl/tests/registrar.c:85:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, count); data/wine-5.0/dlls/avicap32/avicap32_main.c:106:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device[16]; data/wine-5.0/dlls/avicap32/avicap32_main.c:123:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(device, O_RDWR | O_NONBLOCK); data/wine-5.0/dlls/avicap32/avicap32_main.c:189:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devname[CAP_DESC_MAX], devver[CAP_DESC_MAX]; data/wine-5.0/dlls/avicap32/avicap32_main.c:193:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, devname, -1, lpszName, cbName); data/wine-5.0/dlls/avicap32/avicap32_main.c:194:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, devver, -1, lpszVer, cbVer); data/wine-5.0/dlls/avifil32/acmstream.c:258:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpOutFormat, (LPVOID)lParam2, This->cbOutFormat); data/wine-5.0/dlls/avifil32/acmstream.c:290:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psi, &This->sInfo, min(size, (LONG)sizeof(This->sInfo))); data/wine-5.0/dlls/avifil32/acmstream.c:350:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, This->lpOutFormat, min(*formatsize, This->cbOutFormat)); data/wine-5.0/dlls/avifil32/acmstream.c:391:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpInFormat, format, formatsize); data/wine-5.0/dlls/avifil32/api.c:207:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szFile, -1, NULL, 0); data/wine-5.0/dlls/avifil32/api.c:215:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szFile, -1, wszFile, len); data/wine-5.0/dlls/avifil32/api.c:321:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(afi, &afiw, sizeof(*afi) - sizeof(afi->szFileType)); data/wine-5.0/dlls/avifil32/api.c:371:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&psiw, psi, sizeof(*psi) - sizeof(psi->szName)); data/wine-5.0/dlls/avifil32/api.c:372:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, psi->szName, -1, psiw.szName, data/wine-5.0/dlls/avifil32/api.c:511:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(asi, &asiw, sizeof(asiw) - sizeof(asiw.szName)); data/wine-5.0/dlls/avifil32/api.c:1123:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( szAllFiles + size, all_files, sizeof(all_files) ); data/wine-5.0/dlls/avifil32/api.c:1127:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szFilter, szAllFiles, size * sizeof(szAllFiles[0])); data/wine-5.0/dlls/avifil32/api.c:1449:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pSavedOptions + n, ppOptions[n], sizeof(AVICOMPRESSOPTIONS)); data/wine-5.0/dlls/avifil32/api.c:1469:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppOptions[n], pSavedOptions + n, sizeof(AVICOMPRESSOPTIONS)); data/wine-5.0/dlls/avifil32/api.c:1526:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szFile, -1, NULL, 0); data/wine-5.0/dlls/avifil32/api.c:1534:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szFile, -1, wszFile, len); data/wine-5.0/dlls/avifil32/api.c:2111:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, asi->szName, -1, asiw.szName, ARRAY_SIZE(asiw.szName)); data/wine-5.0/dlls/avifil32/avifile.c:288:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(afi, &This->fInfo, min((DWORD)size, sizeof(This->fInfo))); data/wine-5.0/dlls/avifil32/avifile.c:740:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psi, &This->sInfo, min((DWORD)size, sizeof(This->sInfo))); data/wine-5.0/dlls/avifil32/avifile.c:863:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, This->lpFormat, min(*(DWORD*)formatsize, This->cbFormat)); data/wine-5.0/dlls/avifil32/avifile.c:915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpFormat, format, formatsize); data/wine-5.0/dlls/avifil32/avifile.c:1068:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ((BYTE*)&This->lpBuffer[2]) + offset, size); data/wine-5.0/dlls/avifil32/avifile.c:1252:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp, This->lpHandlerData, min(This->cbHandlerData, *lpread)); data/wine-5.0/dlls/avifil32/avifile.c:1302:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpHandlerData, lp, size); data/wine-5.0/dlls/avifil32/avifile.c:1785:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, pStream->sInfo.szName, data/wine-5.0/dlls/avifil32/editstream.c:573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->pStreams + streamNr, pEdit->pStreams + n, data/wine-5.0/dlls/avifil32/editstream.c:629:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pEdit->pStreams, This->pStreams, data/wine-5.0/dlls/avifil32/editstream.c:631:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pEdit->sInfo,&This->sInfo,sizeof(This->sInfo)); data/wine-5.0/dlls/avifil32/editstream.c:660:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sInfo.szName, asi->szName, sizeof(asi->szName)); data/wine-5.0/dlls/avifil32/editstream.c:737:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psi, &This->sInfo, min((DWORD)size, sizeof(This->sInfo))); data/wine-5.0/dlls/avifil32/editstream.c:812:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, lp, min((LONG)n, *fmtsize)); data/wine-5.0/dlls/avifil32/editstream.c:911:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, (LPBYTE)lp + count, lp->biSizeImage); data/wine-5.0/dlls/avifil32/extrachunk.c:49:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpData, lp + 2 * sizeof(DWORD), data/wine-5.0/dlls/avifil32/extrachunk.c:96:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp + 2, lpData, size); data/wine-5.0/dlls/avifil32/getframe.c:404:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpOutFormat, lpbi, data/wine-5.0/dlls/avifil32/icmstream.c:282:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psi, &This->sInfo, min((DWORD)size, sizeof(This->sInfo))); data/wine-5.0/dlls/avifil32/icmstream.c:360:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, This->lpbiOutput, min(*formatsize, This->cbOutput)); data/wine-5.0/dlls/avifil32/icmstream.c:362:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, lpbi, min(*formatsize, size)); data/wine-5.0/dlls/avifil32/icmstream.c:366:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, This->lpbiOutput, min(*formatsize, This->cbOutput)); data/wine-5.0/dlls/avifil32/icmstream.c:432:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpbiInput, format, formatsize); data/wine-5.0/dlls/avifil32/icmstream.c:460:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpbiCur, This->lpbiOutput, This->cbOutput); data/wine-5.0/dlls/avifil32/icmstream.c:573:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, DIBPTR(lpbi), lpbi->biSizeImage); data/wine-5.0/dlls/avifil32/icmstream.c:605:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, This->lpCur, This->lpbiCur->biSizeImage); data/wine-5.0/dlls/avifil32/icmstream.c:928:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpbiCur, This->lpbiOutput, This->cbOutput); data/wine-5.0/dlls/avifil32/tests/api.c:324:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cah->fh, deffh, sizeof(deffh)); data/wine-5.0/dlls/avifil32/tests/api.c:358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/avifil32/tests/api.c:455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/avifil32/tests/api.c:476:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/avifil32/tests/api.c:512:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/avifil32/tmpfile.c:114:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(afi, &This->fInfo, min((DWORD)size, sizeof(This->fInfo))); data/wine-5.0/dlls/avifil32/wavfile.c:249:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(afi, &This->fInfo, min((DWORD)size, sizeof(This->fInfo))); data/wine-5.0/dlls/avifil32/wavfile.c:643:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psi, &This->sInfo, min((DWORD)size, sizeof(This->sInfo))); data/wine-5.0/dlls/avifil32/wavfile.c:704:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, This->lpFormat, min(*formatsize, This->cbFormat)); data/wine-5.0/dlls/avifil32/wavfile.c:749:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->lpFormat, format, formatsize); data/wine-5.0/dlls/avrt/main.c:60:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TaskName, len, str, len); data/wine-5.0/dlls/bcrypt/bcrypt_internal.h:64:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char chksum[16], X[48], buf[16]; data/wine-5.0/dlls/bcrypt/bcrypt_internal.h:76:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/bcrypt/bcrypt_internal.h:77:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/bcrypt/bcrypt_internal.h:88:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/bcrypt/bcrypt_internal.h:89:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/bcrypt/bcrypt_main.c:389:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output, hash->u.md4.digest, 16 ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:394:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output, hash->u.md5.digest, 16 ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:467:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, builtin_algorithms[id].name, *ret_size); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:496:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, str, (strlenW(str) + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:666:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( buffer, hash->secret, hash->secret_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:703:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash->secret, secret, secretlen ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:732:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash_copy, hash_orig, sizeof(*hash_orig) ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:738:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash_copy->secret, hash_orig->secret, hash_orig->secret_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:896:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &header[1], key->u.s.secret, key->u.s.secret_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:907:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output + sizeof(len), key->u.s.secret, key->u.s.secret_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:915:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output, key->u.a.pubkey, key->u.a.pubkey_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:923:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output, key->u.a.pubkey, key->u.a.pubkey_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:946:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, key_orig->u.s.secret, key_orig->u.s.secret_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:956:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, key_orig->u.a.pubkey, key_orig->u.a.pubkey_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:1025:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, src, bytes_left ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:1104:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( dst, buf, key->u.s.block_size - buf[ key->u.s.block_size - 1 ] ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:1635:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (j == 0) memcpy( dst, buf, hash_len ); data/wine-5.0/dlls/bcrypt/bcrypt_main.c:1692:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dk + ((block_count - 1) * hash_len), partial, bytes_left ); data/wine-5.0/dlls/bcrypt/gnutls.c:336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &buffer->buffer[buffer->pos], data, len ); data/wine-5.0/dlls/bcrypt/gnutls.c:451:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->u.s.secret, secret, secret_len ); data/wine-5.0/dlls/bcrypt/gnutls.c:509:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->u.s.vector, vector, vector_len ); data/wine-5.0/dlls/bcrypt/gnutls.c:628:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, e.size ); data/wine-5.0/dlls/bcrypt/gnutls.c:637:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, m.size ); data/wine-5.0/dlls/bcrypt/gnutls.c:694:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/bcrypt/gnutls.c:699:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/bcrypt/gnutls.c:813:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/bcrypt/gnutls.c:818:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/bcrypt/gnutls.c:823:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/bcrypt/gnutls.c:903:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->u.a.pubkey, pubkey, pubkey_len ); data/wine-5.0/dlls/bcrypt/gnutls.c:1153:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output, signature.data, signature.size ); data/wine-5.0/dlls/bcrypt/gnutls.c:1193:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output + pad_size, r.data, r.size ); data/wine-5.0/dlls/bcrypt/gnutls.c:1194:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output + (sig_len / 2) + pad_size, s.data, s.size ); data/wine-5.0/dlls/bcrypt/macos.c:102:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->u.s.secret, secret, secret_len ); data/wine-5.0/dlls/bcrypt/macos.c:146:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->u.s.vector, vector, vector_len ); data/wine-5.0/dlls/bcrypt/md2.c:33:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char PI_SUBST[256] = { data/wine-5.0/dlls/bcrypt/md2.c:108:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(md2->buf + md2->curlen, buf, (size_t)n); data/wine-5.0/dlls/bcrypt/md2.c:139:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(md2->buf, md2->chksum, 16); data/wine-5.0/dlls/bcrypt/md2.c:143:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, md2->X, 16); data/wine-5.0/dlls/bcrypt/sha256.c:144:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf + r, p, len); data/wine-5.0/dlls/bcrypt/sha256.c:147:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf + r, p, 64 - r); data/wine-5.0/dlls/bcrypt/sha256.c:154:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf, p, len); data/wine-5.0/dlls/bcrypt/sha512.c:160:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf + r, p, len); data/wine-5.0/dlls/bcrypt/sha512.c:163:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf + r, p, 128 - r); data/wine-5.0/dlls/bcrypt/sha512.c:172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf, p, len); data/wine-5.0/dlls/bcrypt/sha512.c:211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, buffer512, 48); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:153:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf + i * 2, "%02x", bytes[i]); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:161:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:243:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[512]; data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:247:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->alg, -1, alg_name, ARRAY_SIZE(alg_name)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:448:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[65]; data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:527:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[51]; data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:646:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mode, BCRYPT_CHAIN_MODE_GCM, sizeof(BCRYPT_CHAIN_MODE_GCM)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:731:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:737:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:764:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:783:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:789:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:909:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:945:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:952:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:958:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:969:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:975:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:986:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:993:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1009:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1015:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1077:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1121:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1139:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1168:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1173:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1200:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1356:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1362:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1371:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1377:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1392:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1401:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1407:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1413:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1419:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1426:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1433:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1468:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1482:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1490:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1518:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ivbuf, iv, sizeof(iv)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:1721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ecckey + 1, eccPubkey, sizeof(eccPubkey)); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:2319:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + sizeof(*blob), secret, sizeof(secret)); data/wine-5.0/dlls/browseui/progressdlg.c:103:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*buffer, string, cb); data/wine-5.0/dlls/browseui/tests/autocomplete.c:42:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int size = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/browseui/tests/autocomplete.c:44:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, wstr, size+1); data/wine-5.0/dlls/cabinet/fci.c:110:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CB_MAX_FILENAME]; data/wine-5.0/dlls/cabinet/fci.c:133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/cabinet/fci.c:150:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). PFNFCIOPEN open; data/wine-5.0/dlls/cabinet/fci.c:166:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPrevCab[CB_MAX_CABINET_NAME]; /* previous cabinet name */ data/wine-5.0/dlls/cabinet/fci.c:167:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPrevDisk[CB_MAX_DISK_NAME]; /* disk name of previous cabinet */ data/wine-5.0/dlls/cabinet/fci.c:168:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data_in[CAB_BLOCKMAX]; /* uncompressed data blocks */ data/wine-5.0/dlls/cabinet/fci.c:169:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data_out[2 * CAB_BLOCKMAX]; /* compressed data blocks */ data/wine-5.0/dlls/cabinet/fci.c:240:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((file->handle = fci->open( file->name, _O_RDWR | _O_CREAT | _O_EXCL | _O_BINARY, data/wine-5.0/dlls/cabinet/fci.c:300:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( file, orig, size ); data/wine-5.0/dlls/cabinet/fci.c:649:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[CB_MAX_CAB_PATH + CB_MAX_CABINET_NAME]; data/wine-5.0/dlls/cabinet/fci.c:667:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cfheader->signature, "!CAB", 4 ); data/wine-5.0/dlls/cabinet/fci.c:716:24: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((handle = fci->open( filename, _O_RDWR | _O_CREAT | _O_TRUNC | _O_BINARY, data/wine-5.0/dlls/cabinet/fci.c:741:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cfheader->signature, "MSCF", 4 ); data/wine-5.0/dlls/cabinet/fci.c:906:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fci->data_out, fci->data_in, fci->cdata_in ); data/wine-5.0/dlls/cabinet/fci.c:1056:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p_fci_internal->szPrevCab, pccab->szCab, CB_MAX_CABINET_NAME); data/wine-5.0/dlls/cabinet/fci.c:1057:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p_fci_internal->szPrevDisk, pccab->szDisk, CB_MAX_DISK_NAME); data/wine-5.0/dlls/cabinet/fci.c:1276:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p_fci_internal->szPrevCab, p_fci_internal->ccab.szCab, data/wine-5.0/dlls/cabinet/fci.c:1278:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p_fci_internal->szPrevDisk, p_fci_internal->ccab.szDisk, data/wine-5.0/dlls/cabinet/fdi.c:118:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). PFNOPEN open; data/wine-5.0/dlls/cabinet/fdi.c:822:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CAB(extra_bits), bits, sizeof(bits)); data/wine-5.0/dlls/cabinet/fdi.c:823:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CAB(lzx_position_base), base, sizeof(base)); data/wine-5.0/dlls/cabinet/fdi.c:856:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CAB(outbuf), CAB(inbuf), (size_t) inlen); data/wine-5.0/dlls/cabinet/fdi.c:1549:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CAB(outbuf), window + ((!window_posn) ? window_size : window_posn) - data/wine-5.0/dlls/cabinet/fdi.c:1874:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(window + window_posn, inpos, (size_t) this_run); data/wine-5.0/dlls/cabinet/fdi.c:1886:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CAB(outbuf), window + ((!window_posn) ? window_size : window_posn) - data/wine-5.0/dlls/cabinet/fdi.c:1998:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fullpath[MAX_PATH], userpath[256]; data/wine-5.0/dlls/cabinet/fdi.c:2062:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cabhf = CAB(fdi)->open(fullpath, _O_RDONLY|_O_BINARY, _S_IREAD | _S_IWRITE); data/wine-5.0/dlls/cabinet/fdi.c:2431:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fullpath[MAX_PATH]; data/wine-5.0/dlls/cabinet/fdi.c:2474:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cabhf = fdi->open(fullpath, _O_RDONLY|_O_BINARY, _S_IREAD | _S_IWRITE); data/wine-5.0/dlls/cabinet/tests/extract.c:274:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/cabinet/tests/fdi.c:590:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/cabinet/tests/fdi.c:770:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data->base + data->pos, cb_read); data/wine-5.0/dlls/cabinet/tests/fdi.c:825:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char expected[9] = "file.dat\0"; data/wine-5.0/dlls/cabinet/tests/fdi.c:865:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH + 1]; data/wine-5.0/dlls/capi2032/cap20wxx.c:185:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (SzBuffer, "AVM-GmbH"); data/wine-5.0/dlls/capi2032/cap20wxx.c:198:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char version[4 * sizeof (unsigned)]; data/wine-5.0/dlls/combase/string.c:93:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(priv->buffer, ptr, len * sizeof(*priv->buffer)); data/wine-5.0/dlls/combase/string.c:358:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(priv->buffer, priv1->buffer, priv1->length * sizeof(*priv1->buffer)); data/wine-5.0/dlls/combase/string.c:359:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(priv->buffer + priv1->length, priv2->buffer, priv2->length * sizeof(*priv2->buffer)); data/wine-5.0/dlls/combase/tests/string.c:245:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, input_string, 6 * sizeof(*input_string)); data/wine-5.0/dlls/combase/tests/string.c:262:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, input_string, 7 * sizeof(*input_string)); data/wine-5.0/dlls/comctl32/animate.c:773:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszName, -1, NULL, 0); data/wine-5.0/dlls/comctl32/animate.c:776:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszName, -1, lpwszName, len); data/wine-5.0/dlls/comctl32/button.c:324:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (dst) memcpy(dst, src, size); data/wine-5.0/dlls/comctl32/button.c:779:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, infoPtr->note, length * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/comboex.c:307:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar (CP_ACP, 0, (LPSTR)nmce.ceItem.pszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/comboex.c:310:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar (CP_ACP, 0, (LPSTR)nmce.ceItem.pszText, -1, buf, len); data/wine-5.0/dlls/comctl32/comboex.c:679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&citW,cit,sizeof(COMBOBOXEXITEMA)); data/wine-5.0/dlls/comctl32/comboex.c:681:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar (CP_ACP, 0, cit->pszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/comboex.c:684:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar (CP_ACP, 0, cit->pszText, -1, wstr, len); data/wine-5.0/dlls/comctl32/comboex.c:803:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&citW, cit, sizeof(COMBOBOXEXITEMA)); data/wine-5.0/dlls/comctl32/comboex.c:805:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar (CP_ACP, 0, cit->pszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/comboex.c:808:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar (CP_ACP, 0, cit->pszText, -1, wstr, len); data/wine-5.0/dlls/comctl32/comctl32undoc.c:494:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &witem->datastart, lpData, cbData); data/wine-5.0/dlls/comctl32/comctl32undoc.c:580:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszString, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/comctl32/comctl32undoc.c:585:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszString, -1, stringW, len/sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/comctl32undoc.c:637:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, lpszString, -1, NULL, 0); data/wine-5.0/dlls/comctl32/comctl32undoc.c:641:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszString, -1, stringW, len); data/wine-5.0/dlls/comctl32/comctl32undoc.c:746:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mp->extview, infoW, sizeof(MRUINFOW)); data/wine-5.0/dlls/comctl32/comctl32undoc.c:780:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mp->extview, lpcml, sizeof(MRUINFOA)); data/wine-5.0/dlls/comctl32/comctl32undoc.c:781:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpcml->lpszSubKey, -1, NULL, 0); data/wine-5.0/dlls/comctl32/comctl32undoc.c:783:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpcml->lpszSubKey, -1, data/wine-5.0/dlls/comctl32/comctl32undoc.c:849:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpBuffer, &witem->datastart, datasize); data/wine-5.0/dlls/comctl32/comctl32undoc.c:877:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpBuffer, &witem->datastart, datasize); data/wine-5.0/dlls/comctl32/comctl32undoc.c:884:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. ((char *)lpBuffer)[ datasize - 1 ] = '\0'; data/wine-5.0/dlls/comctl32/comctl32undoc.c:954:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(CP_ACP, 0, lpSrc, -1, 0, 0); data/wine-5.0/dlls/comctl32/comctl32undoc.c:964:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpSrc, -1, 0, 0); data/wine-5.0/dlls/comctl32/comctl32undoc.c:968:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSrc, -1, lpDest, len); data/wine-5.0/dlls/comctl32/comctl32undoc.c:997:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP,0,lpSrc,-1,NULL,0); data/wine-5.0/dlls/comctl32/comctl32undoc.c:1002:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpSrc,-1,ptr,len); data/wine-5.0/dlls/comctl32/commctrl.c:556:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ( (len = MultiByteToWideChar( CP_ACP, 0, text, -1, NULL, 0 )) ) { data/wine-5.0/dlls/comctl32/commctrl.c:558:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, text, -1, textW, len ); data/wine-5.0/dlls/comctl32/datetime.c:348:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, lpszFormat, -1, NULL, 0); data/wine-5.0/dlls/comctl32/datetime.c:350:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (wstr) MultiByteToWideChar(CP_ACP, 0, lpszFormat, -1, wstr, len); data/wine-5.0/dlls/comctl32/datetime.c:386:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (result, infoPtr->textbuf + (spec &~ DT_STRING), txtlen * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/datetime.c:622:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer, infoPtr->textbuf + (spec &~ DT_STRING), txtlen * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/datetime.c:762:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(txt, infoPtr->charsEntered, infoPtr->nCharsEntered * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2385:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, dst_len * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2390:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, line_len * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2473:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, es->text + s, bufl * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2541:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->undo_text + utl, buf, (e - s)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2554:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->undo_text, buf, (e - s)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/edit.c:2835:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->tabs, tabs, count * sizeof(INT)); data/wine-5.0/dlls/comctl32/edit.c:2967:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, es->text + s, len * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/header.c:333:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/comctl32/header.c:1305:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(order, infoPtr->order, infoPtr->uNumItem * sizeof(INT)); data/wine-5.0/dlls/comctl32/hotkey.c:159:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&KeyName[NameLen], HOTKEY_plussep, sizeof(HOTKEY_plussep)); data/wine-5.0/dlls/comctl32/hotkey.c:166:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&KeyName[NameLen], HOTKEY_plussep, sizeof(HOTKEY_plussep)); data/wine-5.0/dlls/comctl32/hotkey.c:173:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&KeyName[NameLen], HOTKEY_plussep, sizeof(HOTKEY_plussep)); data/wine-5.0/dlls/comctl32/imagelist.c:1628:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( himlDst->has_alpha, himlSrc->has_alpha, himlDst->cCurImage ); data/wine-5.0/dlls/comctl32/imagelist.c:1965:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpbmp, -1, NULL, 0); data/wine-5.0/dlls/comctl32/imagelist.c:1967:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpbmp, -1, lpbmpW, len); data/wine-5.0/dlls/comctl32/imagelist.c:2255:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char image_buf[sizeof(BITMAPINFOHEADER) + sizeof(RGBQUAD) * 256]; data/wine-5.0/dlls/comctl32/imagelist.c:2256:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_buf[sizeof(BITMAPINFOHEADER) + sizeof(RGBQUAD) * 256]; data/wine-5.0/dlls/comctl32/imagelist.c:3126:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/comctl32/listbox.c:831:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( descr->tabs, tabs, descr->nb_tabs * sizeof(INT) ); data/wine-5.0/dlls/comctl32/listview.c:475:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). else MultiByteToWideChar(CP_ACP, 0, (LPCSTR)src, -1, dest, max); data/wine-5.0/dlls/comctl32/listview.c:487:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)text, -1, NULL, 0); data/wine-5.0/dlls/comctl32/listview.c:489:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (wstr) MultiByteToWideChar(CP_ACP, 0, (LPCSTR)text, -1, wstr, len); data/wine-5.0/dlls/comctl32/listview.c:561:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffers[DEBUG_BUFFERS][DEBUG_BUFFER_SIZE]; data/wine-5.0/dlls/comctl32/listview.c:952:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pdi->item.pszText, -1, NULL, 0): data/wine-5.0/dlls/comctl32/listview.c:965:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pdi->item.pszText, -1, data/wine-5.0/dlls/comctl32/listview.c:998:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR) pdi->item.pszText, -1, data/wine-5.0/dlls/comctl32/listview.c:6744:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpLVItem, &dispInfo.item, offsetof( LVITEMW, iGroupId )); data/wine-5.0/dlls/comctl32/listview.c:6749:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpLVItem, &dispInfo.item, offsetof( LVITEMW, iIndent )); data/wine-5.0/dlls/comctl32/listview.c:7874:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&item, lpLVItem, offsetof( LVITEMW, iGroupId )); data/wine-5.0/dlls/comctl32/listview.c:7879:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&item, lpLVItem, offsetof( LVITEMW, iIndent )); data/wine-5.0/dlls/comctl32/monthcal.c:1533:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->monthdayState, states, months*sizeof(MONTHDAYSTATE)); data/wine-5.0/dlls/comctl32/monthcal.c:1796:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dest->rc, &src->rc, sizeof(MCHITTESTINFO) - MCHITTESTINFO_V1_SIZE); data/wine-5.0/dlls/comctl32/monthcal.c:1814:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&htinfo.rc, &lpht->rc, sizeof(MCHITTESTINFO) - MCHITTESTINFO_V1_SIZE); data/wine-5.0/dlls/comctl32/monthcal.c:1963:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->monthdayState, nmds.prgDayState, data/wine-5.0/dlls/comctl32/pager.c:1167:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(receiveBuffer, *text, bufferSize); data/wine-5.0/dlls/comctl32/pager.c:1168:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, receiveBuffer, bufferSize, oldText, oldTextMax); data/wine-5.0/dlls/comctl32/pager.c:1172:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (CHAR *)*text, -1, oldText, oldTextMax); data/wine-5.0/dlls/comctl32/pager.c:1236:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). textLength = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)nmdtf->pszDisplay, -1, 0, 0); data/wine-5.0/dlls/comctl32/pager.c:1238:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)nmdtf->pszDisplay, -1, infoPtr->pwszBuffer, textLength); data/wine-5.0/dlls/comctl32/pager.c:1244:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nmdtf->szDisplay, infoPtr->pwszBuffer, textLength * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/pager.c:1362:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmttdiA.szText, ARRAY_SIZE(nmttdiA.szText), nmttdiW->szText, data/wine-5.0/dlls/comctl32/pager.c:1368:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, nmttdiA.lpszText, -1, 0, 0); data/wine-5.0/dlls/comctl32/pager.c:1372:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmttdiA.lpszText, -1, infoPtr->pwszBuffer, size); data/wine-5.0/dlls/comctl32/pager.c:1379:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmttdiA.lpszText, -1, nmttdiW->szText, ARRAY_SIZE(nmttdiW->szText)); data/wine-5.0/dlls/comctl32/propsheet.c:190:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, 0, 0); data/wine-5.0/dlls/comctl32/propsheet.c:192:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/comctl32/propsheet.c:324:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&psInfo->ppshheader,lppsh,dwSize); data/wine-5.0/dlls/comctl32/propsheet.c:335:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, lppsh->pszCaption, -1, NULL, 0); data/wine-5.0/dlls/comctl32/propsheet.c:338:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lppsh->pszCaption, -1, caption, len); data/wine-5.0/dlls/comctl32/propsheet.c:368:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&psInfo->ppshheader,lppsh,dwSize); data/wine-5.0/dlls/comctl32/propsheet.c:640:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp, template, resSize); data/wine-5.0/dlls/comctl32/propsheet.c:1411:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTemplateCopy, pTemplate, resSize); data/wine-5.0/dlls/comctl32/propsheet.c:2124:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszText, -1, szTitle, ARRAY_SIZE(szTitle)); data/wine-5.0/dlls/comctl32/propsheet.c:2280:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppi, prev_ppi, index * sizeof(PropPageInfo)); data/wine-5.0/dlls/comctl32/propsheet.c:2283:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ppi[index + 1], &prev_ppi[index], (psInfo->nPages - index) * sizeof(PropPageInfo)); data/wine-5.0/dlls/comctl32/propsheet.c:2436:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&psInfo->proppage[0], &oldPages[0], index * sizeof(PropPageInfo)); data/wine-5.0/dlls/comctl32/propsheet.c:2439:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&psInfo->proppage[index], &oldPages[index + 1], data/wine-5.0/dlls/comctl32/propsheet.c:2930:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, ptr + 1, len * sizeof(WCHAR) ); data/wine-5.0/dlls/comctl32/propsheet.c:2938:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, str, len ); data/wine-5.0/dlls/comctl32/propsheet.c:2970:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEA))); data/wine-5.0/dlls/comctl32/propsheet.c:2971:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp + 1, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEA))); data/wine-5.0/dlls/comctl32/propsheet.c:2976:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEA))); data/wine-5.0/dlls/comctl32/propsheet.c:3053:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEW))); data/wine-5.0/dlls/comctl32/propsheet.c:3054:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp + 1, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEW))); data/wine-5.0/dlls/comctl32/propsheet.c:3059:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppsp, lpPropSheetPage, min(lpPropSheetPage->dwSize, sizeof(PROPSHEETPAGEW))); data/wine-5.0/dlls/comctl32/rebar.c:316:19: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (*buffer) strcat(buffer, " | "); data/wine-5.0/dlls/comctl32/rebar.c:333:19: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (*buffer) strcat(buffer, " | "); data/wine-5.0/dlls/comctl32/rebar.c:345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[300]; data/wine-5.0/dlls/comctl32/rebar.c:380:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[300]; data/wine-5.0/dlls/comctl32/status.c:733:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, atxt, -1, NULL, 0 ); data/wine-5.0/dlls/comctl32/status.c:736:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, atxt, -1, ntext, len ); data/wine-5.0/dlls/comctl32/status.c:990:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buf, infoPtr->parts[0].text, (size - 1) * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/string.c:56:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[3], str2[3]; data/wine-5.0/dlls/comctl32/string.c:372:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return atoi(lpszStr); data/wine-5.0/dlls/comctl32/tab.c:1736:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dis.itemData, (ULONG_PTR*)TAB_GetItem(infoPtr, iItem)->extra, 4); data/wine-5.0/dlls/comctl32/tab.c:2629:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->extra, &pti->lParam, EXTRA_ITEM_SIZE(infoPtr)); data/wine-5.0/dlls/comctl32/tab.c:2743:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wineItem->extra, &tabItem->lParam, infoPtr->cbInfo); data/wine-5.0/dlls/comctl32/tab.c:2800:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tabItem->lParam, wineItem->extra, infoPtr->cbInfo); data/wine-5.0/dlls/comctl32/taskdialog.c:109:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ptr, src, size); data/wine-5.0/dlls/comctl32/taskdialog.c:365:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy(ret, textW, length * sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/tests/button.c:735:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(logfont.lfFaceName, "Tahoma"); data/wine-5.0/dlls/comctl32/tests/button.c:1020:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[100]; data/wine-5.0/dlls/comctl32/tests/button.c:1489:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dummy, &info, sizeof(info)); data/wine-5.0/dlls/comctl32/tests/combo.c:754:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char list[20], edit[20]; data/wine-5.0/dlls/comctl32/tests/combo.c:940:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edit[20]; data/wine-5.0/dlls/comctl32/tests/combo.c:1067:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16] = {0}; data/wine-5.0/dlls/comctl32/tests/combo.c:1174:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2]; data/wine-5.0/dlls/comctl32/tests/combo.c:1175:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", i); data/wine-5.0/dlls/comctl32/tests/datetime.c:788:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). else if (atoi(caltype) != CAL_GREGORIAN) data/wine-5.0/dlls/comctl32/tests/edit.c:747:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/comctl32/tests/edit.c:815:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/comctl32/tests/edit.c:820:8: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(szLocalString, "bar"); data/wine-5.0/dlls/comctl32/tests/edit.c:1408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAXLEN]; data/wine-5.0/dlls/comctl32/tests/edit.c:1538:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/comctl32/tests/edit.c:1892:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/comctl32/tests/edit.c:2114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/comctl32/tests/edit.c:2162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/comctl32/tests/edit.c:2216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/comctl32/tests/edit.c:2283:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/comctl32/tests/edit.c:2709:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/comctl32/tests/edit.c:2717:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName,"Arial"); data/wine-5.0/dlls/comctl32/tests/edit.c:3169:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/comctl32/tests/header.c:363:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf1[260]; data/wine-5.0/dlls/comctl32/tests/header.c:364:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf2[260]; data/wine-5.0/dlls/comctl32/tests/header.c:724:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_CHARS]; data/wine-5.0/dlls/comctl32/tests/header.c:1121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[32]; data/wine-5.0/dlls/comctl32/tests/header.c:1571:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/comctl32/tests/header.c:1580:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "test"); data/wine-5.0/dlls/comctl32/tests/imagelist.c:354:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char loc[256]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:360:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(loc, "BeginDrag (%d,%d)\n", i, j); data/wine-5.0/dlls/comctl32/tests/imagelist.c:367:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(loc, "SetDragCursorImage (%d,%d)\n", i, j); data/wine-5.0/dlls/comctl32/tests/imagelist.c:382:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(loc, "GetDragImage (%d,%d)\n", i, j); data/wine-5.0/dlls/comctl32/tests/imagelist.c:884:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[256]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:887:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(fname, "wb"); data/wine-5.0/dlls/comctl32/tests/imagelist.c:1049:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comment[16]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:1053:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(comment, "%d", i); data/wine-5.0/dlls/comctl32/tests/imagelist.c:2026:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmi_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:2058:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmi_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:2078:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(table, bmi->bmiColors, (1 << bpp) * sizeof(RGBQUAD)); data/wine-5.0/dlls/comctl32/tests/imagelist.c:2106:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmi_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/comctl32/tests/imagelist.c:2190:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgb + 16, default_table + 16, 240 * sizeof(rgb[0])); data/wine-5.0/dlls/comctl32/tests/imagelist.c:2210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgb + 2, default_table + 2, 254 * sizeof(rgb[0])); data/wine-5.0/dlls/comctl32/tests/listbox.c:80:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const strings[4] = { data/wine-5.0/dlls/comctl32/tests/listbox.c:1048:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], curdir[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/listbox.c:1056:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathBuffer[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/listbox.c:1121:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1178:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1279:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1355:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1420:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1467:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1562:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathBuffer[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/listbox.c:1563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char itemBuffer[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/listbox.c:1564:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempBuffer[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/listbox.c:1598:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1635:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1679:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1719:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1762:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1788:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1969:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1974:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\*"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1981:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\INVALID$$DIR"); data/wine-5.0/dlls/comctl32/tests/listview.c:560:23: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dispinfo->item.pszText, testW, sizeof(testW)); data/wine-5.0/dlls/comctl32/tests/listview.c:1223:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[5]; data/wine-5.0/dlls/comctl32/tests/listview.c:1637:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/comctl32/tests/listview.c:5290:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char f[5]; data/wine-5.0/dlls/comctl32/tests/listview.c:5300:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(f, "foo"); data/wine-5.0/dlls/comctl32/tests/listview.c:5315:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(f, "fo"); data/wine-5.0/dlls/comctl32/tests/listview.c:5330:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(f, "oo"); data/wine-5.0/dlls/comctl32/tests/listview.c:5337:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(f, "fo"); data/wine-5.0/dlls/comctl32/tests/listview.c:6314:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/comctl32/tests/misc.c:88:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dest[MAX_PATH]; data/wine-5.0/dlls/comctl32/tests/misc.c:347:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[64]; data/wine-5.0/dlls/comctl32/tests/monthcal.c:916:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). } else if (atoi(caltype) != CAL_GREGORIAN) { data/wine-5.0/dlls/comctl32/tests/monthcal.c:928:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fday = atoi(b); data/wine-5.0/dlls/comctl32/tests/monthcal.c:1029:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char yearmonth[80], *locale_month, *locale_year; data/wine-5.0/dlls/comctl32/tests/mru.c:189:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[128]; data/wine-5.0/dlls/comctl32/tests/mru.c:212:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[2]; data/wine-5.0/dlls/comctl32/tests/mru.c:236:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *checks[LIST_SIZE+1]; data/wine-5.0/dlls/comctl32/tests/mru.c:329:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[255]; data/wine-5.0/dlls/comctl32/tests/mru.c:444:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "dummy"); data/wine-5.0/dlls/comctl32/tests/pager.c:640:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*text, receive_data->write_text, receive_data->write_text_size); data/wine-5.0/dlls/comctl32/tests/pager.c:669:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data->write_sztext) memcpy(nm->szText, data->write_sztext, data->write_sztext_size); data/wine-5.0/dlls/comctl32/tests/pager.c:682:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data->write_szdisplay) memcpy(nm->szDisplay, data->write_szdisplay, data->write_szdisplay_size); data/wine-5.0/dlls/comctl32/tests/pager.c:973:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, data->send_text, data->send_text_size); data/wine-5.0/dlls/comctl32/tests/pager.c:1005:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, data->send_text, data->send_text_size); data/wine-5.0/dlls/comctl32/tests/pager.c:1053:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nmcbedb.szText, test_w, sizeof(test_w)); data/wine-5.0/dlls/comctl32/tests/pager.c:1059:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nmcbeed.szText, test_w, sizeof(test_w)); data/wine-5.0/dlls/comctl32/tests/pager.c:1130:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data->send_sztext) memcpy(nmttdi.szText, data->send_sztext, data->send_sztext_size); data/wine-5.0/dlls/comctl32/tests/propsheet.c:87:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char caption[256]; data/wine-5.0/dlls/comctl32/tests/propsheet.c:105:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char caption[256]; data/wine-5.0/dlls/comctl32/tests/static.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[10]; data/wine-5.0/dlls/comctl32/tests/status.c:262:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char chstr[10] = "Inval id"; data/wine-5.0/dlls/comctl32/tests/status.c:487:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[5]; data/wine-5.0/dlls/comctl32/tests/tab.c:384:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tabName[MAX_TABLEN]; data/wine-5.0/dlls/comctl32/tests/tab.c:386:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tabName, "Tab %d", i+1); data/wine-5.0/dlls/comctl32/tests/tab.c:811:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szText[32] = "New Label"; data/wine-5.0/dlls/comctl32/tests/tab.c:911:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(szText, "New Label"); data/wine-5.0/dlls/comctl32/tests/tab.c:954:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char toolTipText[32] = "ToolTip Text Test"; data/wine-5.0/dlls/comctl32/tests/toolbar.c:262:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( (char *)restore->tbButton.iString, "foo" ); data/wine-5.0/dlls/comctl32/tests/toolbar.c:292:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( alloced_str, "foo" ); data/wine-5.0/dlls/comctl32/tests/toolbar.c:299:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( tb->pszText, "foo" ); data/wine-5.0/dlls/comctl32/tests/toolbar.c:1970:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[10]; data/wine-5.0/dlls/comctl32/tests/toolbar.c:2445:47: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. ok( !strcmp( (char *)tb.iString, (char *)expect_btns[i].iString ), data/wine-5.0/dlls/comctl32/tests/tooltips.c:824:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, longtextA, -1, bufW, ARRAY_SIZE(bufW)); data/wine-5.0/dlls/comctl32/tests/treeview.c:386:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char sequence[256]; data/wine-5.0/dlls/comctl32/tests/treeview.c:890:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuffer[80] = {0}; data/wine-5.0/dlls/comctl32/tests/treeview.c:1296:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(disp->item.pszText, testW, sizeof(testW)); data/wine-5.0/dlls/comctl32/tests/treeview.c:1667:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffA, "<root>"); data/wine-5.0/dlls/comctl32/tests/treeview.c:2027:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char context[32]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2100:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(context, "singleexpand notifications %d", i); data/wine-5.0/dlls/comctl32/tests/treeview.c:2713:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[16]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2755:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2761:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2764:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2768:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2771:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2775:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2778:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. U(ins).item.pszText = (char *)itemnames[i++]; data/wine-5.0/dlls/comctl32/tests/treeview.c:2787:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/comctl32/tests/updown.c:883:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(text, "10"); data/wine-5.0/dlls/comctl32/tests/updown.c:887:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(text, "11"); data/wine-5.0/dlls/comctl32/tests/updown.c:893:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(text, "21st"); data/wine-5.0/dlls/comctl32/toolbar.c:3250:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&infoPtr->buttons[0], &oldButtons[0], data/wine-5.0/dlls/comctl32/toolbar.c:3255:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&infoPtr->buttons[nIndex], &oldButtons[nIndex+1], data/wine-5.0/dlls/comctl32/toolbar.c:4309:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpSave->pszSubKey, -1, NULL, 0); data/wine-5.0/dlls/comctl32/toolbar.c:4312:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSave->pszSubKey, -1, pszSubKey, len); data/wine-5.0/dlls/comctl32/toolbar.c:4314:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpSave->pszValueName, -1, NULL, 0); data/wine-5.0/dlls/comctl32/toolbar.c:4317:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSave->pszValueName, -1, pszValueName, len); data/wine-5.0/dlls/comctl32/toolbar.c:5147:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, infoPtr->strings[iString], ret); data/wine-5.0/dlls/comctl32/toolbar.c:6161:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->pszTooltipText, tbgit.pszText, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/toolbar.c:6168:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpnmtdi->lpszText, tbgit.pszText, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/toolbar.c:6189:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, tbgit.pszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/toolbar.c:6198:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tbgit.pszText, -1, infoPtr->pszTooltipText, len); data/wine-5.0/dlls/comctl32/toolbar.c:6205:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tbgit.pszText, -1, lpnmtdi->lpszText, ARRAY_SIZE(lpnmtdi->szText)); data/wine-5.0/dlls/comctl32/toolbar.c:6228:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->pszTooltipText, pszText, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/toolbar.c:6235:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpnmtdi->lpszText, pszText, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/toolbar.c:6286:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, nmtdi.lpszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/toolbar.c:6292:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmtdi.lpszText, -1, infoPtr->pszTooltipText, len); data/wine-5.0/dlls/comctl32/toolbar.c:6299:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmtdi.lpszText, -1, lpnmtdi->lpszText, ARRAY_SIZE(nmtdi.szText)); data/wine-5.0/dlls/comctl32/toolbar.c:6987:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pnies, *pies, ((*cies) * sizeof(PIMLENTRY))); data/wine-5.0/dlls/comctl32/toolbar.c:7069:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nmtba.pszText, -1, data/wine-5.0/dlls/comctl32/toolbar.c:7088:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&nmtb.tbButton, &btnInfo->btn, sizeof(TBBUTTON)); data/wine-5.0/dlls/comctl32/tooltips.c:1062:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (infoPtr->tools, oldTools, data/wine-5.0/dlls/comctl32/tooltips.c:1095:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, (LPSTR)ti->lpszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/tooltips.c:1098:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR)ti->lpszText, -1, toolPtr->lpszText, len); data/wine-5.0/dlls/comctl32/tooltips.c:1173:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, (char *)text, -1, NULL, 0); data/wine-5.0/dlls/comctl32/tooltips.c:1176:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)text, -1, toolPtr->lpszText, len); data/wine-5.0/dlls/comctl32/tooltips.c:1219:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&infoPtr->tools[0], &oldTools[0], data/wine-5.0/dlls/comctl32/tooltips.c:1223:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&infoPtr->tools[nTool], &oldTools[nTool + 1], data/wine-5.0/dlls/comctl32/tooltips.c:1646:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->pszTitle, pszTitle, size); data/wine-5.0/dlls/comctl32/tooltips.c:1650:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = sizeof(WCHAR)*MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pszTitle, -1, NULL, 0); data/wine-5.0/dlls/comctl32/tooltips.c:1654:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pszTitle, -1, infoPtr->pszTitle, size/sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/tooltips.c:2002:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszText, infoPtr->szTipText, res*sizeof(WCHAR)); data/wine-5.0/dlls/comctl32/treeview.c:735:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, data/wine-5.0/dlls/comctl32/treeview.c:747:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, data/wine-5.0/dlls/comctl32/treeview.c:776:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, data/wine-5.0/dlls/comctl32/treeview.c:789:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, data/wine-5.0/dlls/comctl32/treeview.c:1133:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, (LPSTR)tvItem->pszText, -1, NULL, 0); data/wine-5.0/dlls/comctl32/treeview.c:1148:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR)tvItem->pszText, -1, data/wine-5.0/dlls/comctl32/treeview.c:4030:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, (LPSTR)tvdi.item.pszText, -1, NULL, 0 ); data/wine-5.0/dlls/comctl32/treeview.c:4032:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPSTR)tvdi.item.pszText, -1, newText, len ); data/wine-5.0/dlls/comctl32/updown.c:336:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, txt, sizeof(txt)); data/wine-5.0/dlls/comctl32/updown.c:1059:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void *)lParam, infoPtr->AccelVect, temp*sizeof(UDACCEL)); data/wine-5.0/dlls/comctl32/updown.c:1076:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->AccelVect, (void*)lParam, wParam*sizeof(UDACCEL)); data/wine-5.0/dlls/comdlg32/colordlg.c:405:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[30]; data/wine-5.0/dlls/comdlg32/colordlg.c:423:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). value = atoi(buffer); data/wine-5.0/dlls/comdlg32/colordlg.c:426:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", maxval); data/wine-5.0/dlls/comdlg32/colordlg.c:1344:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar( CP_ACP, 0, lpChCol->lpTemplateName, -1, NULL, 0); data/wine-5.0/dlls/comdlg32/colordlg.c:1346:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpChCol->lpTemplateName, -1, template_name, len ); data/wine-5.0/dlls/comdlg32/filedlg.c:436:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, 0, 0); data/wine-5.0/dlls/comdlg32/filedlg.c:438:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/comdlg32/filedlg.c:497:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ofn->lpstrFile, ofn->nMaxFile, NULL, 0); data/wine-5.0/dlls/comdlg32/filedlg.c:499:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ofn->lpstrFile, ofn->nMaxFile, ofnW.lpstrFile, len); data/wine-5.0/dlls/comdlg32/filedlg.c:513:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ofn->lpstrFilter, n, NULL, 0); data/wine-5.0/dlls/comdlg32/filedlg.c:515:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ofn->lpstrFilter, n, (WCHAR *)ofnW.lpstrFilter, len); data/wine-5.0/dlls/comdlg32/filedlg.c:529:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ofn->lpstrCustomFilter, n, NULL, 0); data/wine-5.0/dlls/comdlg32/filedlg.c:531:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ofn->lpstrCustomFilter, n, ofnW.lpstrCustomFilter, len); data/wine-5.0/dlls/comdlg32/filedlg.c:1061:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*)lParam, fodInfos->ShellInfos.pidlAbsCurrent, retval); data/wine-5.0/dlls/comdlg32/filedlg.c:2210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ofn->lpstrFile + nSizePath, lpstrFileList, sizeUsed*sizeof(WCHAR) ); data/wine-5.0/dlls/comdlg32/filedlg.c:2362:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(final + lstrlenW(final) + 1, filename, path_len * sizeof(WCHAR)); data/wine-5.0/dlls/comdlg32/filedlg.c:3865:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, src->u.cStr, -1, dest, len ) && len) data/wine-5.0/dlls/comdlg32/filedlg.c:3870:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, ((LPCSTR)&pidl->mkid)+src->u.uOffset, -1, dest, len ) && len) data/wine-5.0/dlls/comdlg32/filedlg31.c:69:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). BOOL open; /* TRUE if open dialog, FALSE if save dialog */ data/wine-5.0/dlls/comdlg32/filedlg31.c:561:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ofnsav, ofnW, copied_size ); /* for later restoring */ data/wine-5.0/dlls/comdlg32/filedlg31.c:595:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ofnW, &ofnsav, copied_size ); /* restore old state */ data/wine-5.0/dlls/comdlg32/filedlg31.c:731:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, strA, n, NULL, 0 ); data/wine-5.0/dlls/comdlg32/filedlg31.c:733:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, strA, n, x, len ); data/wine-5.0/dlls/comdlg32/filedlg31.c:748:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (strW) MultiByteToWideChar( CP_ACP, 0, str, -1, strW, size ); data/wine-5.0/dlls/comdlg32/filedlg31.c:757:86: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static void FD31_MapOfnStructA(const OPENFILENAMEA *ofnA, LPOPENFILENAMEW ofnW, BOOL open) data/wine-5.0/dlls/comdlg32/filedlg31.c:786:41: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). LoadStringW(COMDLG32_hInstance, open ? IDS_OPEN_FILE : IDS_SAVE_AS, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/comdlg32/filedlg31.c:789:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(title_tmp, buf, len * sizeof(WCHAR)); data/wine-5.0/dlls/comdlg32/filedlg31.c:895:66: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(hResInfo = FindResourceA( COMDLG32_hInstance, lfs->open ? "OPEN_FILE" : "SAVE_FILE", (LPSTR)RT_DIALOG ))) data/wine-5.0/dlls/comdlg32/filedlg31.c:944:55: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FD31_MapOfnStructA(lfs->ofnA, lfs->ofnW, lfs->open); data/wine-5.0/dlls/comdlg32/filedlg31.c:1058:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH]; data/wine-5.0/dlls/comdlg32/filedlg31.c:1059:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[4] = "a:\\"; data/wine-5.0/dlls/comdlg32/filedlg31.c:1121:61: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return FD31_WMDrawItem( hWnd, wParam, lParam, !lfs->open, (DRAWITEMSTRUCT *)lParam ); data/wine-5.0/dlls/comdlg32/filedlgbrowser.c:163:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (len && !MultiByteToWideChar( CP_ACP, 0, src->u.cStr, -1, dest, len )) data/wine-5.0/dlls/comdlg32/filedlgbrowser.c:170:29: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (len && !MultiByteToWideChar( CP_ACP, 0, ((LPCSTR)&pidl->mkid)+src->u.uOffset, data/wine-5.0/dlls/comdlg32/finddlg.c:106:37: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pData->fr.lpstrFindWhat, -1, data/wine-5.0/dlls/comdlg32/finddlg.c:139:37: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pData->fr.lpstrFindWhat, -1, data/wine-5.0/dlls/comdlg32/finddlg.c:142:37: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pData->fr.lpstrReplaceWith, -1, data/wine-5.0/dlls/comdlg32/fontdlg.c:668:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, strColorName, sizeof(strColorName)); data/wine-5.0/dlls/comdlg32/fontdlg.c:1144:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpcfa, lpcfw, sizeof(CHOOSEFONTA)); data/wine-5.0/dlls/comdlg32/fontdlg.c:1147:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpcfa->lpLogFont, lpcfw->lpLogFont, sizeof(LOGFONTA)); data/wine-5.0/dlls/comdlg32/fontdlg.c:1221:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpcfw, lpcfa, sizeof(CHOOSEFONTA)); data/wine-5.0/dlls/comdlg32/fontdlg.c:1223:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpcfw->lpLogFont, lpcfa->lpLogFont, sizeof(LOGFONTA)); data/wine-5.0/dlls/comdlg32/fontdlg.c:1224:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpcfa->lpLogFont->lfFaceName, data/wine-5.0/dlls/comdlg32/fontdlg.c:1228:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpcfa->lpszStyle, -1, NULL, 0); data/wine-5.0/dlls/comdlg32/fontdlg.c:1230:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpcfa->lpszStyle, -1, lpcfw->lpszStyle, len); data/wine-5.0/dlls/comdlg32/fontdlg.c:1255:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( logfont, lpcfw->lpLogFont, FIELD_OFFSET( LOGFONTA, lfFaceName )); data/wine-5.0/dlls/comdlg32/fontdlg.c:1305:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (LOGFONTW *)lParam, lpcf->lpLogFont, sizeof(LOGFONTW) ); data/wine-5.0/dlls/comdlg32/printdlg.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, p, len); data/wine-5.0/dlls/comdlg32/printdlg.c:280:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dm, dm->dmSize + dm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:308:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dm, dm->dmSize + dm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:342:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/comdlg32/printdlg.c:347:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/comdlg32/printdlg.c:352:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmA->dmLogPixels, &dmW->dmLogPixels, dmW->dmSize - FIELD_OFFSET(DEVMODEW, dmLogPixels)); data/wine-5.0/dlls/comdlg32/printdlg.c:356:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)dmA + dmA->dmSize, (const char *)dmW + dmW->dmSize, dmW->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:415:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[260]; data/wine-5.0/dlls/comdlg32/printdlg.c:478:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[260]; data/wine-5.0/dlls/comdlg32/printdlg.c:1004:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char StatusMsg[256]; data/wine-5.0/dlls/comdlg32/printdlg.c:1005:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ResourceString[256]; data/wine-5.0/dlls/comdlg32/printdlg.c:1215:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[255]; data/wine-5.0/dlls/comdlg32/printdlg.c:1241:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d dpi", Resolutions[i]); data/wine-5.0/dlls/comdlg32/printdlg.c:1246:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d dpi x %d dpi", Resolutions[i], Resolutions[i+1]); data/wine-5.0/dlls/comdlg32/printdlg.c:1560:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[200]; data/wine-5.0/dlls/comdlg32/printdlg.c:1745:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PrinterName[256]; data/wine-5.0/dlls/comdlg32/printdlg.c:2252:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char flagstr[1000] = ""; data/wine-5.0/dlls/comdlg32/printdlg.c:2312:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, pbuf->pDevMode, pbuf->pDevMode->dmSize + data/wine-5.0/dlls/comdlg32/printdlg.c:2364:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpdmReturn, lpdm, lpdm->dmSize + lpdm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:2403:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char flagstr[1000] = ""; data/wine-5.0/dlls/comdlg32/printdlg.c:2463:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, pbuf->pDevMode, pbuf->pDevMode->dmSize + data/wine-5.0/dlls/comdlg32/printdlg.c:2523:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpdmReturn, lpdm, lpdm->dmSize + lpdm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:2784:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, (char*)dn + get_devname_offset(dn, which), -1, NULL, 0); data/wine-5.0/dlls/comdlg32/printdlg.c:2786:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char*)dn + get_devname_offset(dn, which), -1, name, len); data/wine-5.0/dlls/comdlg32/printdlg.c:2889:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, dm, dm->dmSize + dm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:2928:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, size); data/wine-5.0/dlls/comdlg32/printdlg.c:3149:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dm, tmp_dm, tmp_dm->dmSize + tmp_dm->dmDriverExtra); data/wine-5.0/dlls/comdlg32/printdlg.c:3782:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char flagstr[1000] = ""; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char classname[20]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:72:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:92:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFileName[MAX_PATH] = ""; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:93:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szInitialDir[MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:269:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:286:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:521:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:623:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:624:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfilename[ MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:625:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:786:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:875:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:892:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFileName[MAX_PATH] = ""; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:893:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szInitialDir[MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:927:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = "pls press Enter if sizable, Esc otherwise"; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:972:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename_buf[MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1036:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ofn->lpstrFile, "deadbeef"); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1054:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH]; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1228:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szInitialDir[MAX_PATH] = {0}; data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1305:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[MAX_PATH] = {0}; data/wine-5.0/dlls/comdlg32/tests/finddlg.c:44:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char findbuffer[64]; data/wine-5.0/dlls/comdlg32/tests/finddlg.c:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char replacebuffer[64]; data/wine-5.0/dlls/comdlg32/tests/finddlg.c:107:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(findbuffer, "abc"); data/wine-5.0/dlls/comdlg32/tests/finddlg.c:113:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(replacebuffer, "def"); data/wine-5.0/dlls/comdlg32/tests/fontdlg.c:96:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lfa.lfFaceName, "Symbol"); data/wine-5.0/dlls/comdlg32/tests/fontdlg.c:123:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lfa.lfFaceName, "Symbol"); data/wine-5.0/dlls/comdlg32/tests/printdlg.c:566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/commdlg.dll16/filedlg.c:46:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, *in, -1, *out, maxlen ); data/wine-5.0/dlls/commdlg.dll16/filedlg.c:126:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out, p, len ); data/wine-5.0/dlls/commdlg.dll16/printdlg.c:58:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/commdlg.dll16/printdlg.c:76:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/compobj.dll16/compobj.c:492:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, Table_ETask, sizeof(Table_ETask)); data/wine-5.0/dlls/compobj.dll16/compobj.c:669:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *buf,buf2[80]; data/wine-5.0/dlls/compobj.dll16/compobj.c:732:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char idstr[CHARS_IN_GUID]; data/wine-5.0/dlls/compobj.dll16/compobj.c:733:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf_key[CHARS_IN_GUID+19], dllpath[MAX_PATH+1]; data/wine-5.0/dlls/credui/credui_main.c:460:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(params->pszUsername, params->pszTargetName, data/wine-5.0/dlls/credui/credui_main.c:471:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(params->pszUsername + len2, user, min(len, params->ulUsernameMaxChars - len2) * sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:582:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(password, credentials[i]->CredentialBlob, credentials[i]->CredentialBlobSize); data/wine-5.0/dlls/credui/credui_main.c:691:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->pszTargetName, pszTargetName, (len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:697:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->pszUsername, params.pszUsername, (len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:700:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->pszPassword, params.pszPassword, (len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:781:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszDomain, pszUserName, (p - pszUserName)*sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:795:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszUser, pszUserName, (p - pszUserName)*sizeof(WCHAR)); data/wine-5.0/dlls/credui/credui_main.c:906:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( username, id->User, id->UserLength * sizeof(WCHAR) ); data/wine-5.0/dlls/credui/credui_main.c:911:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( password, id->Password, id->PasswordLength * sizeof(WCHAR) ); data/wine-5.0/dlls/credui/credui_main.c:942:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, user, (len_username + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/credui/credui_main.c:948:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, domain, (len_domain + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/credui/credui_main.c:958:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, password, (len_password + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/crypt32/base64.c:88:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszString, pbBinary, cbBinary); data/wine-5.0/dlls/crypt32/base64.c:100:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, s, slen); data/wine-5.0/dlls/crypt32/base64.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char chunk[4]; data/wine-5.0/dlls/crypt32/base64.c:315:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out_buf, in_buf, in_len); data/wine-5.0/dlls/crypt32/base64.c:757:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBinary, pszString, cchString); data/wine-5.0/dlls/crypt32/base64.c:968:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBinary, pszString, cchString * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/cert.c:149:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cert->ctx.pbCertEncoded, cloned->ctx.pbCertEncoded, cloned->ctx.cbCertEncoded); data/wine-5.0/dlls/crypt32/cert.c:350:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pbCertEncoded, cbCertEncoded); data/wine-5.0/dlls/crypt32/cert.c:425:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, pb, cb); data/wine-5.0/dlls/crypt32/cert.c:638:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&to->rgProvParam[i], &from->rgProvParam[i], data/wine-5.0/dlls/crypt32/cert.c:641:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to->rgProvParam[i].pbData, from->rgProvParam[i].pbData, data/wine-5.0/dlls/crypt32/cert.c:1032:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, container, -1, containerW, ARRAY_SIZE(containerW)); data/wine-5.0/dlls/crypt32/cert.c:1066:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char containerA[MAX_PATH]; data/wine-5.0/dlls/crypt32/cert.c:1626:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.Issuer, &info->CertIssuer, data/wine-5.0/dlls/crypt32/cert.c:1628:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.SerialNumber, data/wine-5.0/dlls/crypt32/cert.c:1634:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.KeyId, &info->KeyId, sizeof(CRYPT_HASH_BLOB)); data/wine-5.0/dlls/crypt32/cert.c:1672:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.Issuer, data/wine-5.0/dlls/crypt32/cert.c:1674:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.SerialNumber, data/wine-5.0/dlls/crypt32/cert.c:1687:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.KeyId, &info->KeyId, sizeof(CRYPT_HASH_BLOB)); data/wine-5.0/dlls/crypt32/cert.c:1746:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, pvPara, -1, NULL, 0); data/wine-5.0/dlls/crypt32/cert.c:1753:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pvPara, -1, str, len); data/wine-5.0/dlls/crypt32/cert.c:2665:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ecckey + 1, pubKeyInfo->PublicKey.pbData + 1, pubKeyInfo->PublicKey.cbData - 1); data/wine-5.0/dlls/crypt32/cert.c:2925:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbKeyUsage, usage.pbData, usage.cbData); data/wine-5.0/dlls/crypt32/cert.c:3416:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szContainer, -1, data/wine-5.0/dlls/crypt32/cert.c:3422:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szContainer, -1, data/wine-5.0/dlls/crypt32/cert.c:3440:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szProvider, -1, data/wine-5.0/dlls/crypt32/cert.c:3446:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szProvider, -1, data/wine-5.0/dlls/crypt32/chain.c:736:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hostname_buf, name, data/wine-5.0/dlls/crypt32/chain.c:1677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char date[80]; data/wine-5.0/dlls/crypt32/chain.c:1678:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dateFmt[80]; /* sufficient for all versions of LOCALE_SSHORTDATE */ data/wine-5.0/dlls/crypt32/chain.c:2082:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.Issuer, &info->CertIssuer, data/wine-5.0/dlls/crypt32/chain.c:2084:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.SerialNumber, data/wine-5.0/dlls/crypt32/chain.c:2098:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.KeyId, &info->KeyId, sizeof(CRYPT_HASH_BLOB)); data/wine-5.0/dlls/crypt32/chain.c:2138:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.Issuer, data/wine-5.0/dlls/crypt32/chain.c:2140:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.SerialNumber, data/wine-5.0/dlls/crypt32/chain.c:2157:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.KeyId, &info->KeyId, sizeof(CRYPT_HASH_BLOB)); data/wine-5.0/dlls/crypt32/context.c:64:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(context_ptr(context), context_ptr(linked), contextSize); data/wine-5.0/dlls/crypt32/crl.c:63:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(crl->ctx.pbCrlEncoded, cloned->ctx.pbCrlEncoded, cloned->ctx.cbCrlEncoded); data/wine-5.0/dlls/crypt32/crl.c:119:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pbCrlEncoded, cbCrlEncoded); data/wine-5.0/dlls/crypt32/crl.c:445:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, blob.pbData, blob.cbData); data/wine-5.0/dlls/crypt32/ctl.c:446:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pbCtlEncoded, cbCtlEncoded); data/wine-5.0/dlls/crypt32/ctl.c:565:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, blob.pbData, blob.cbData); data/wine-5.0/dlls/crypt32/decode.c:824:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded, blob->cbData); data/wine-5.0/dlls/crypt32/decode.c:1320:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[32]; data/wine-5.0/dlls/crypt32/decode.c:1372:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pszObjId, "%d.%d", pbEncoded[1 + lenBytes] / 40, data/wine-5.0/dlls/crypt32/decode.c:1390:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pszObjId, ".%d", val); data/wine-5.0/dlls/crypt32/decode.c:1559:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). bytesNeeded += MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:1599:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value->Value.pbData, data/wine-5.0/dlls/crypt32/decode.c:1619:43: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). value->Value.cbData = MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:1743:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). bytesNeeded += (MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:1801:43: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). value->Value.cbData = MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:2142:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded, blob->cbData); data/wine-5.0/dlls/crypt32/decode.c:2415:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pbEncoded + 1 + lenBytes, dataLen); data/wine-5.0/dlls/crypt32/decode.c:2566:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). bytesNeeded += (MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:2623:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/crypt32/decode.c:3098:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->u.IPAddress.pbData, pbEncoded + 1 + lenBytes, data/wine-5.0/dlls/crypt32/decode.c:3925:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)pvStructInfo + sizeof(BLOBHEADER) + data/wine-5.0/dlls/crypt32/decode.c:4055:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata, data/wine-5.0/dlls/crypt32/decode.c:4057:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 2, data/wine-5.0/dlls/crypt32/decode.c:4059:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 3, data/wine-5.0/dlls/crypt32/decode.c:4061:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 4, data/wine-5.0/dlls/crypt32/decode.c:4063:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 5, data/wine-5.0/dlls/crypt32/decode.c:4065:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 6, data/wine-5.0/dlls/crypt32/decode.c:4067:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vardata + halflen * 7, data/wine-5.0/dlls/crypt32/decode.c:4125:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded + 1 + lenBytes, data/wine-5.0/dlls/crypt32/decode.c:4218:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, string, blob->cbData); data/wine-5.0/dlls/crypt32/decode.c:4320:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded + 2 + lenBytes, data/wine-5.0/dlls/crypt32/decode.c:4421:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvStructInfo, &val, sizeof(int)); data/wine-5.0/dlls/crypt32/decode.c:4719:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvStructInfo, &val, sizeof(unsigned int)); data/wine-5.0/dlls/crypt32/decode.c:5130:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nextPtr, ptr, 1 + nextLenBytes + data/wine-5.0/dlls/crypt32/encode.c:355:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, blob->cbData); data/wine-5.0/dlls/crypt32/encode.c:905:34: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char outBytes[5]; data/wine-5.0/dlls/crypt32/encode.c:961:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, str, encodedLen); data/wine-5.0/dlls/crypt32/encode.c:1229:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, set->rgBlob[i].pbData, set->rgBlob[i].cbData); data/wine-5.0/dlls/crypt32/encode.c:1307:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, setOf.rgBlob[i].pbData, data/wine-5.0/dlls/crypt32/encode.c:2491:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, entry->u.DirectoryName.pbData, dataLen); data/wine-5.0/dlls/crypt32/encode.c:2494:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, entry->u.IPAddress.pbData, dataLen); data/wine-5.0/dlls/crypt32/encode.c:3210:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, blob->cbData); data/wine-5.0/dlls/crypt32/encode.c:3277:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, dataBytes - 1); data/wine-5.0/dlls/crypt32/encode.c:3534:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[40]; data/wine-5.0/dlls/crypt32/encode.c:3564:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, buf, bytesNeeded); data/wine-5.0/dlls/crypt32/encode.c:3591:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[40]; data/wine-5.0/dlls/crypt32/encode.c:3613:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, buf, bytesNeeded); data/wine-5.0/dlls/crypt32/encode.c:3688:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, seq->rgValue[i].pbData, data/wine-5.0/dlls/crypt32/encode.c:4844:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pInfo->Algorithm.Parameters.pbData, params, params_size); data/wine-5.0/dlls/crypt32/encode.c:4853:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pInfo->PublicKey.pbData, key_data, key_size); data/wine-5.0/dlls/crypt32/filestore.c:397:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pvPara, -1, NULL, 0); data/wine-5.0/dlls/crypt32/filestore.c:404:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pvPara, -1, storeName, len); data/wine-5.0/dlls/crypt32/msg.c:162:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(header->pbData, headerValue, sizeof(headerValue)); data/wine-5.0/dlls/crypt32/msg.c:310:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, src, len); data/wine-5.0/dlls/crypt32/msg.c:536:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg->data.pbData + msg->data.cbData, pbData, cbData); data/wine-5.0/dlls/crypt32/msg.c:713:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->pbData, in->pbData, out->cbData); data/wine-5.0/dlls/crypt32/msg.c:1348:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg->data.pbData, pbData, cbData); data/wine-5.0/dlls/crypt32/msg.c:1533:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->pbData, in->pbData, out->cbData); data/wine-5.0/dlls/crypt32/msg.c:1914:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg->data.pbData, pbData, cbData); data/wine-5.0/dlls/crypt32/msg.c:2144:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData + blob->cbData, pbData, cbData); data/wine-5.0/dlls/crypt32/msg.c:2198:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy->Parameters.pbData, id->Parameters.pbData, data/wine-5.0/dlls/crypt32/msg.c:2610:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->pbData, in->pbData, in->cbData); data/wine-5.0/dlls/crypt32/oid.c:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char numericOID[7]; /* enough for "#65535" */ data/wine-5.0/dlls/crypt32/oid.c:967:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, toAdd, (lstrlenW(toAdd) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/oid.c:1001:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(spotToAdd, toAdd, (lstrlenW(toAdd) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/oid.c:1659:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key_name[MAX_PATH]; data/wine-5.0/dlls/crypt32/oid.c:1740:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info + 1, stringresource, len*sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/proplist.c:105:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pbData, cbData); data/wine-5.0/dlls/crypt32/protectdata.c:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char report[80]; data/wine-5.0/dlls/crypt32/protectdata.c:146:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ptr,&value,sizeof(DWORD)); data/wine-5.0/dlls/crypt32/protectdata.c:160:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ptr,str,len*width); data/wine-5.0/dlls/crypt32/protectdata.c:176:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value,&(ptr[*index]),sizeof(DWORD)); data/wine-5.0/dlls/crypt32/protectdata.c:206:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*data,&(ptr[*index]),len*width); data/wine-5.0/dlls/crypt32/protectdata.c:596:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pInfo->szDataDescr,szDataDescr,(dwStrLen+1)*sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/protectdata.c:902:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(protect_data.cipher.pbData,pDataIn->pbData,pDataIn->cbData); data/wine-5.0/dlls/crypt32/protectdata.c:1070:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDataOut->pbData,protect_data.cipher.pbData,protect_data.cipher.cbData); data/wine-5.0/dlls/crypt32/protectdata.c:1098:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszDataDescr,protect_data.szDataDescr,dwLength); data/wine-5.0/dlls/crypt32/rootstore.c:109:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[1024]; data/wine-5.0/dlls/crypt32/rootstore.c:162:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[32]; data/wine-5.0/dlls/crypt32/rootstore.c:185:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[1024]; data/wine-5.0/dlls/crypt32/rootstore.c:199:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[1024]; data/wine-5.0/dlls/crypt32/rootstore.c:399:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path, O_RDONLY); data/wine-5.0/dlls/crypt32/serialize.c:119:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbElement, buf, propSize); data/wine-5.0/dlls/crypt32/serialize.c:135:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbElement + sizeof(WINE_CERT_PROP_HEADER), data/wine-5.0/dlls/crypt32/serialize.c:564:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, reader->blob->pbData + reader->current, *bytesRead); data/wine-5.0/dlls/crypt32/serialize.c:847:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tracker->pbData + tracker->written, buffer, size); data/wine-5.0/dlls/crypt32/sip.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[40]; data/wine-5.0/dlls/crypt32/sip.c:69:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str, "{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}", data/wine-5.0/dlls/crypt32/sip.c:73:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, wstr, 40 ); data/wine-5.0/dlls/crypt32/sip.c:263:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char functionName[MAX_PATH]; data/wine-5.0/dlls/crypt32/store.c:530:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pvPara, -1, NULL, 0); data/wine-5.0/dlls/crypt32/store.c:537:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pvPara, -1, storeName, len); data/wine-5.0/dlls/crypt32/store.c:631:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pvPara, -1, NULL, 0); data/wine-5.0/dlls/crypt32/store.c:638:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pvPara, -1, storeName, len); data/wine-5.0/dlls/crypt32/store.c:1224:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, blob.pbData, blob.cbData); data/wine-5.0/dlls/crypt32/str.c:61:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz, pValue->pbData, chars); data/wine-5.0/dlls/crypt32/str.c:405:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz, prefix, chars); data/wine-5.0/dlls/crypt32/str.c:461:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefixBuf[13]; /* big enough for SERIALNUMBER */ data/wine-5.0/dlls/crypt32/str.c:498:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz + ret, rdnSep, rdnSepLen); data/wine-5.0/dlls/crypt32/str.c:505:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz + ret, sep, sepLen); data/wine-5.0/dlls/crypt32/str.c:565:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz, prefix, chars * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:647:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz + ret, indent, chars * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:677:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz + ret, rdnSep, rdnSepLen * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:684:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psz + ret, sep, sepLen * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:727:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pszX500, -1, NULL, 0); data/wine-5.0/dlls/crypt32/str.c:734:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszX500, -1, x500, len); data/wine-5.0/dlls/crypt32/str.c:805:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(keeper->keyName, key->start, len * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:1267:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszNameString, entry->u.pwszRfc822Name, data/wine-5.0/dlls/crypt32/str.c:1355:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszNameString, entry->u.pwszRfc822Name, data/wine-5.0/dlls/crypt32/str.c:1391:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszNameString, entry->u.pwszDNSName, ret * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/str.c:1415:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszNameString, entry->u.pwszURL, ret * sizeof(WCHAR)); data/wine-5.0/dlls/crypt32/tests/base64.c:95:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/crypt32/tests/base64.c:98:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/crypt32/tests/chain.c:3880:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/crypt32/tests/chain.c:4506:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[6]; data/wine-5.0/dlls/crypt32/tests/chain.c:4508:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "#%04X", num); data/wine-5.0/dlls/crypt32/tests/encode.c:480:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[64]; data/wine-5.0/dlls/crypt32/tests/encode.c:482:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%02d-%02d-%04d %02d:%02d:%02d.%03d", st->wMonth, st->wDay, data/wine-5.0/dlls/crypt32/tests/encode.c:489:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[64]; data/wine-5.0/dlls/crypt32/tests/encode.c:493:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%02d-%02d-%04d %02d:%02d:%02d.%03d", st.wMonth, st.wDay, data/wine-5.0/dlls/crypt32/tests/encode.c:2442:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(toEncode + sizeof(BLOBHEADER) + sizeof(RSAPUBKEY), modulus1, data/wine-5.0/dlls/crypt32/tests/encode.c:2499:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(toEncode + sizeof(BLOBHEADER) + sizeof(RSAPUBKEY), data/wine-5.0/dlls/crypt32/tests/msg.c:560:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pb, cb); data/wine-5.0/dlls/crypt32/tests/oid.c:381:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/crypt32/tests/oid.c:626:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/crypt32/tests/sip.c:190:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, regeditPath, strlen(regeditPath)+1, regeditPathW, data/wine-5.0/dlls/crypt32/tests/sip.c:223:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tempfile, strlen(tempfile)+1, tempfileW, ARRAY_SIZE(tempfileW)); data/wine-5.0/dlls/crypt32/tests/store.c:1049:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[sizeof(certificates) + 20 * 2 + 1], *ptr; data/wine-5.0/dlls/crypt32/tests/store.c:1073:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02X", hash[i]); data/wine-5.0/dlls/crypt32/tests/store.c:1130:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02X", hash[i]); data/wine-5.0/dlls/crypt32/tests/store.c:1146:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, hash, sizeof(hash)); data/wine-5.0/dlls/crypt32/tests/store.c:1153:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, bigCert, sizeof(bigCert)); data/wine-5.0/dlls/crypt32/tests/store.c:1185:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02X", hash[i]); data/wine-5.0/dlls/crypt32/tests/store.c:1210:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, bigCert2, sizeof(bigCert2)); data/wine-5.0/dlls/crypt32/tests/store.c:1231:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, hash, sizeof(hash)); data/wine-5.0/dlls/crypt32/tests/store.c:2289:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + sizeof(struct CertPropIDHeader), bigCert, sizeof(bigCert)); data/wine-5.0/dlls/crypt32/tests/store.c:2386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)hdr + sizeof(struct CertPropIDHeader), hash, sizeof(hash)); data/wine-5.0/dlls/crypt32/tests/str.c:236:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2000]; data/wine-5.0/dlls/crypt32/tests/str.c:373:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2000] = { 0 }; data/wine-5.0/dlls/cryptdlg/main.c:385:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, info->szTitle, -1, NULL, 0); data/wine-5.0/dlls/cryptdlg/main.c:390:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, info->szTitle, -1, title, len); data/wine-5.0/dlls/cryptdlg/main.c:643:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, noticeRef, noticeRefLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:670:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, organization, organizationLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:704:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, noticeNum, noticeNumLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:740:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, noticeText, noticeTextLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:851:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, certPolicy, certPolicyLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:872:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, policyId, policyIdLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:928:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, policyQualifierInfo, data/wine-5.0/dlls/cryptdlg/main.c:952:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, policyQualifierId, data/wine-5.0/dlls/cryptdlg/main.c:962:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, cps, cpsLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:972:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, userNotice, userNoticeLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptdlg/main.c:1006:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, qualifier, qualifierLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:77:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[10]; data/wine-5.0/dlls/cryptnet/cryptnet_main.c:414:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pszURL, -1, NULL, 0); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:421:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszURL, -1, url, len); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:471:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pObject->rgBlob, &blob, sizeof(CRYPT_DATA_BLOB)); data/wine-5.0/dlls/cryptnet/cryptnet_main.c:530:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pAuxInfo->pLastSyncTime, data/wine-5.0/dlls/cryptnet/cryptnet_main.c:1167:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nextData, pObject->rgBlob[i].pbData, data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:300:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char curr[MAX_PATH] = { 0 }; data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:301:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[MAX_PATH]; data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:319:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfile[MAX_PATH], url[MAX_PATH + 8]; data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:319:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char tmpfile[MAX_PATH], url[MAX_PATH + 8]; data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:334:19: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). make_tmp_file(tmpfile); data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:335:31: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf(url, "file://%s", tmpfile); data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:429:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/cryptnet/tests/cryptnet.c:442:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/cryptui/main.c:67:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/cryptui/main.c:69:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ret) MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/cryptui/main.c:1636:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&infoW, info, sizeof(*info)); data/wine-5.0/dlls/cryptui/main.c:1639:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, info->pszTitle, -1, NULL, 0); data/wine-5.0/dlls/cryptui/main.c:1641:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, info->pszTitle, -1, infoW.pwszTitle, data/wine-5.0/dlls/cryptui/main.c:1646:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, info->pszText, -1, NULL, 0); data/wine-5.0/dlls/cryptui/main.c:1648:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, info->pszText, -1, infoW.pwszText, len); data/wine-5.0/dlls/cryptui/main.c:1671:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, pCertViewInfo->szTitle, -1, data/wine-5.0/dlls/cryptui/main.c:1677:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pCertViewInfo->szTitle, -1, title, data/wine-5.0/dlls/cryptui/main.c:2906:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, pad, sizeof(pad)); data/wine-5.0/dlls/cryptui/main.c:3217:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PURPOSE + 1]; data/wine-5.0/dlls/cryptui/main.c:4342:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pages[hdr.nPages + i], data/wine-5.0/dlls/cryptui/main.c:4948:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, str, len * sizeof(WCHAR)); data/wine-5.0/dlls/cryptui/main.c:6209:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, baseFilter, baseLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptui/main.c:6214:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, all, allLen * sizeof(WCHAR)); data/wine-5.0/dlls/cryptui/main.c:7456:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psp, pages, size); data/wine-5.0/dlls/cryptui/main.c:7520:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&selCertInfo, pcsc, pcsc->dwSize); data/wine-5.0/dlls/cryptui/tests/cryptui.c:310:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.Issuer, data/wine-5.0/dlls/cryptui/tests/cryptui.c:312:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&id.u.IssuerSerialNumber.SerialNumber, data/wine-5.0/dlls/ctapi32/ctapi32.c:46:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char soname[MAX_PATH] = FALLBACK_LIBCTAPI, buffer[MAX_PATH]; data/wine-5.0/dlls/ctapi32/ctapi32.c:69:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(soname, buffer, len); data/wine-5.0/dlls/d2d1/brush.c:101:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stops, gradient->stops, min(gradient->stop_count, stop_count) * sizeof(*stops)); data/wine-5.0/dlls/d2d1/brush.c:211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*gradient)->stops, stops, stop_count * sizeof(*stops)); data/wine-5.0/dlls/d2d1/device.c:343:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bitmap_desc, desc, sizeof(*desc)); data/wine-5.0/dlls/d2d1/device.c:367:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bitmap_desc, desc, sizeof(*desc)); data/wine-5.0/dlls/d2d1/device.c:391:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bitmap_desc, desc, sizeof(*desc)); data/wine-5.0/dlls/d2d1/factory.c:273:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&state_desc, desc, sizeof(*desc)); data/wine-5.0/dlls/d2d1/factory.c:676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH + 10]; data/wine-5.0/dlls/d2d1/factory.c:691:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(appname, "\\Direct2D"); data/wine-5.0/dlls/d2d1/geometry.c:2028:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vertices[j], geometry->u.path.figures[i].vertices, data/wine-5.0/dlls/d2d1/geometry.c:2857:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(figure->original_bezier_controls, figure->bezier_controls, size); data/wine-5.0/dlls/d2d1/state_block.c:92:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &state_block->drawing_state, sizeof(*desc)); data/wine-5.0/dlls/d2d1/state_block.c:102:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&state_block->drawing_state, desc, sizeof(*desc)); data/wine-5.0/dlls/d2d1/stroke.c:162:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dashes, style->dashes, min(style->dash_count, dash_count) * sizeof(*dashes)); data/wine-5.0/dlls/d2d1/stroke.c:214:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(style->dashes, dashes, dash_count * sizeof(*style->dashes)); data/wine-5.0/dlls/d2d1/tests/d2d1.c:410:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sha1[41]; data/wine-5.0/dlls/d2d1/tests/d2d1.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[76]; data/wine-5.0/dlls/d2d1/tests/d2d1.c:490:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char t[3]; data/wine-5.0/dlls/d2d1/tests/d2d1.c:4946:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/d2d1/wic_render_target.c:90:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, render_target->bpp * render_target->width); data/wine-5.0/dlls/d3d10/effect.c:314:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, *ptr, sizeof(*d)); data/wine-5.0/dlls/d3d10/effect.c:320:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ptr, &d, sizeof(d)); data/wine-5.0/dlls/d3d10/effect.c:477:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*s, p, len); data/wine-5.0/dlls/d3d10/effect.c:500:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*name, ptr, name_len); data/wine-5.0/dlls/d3d10/effect.c:639:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, data, data_size); data/wine-5.0/dlls/d3d10/effect.c:2058:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&var->u.state.desc, storage_info->default_state, storage_info->size); data/wine-5.0/dlls/d3d10/effect.c:3350:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->BlendFactor, This->blend_factor, 4 * sizeof(float)); data/wine-5.0/dlls/d3d10core/tests/d3d10core.c:14656:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + current_buffer->data_offset, current_buffer->data, data/wine-5.0/dlls/d3d10core/tests/d3d10core.c:18082:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). use_adapter_idx = atoi(argv[++i]); data/wine-5.0/dlls/d3d11/async.c:355:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d3d10_data_pointer, data, sizeof(D3D10_QUERY_DATA_PIPELINE_STATISTICS)); data/wine-5.0/dlls/d3d11/async.c:385:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &query->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/state.c:271:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &state->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/state.c:656:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &state->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/state.c:1027:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &state->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/state.c:1392:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &state->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/tests/d3d11.c:21931:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + current_buffer->data_offset, current_buffer->data, data/wine-5.0/dlls/d3d11/tests/d3d11.c:22426:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(id, rb.map_desc.pData, 64 * sizeof(*id)); data/wine-5.0/dlls/d3d11/tests/d3d11.c:22442:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(id, rb.map_desc.pData, 64 * sizeof(*id)); data/wine-5.0/dlls/d3d11/tests/d3d11.c:29734:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). use_adapter_idx = atoi(argv[++i]); data/wine-5.0/dlls/d3d11/utils.c:824:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, stored_data->content.data, stored_data->size); data/wine-5.0/dlls/d3d11/view.c:1621:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &view->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/view.c:2070:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &view->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d11/view.c:2080:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &view->desc, sizeof(*desc)); data/wine-5.0/dlls/d3d12/tests/d3d12.c:1433:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). use_adapter_idx = atoi(argv[++i]); data/wine-5.0/dlls/d3d8/d3d8_main.c:99:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*errors, message, message_size); data/wine-5.0/dlls/d3d8/d3d8_main.c:144:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*errors, message, message_size); data/wine-5.0/dlls/d3d8/d3d8_main.c:202:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, stored_data->content.data, stored_data->size); data/wine-5.0/dlls/d3d8/device.c:2530:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, data, size); data/wine-5.0/dlls/d3d8/device.c:2631:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, (char *)vertex_data + min_vertex_idx * vertex_stride, vtx_size); data/wine-5.0/dlls/d3d8/device.c:2653:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, index_data, idx_size); data/wine-5.0/dlls/d3d8/device.c:3030:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, declaration->elements, declaration->elements_size); data/wine-5.0/dlls/d3d8/tests/device.c:7772:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/d3d8/tests/device.c:9560:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/d3d8/tests/device.c:9573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, indices, sizeof(indices)); data/wine-5.0/dlls/d3d8/tests/visual.c:5160:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(box.pBits, tests[i].data, tests[i].data_size); data/wine-5.0/dlls/d3d8/tests/visual.c:5643:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)locked_rect.pBits + i * locked_rect.Pitch, locked_rect.pBits, locked_rect.Pitch); data/wine-5.0/dlls/d3d8/tests/visual.c:5920:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rect.pBits, ati1n_data, sizeof(ati1n_data)); data/wine-5.0/dlls/d3d8/tests/visual.c:5930:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rect.pBits, ati2n_data, sizeof(ati2n_data)); data/wine-5.0/dlls/d3d8/tests/visual.c:6598:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)locked_rect.pBits + y * locked_rect.Pitch, data/wine-5.0/dlls/d3d8/tests/visual.c:6599:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)formats[i].content + y * 4 * formats[i].pixel_size, data/wine-5.0/dlls/d3d8/tests/visual.c:7337:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, tex1_data, sizeof(tex1_data)); data/wine-5.0/dlls/d3d8/tests/visual.c:7343:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, tex2_data, sizeof(tex2_data)); data/wine-5.0/dlls/d3d8/tests/visual.c:8725:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_strip, sizeof(quad_strip)); data/wine-5.0/dlls/d3d8/tests/visual.c:8733:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_list, sizeof(quad_list)); data/wine-5.0/dlls/d3d8/tests/visual.c:9889:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d8/tests/visual.c:10663:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d8/tests/visual.c:10721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d8/tests/visual.c:10750:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s0, sizeof(quad_s0)); data/wine-5.0/dlls/d3d8/tests/visual.c:10757:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s1, sizeof(quad_s1)); data/wine-5.0/dlls/d3d8/tests/visual.c:10847:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, texture_data, sizeof(texture_data)); data/wine-5.0/dlls/d3d8/vertexdeclaration.c:350:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(declaration->elements, elements, declaration->elements_size); data/wine-5.0/dlls/d3d9/d3d9_main.c:207:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, stored_data->content.data, stored_data->size); data/wine-5.0/dlls/d3d9/device.c:3024:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, data, size); data/wine-5.0/dlls/d3d9/device.c:3140:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, (char *)vertex_data + min_vertex_idx * vertex_stride, vtx_size); data/wine-5.0/dlls/d3d9/device.c:3162:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, index_data, idx_size); data/wine-5.0/dlls/d3d9/query.c:150:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, &data_disjoint.disjoint, size); data/wine-5.0/dlls/d3d9/tests/d3d9ex.c:4694:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/d3d9ex.c:4721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/d3d9ex.c:4750:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s0, sizeof(quad_s0)); data/wine-5.0/dlls/d3d9/tests/d3d9ex.c:4757:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s1, sizeof(quad_s1)); data/wine-5.0/dlls/d3d9/tests/d3d9ex.c:4784:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, texture_data, sizeof(texture_data)); data/wine-5.0/dlls/d3d9/tests/device.c:2910:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/device.c:2921:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/device.c:11229:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/device.c:13265:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, tri, sizeof(tri)); data/wine-5.0/dlls/d3d9/tests/visual.c:3445:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((char *) locked_rect.pBits) + i * locked_rect.Pitch, pixel_data + 8 * i, 8 * sizeof(DWORD)); data/wine-5.0/dlls/d3d9/tests/visual.c:4720:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:4729:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:5580:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((BYTE *) lr.pBits) + lr.Pitch * x, proj_texdata + 4 * x, 4 * sizeof(proj_texdata[0])); data/wine-5.0/dlls/d3d9/tests/visual.c:9318:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_strip, sizeof(quad_strip)); data/wine-5.0/dlls/d3d9/tests/visual.c:9326:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_list, sizeof(quad_list)); data/wine-5.0/dlls/d3d9/tests/visual.c:9882:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad1, sizeof(quad1)); data/wine-5.0/dlls/d3d9/tests/visual.c:9897:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad2, sizeof(quad2)); data/wine-5.0/dlls/d3d9/tests/visual.c:9913:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad3, sizeof(quad3)); data/wine-5.0/dlls/d3d9/tests/visual.c:9929:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad4, sizeof(quad4)); data/wine-5.0/dlls/d3d9/tests/visual.c:10058:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_transformed, sizeof(quad_transformed)); data/wine-5.0/dlls/d3d9/tests/visual.c:10139:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quads, sizeof(quads)); data/wine-5.0/dlls/d3d9/tests/visual.c:10147:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, colors, sizeof(colors)); data/wine-5.0/dlls/d3d9/tests/visual.c:10357:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:11817:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, tex1_data, sizeof(tex1_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:11823:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, tex2_data, sizeof(tex2_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:12757:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:12762:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, vertcolor, sizeof(vertcolor)); data/wine-5.0/dlls/d3d9/tests/visual.c:12767:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, instancepos, sizeof(instancepos)); data/wine-5.0/dlls/d3d9/tests/visual.c:12772:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:15910:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)lr.pBits + i * lr.Pitch, &fetch4_data[i], sizeof(fetch4_data[i])); data/wine-5.0/dlls/d3d9/tests/visual.c:16026:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, &format_tests[i].data, 4); data/wine-5.0/dlls/d3d9/tests/visual.c:16072:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)lb.pBits + i * lb.RowPitch, &fetch4_data[i], sizeof(fetch4_data[i])); data/wine-5.0/dlls/d3d9/tests/visual.c:16074:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)lb.pBits + i * lb.RowPitch + lb.SlicePitch, &fetch4_data[(i + 1) % 4], sizeof(fetch4_data[i])); data/wine-5.0/dlls/d3d9/tests/visual.c:16799:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vs_code, vs_header, sizeof(vs_header)); data/wine-5.0/dlls/d3d9/tests/visual.c:16807:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vs_code + offset, vs_body[i].ops, vs_body[i].size); data/wine-5.0/dlls/d3d9/tests/visual.c:16809:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vs_code + offset, vs_footer, sizeof(vs_footer)); data/wine-5.0/dlls/d3d9/tests/visual.c:17369:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(block, blocks[i], sizeof(blocks[i])); data/wine-5.0/dlls/d3d9/tests/visual.c:18998:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(box.pBits, tests[i].data, tests[i].data_size); data/wine-5.0/dlls/d3d9/tests/visual.c:19454:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)locked_rect.pBits + i * locked_rect.Pitch, locked_rect.pBits, locked_rect.Pitch); data/wine-5.0/dlls/d3d9/tests/visual.c:19873:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rect.pBits, ati1n_data, sizeof(ati1n_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:19883:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rect.pBits, ati2n_data, sizeof(ati2n_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:20805:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)locked_rect.pBits + y * locked_rect.Pitch, data/wine-5.0/dlls/d3d9/tests/visual.c:20806:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)formats[i].content + y * 4 * formats[i].pixel_size, data/wine-5.0/dlls/d3d9/tests/visual.c:24152:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, green_quad, sizeof(green_quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:24158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:24288:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:24606:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, texture_data, sizeof(texture_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:25470:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:25514:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:25543:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s0, sizeof(quad_s0)); data/wine-5.0/dlls/d3d9/tests/visual.c:25550:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_s1, sizeof(quad_s1)); data/wine-5.0/dlls/d3d9/tests/visual.c:25637:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lr.pBits, texture_data, sizeof(texture_data)); data/wine-5.0/dlls/d3d9/tests/visual.c:25845:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code, ps_header, sizeof(ps_header)); data/wine-5.0/dlls/d3d9/tests/visual.c:25862:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code + ARRAY_SIZE(ps_header), tests[i].ops, sizeof(*ps_code) * tests[i].body_size); data/wine-5.0/dlls/d3d9/tests/visual.c:25863:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code + ARRAY_SIZE(ps_header) + tests[i].body_size, ps_footer, sizeof(ps_footer)); data/wine-5.0/dlls/d3d9/tests/visual.c:26117:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code, ps_header, sizeof(ps_header)); data/wine-5.0/dlls/d3d9/tests/visual.c:26118:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code + ARRAY_SIZE(ps_header) + TEST_MISMATCHED_SAMPLE_BODY_WORDS, ps_footer, sizeof(ps_footer)); data/wine-5.0/dlls/d3d9/tests/visual.c:26120:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code + ARRAY_SIZE(ps_header), ps_tex_2d, data/wine-5.0/dlls/d3d9/tests/visual.c:26125:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps_code + ARRAY_SIZE(ps_header), ps_tex_3d, data/wine-5.0/dlls/d3d9/tests/visual.c:26238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, indices, sizeof(indices)); data/wine-5.0/dlls/d3d9/tests/visual.c:26250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:26278:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/tests/visual.c:26399:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/d3d9/vertexdeclaration.c:285:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, declaration->elements, sizeof(*declaration->elements) * declaration->element_count); data/wine-5.0/dlls/d3d9/vertexdeclaration.c:397:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(declaration->elements, elements, element_count * sizeof(*elements)); data/wine-5.0/dlls/d3dcompiler_43/blob.c:310:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ID3D10Blob_GetBufferPointer(*blob), dst_dxbc.sections[0].data, dst_dxbc.sections[0].data_size); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, filename, strlen(filename) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:279:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, desc->buffer + desc->pos, len); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:311:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wpp_output + wpp_output_size, buffer, len); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:350:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:530:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(ID3D10Blob_GetBufferPointer(buffer), wpp_messages, size); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:588:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pos, preproc_messages, strlen(preproc_messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:591:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pos, messages, strlen(messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:621:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(ID3D10Blob_GetBufferPointer(buffer), res, size); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:815:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, preproc_messages, strlen(preproc_messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:818:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, messages, strlen(messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:848:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ID3D10Blob_GetBufferPointer(buffer), res, size); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:929:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(ID3D10Blob_GetBufferPointer(buffer), wpp_output, wpp_output_size); data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h:173:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy, string, len + 1); data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h:1214:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, *ptr, sizeof(*d)); data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h:1220:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ptr, &d, sizeof(d)); data/wine-5.0/dlls/d3dcompiler_43/preproc.c:83:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(s, str, len); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:195:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*name, ptr, name_len); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*value, ptr, size); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:1474:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string_data, data + string_data_offset, string_data_size); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:1640:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string_data, section->data + string_data_offset, string_data_size); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:1988:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &reflection->bound_resources[index], sizeof(*desc)); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:2006:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &reflection->isgn->elements[index], sizeof(*desc)); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:2024:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &reflection->osgn->elements[index], sizeof(*desc)); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:2204:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &type->desc, sizeof(*desc)); data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1450:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, include, sizeof(include)); data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1457:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, include2, sizeof(include2)); data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1465:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, include3, sizeof(include3)); data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1476:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, include4, sizeof(include4)); data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1484:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, include, sizeof(include)); data/wine-5.0/dlls/d3dcompiler_43/tests/hlsl.c:131:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp_geometry_vertices, quad_vertices, sizeof(quad_vertices)); data/wine-5.0/dlls/d3dcompiler_43/utils.c:260:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ret[6]; data/wine-5.0/dlls/d3dcompiler_43/utils.c:276:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ret[6]; data/wine-5.0/dlls/d3dcompiler_43/utils.c:708:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dxbc->sections[i].data, dxbc->sections[i].data_size); data/wine-5.0/dlls/d3dcompiler_43/utils.c:1725:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[110]; data/wine-5.0/dlls/d3dcompiler_43/utils.c:1729:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " extern"); /* 7 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1731:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " nointerpolation"); /* 16 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1733:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " precise"); /* 8 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1735:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " shared"); /* 7 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1737:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " groupshared"); /* 12 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1739:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " static"); /* 7 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1741:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " uniform"); /* 8 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1743:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " volatile"); /* 9 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1745:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " const"); /* 6 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1747:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " row_major"); /* 10 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1749:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " column_major"); /* 13 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1751:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " inout"); /* 6 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1753:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " in"); /* 3 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1755:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, " out"); /* 4 */ data/wine-5.0/dlls/d3dcompiler_43/utils.c:1970:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[5]; data/wine-5.0/dlls/d3drm/d3drm_main.c:106:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, object->classname, req_size); data/wine-5.0/dlls/d3drm/d3drm_main.c:125:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, object->name, req_size); data/wine-5.0/dlls/d3drm/d3drm_main.c:147:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(object->name, name, req_size); data/wine-5.0/dlls/d3drm/meshbuilder.c:751:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertices, mesh_builder->vertices, mesh_builder->nb_vertices * sizeof(*vertices)); data/wine-5.0/dlls/d3drm/meshbuilder.c:758:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(normals, mesh_builder->normals, mesh_builder->nb_normals * sizeof(*normals)); data/wine-5.0/dlls/d3drm/meshbuilder.c:765:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(face_data, mesh_builder->pFaceData, mesh_builder->face_data_size * sizeof(*face_data)); data/wine-5.0/dlls/d3drm/meshbuilder.c:1078:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_builder->vertices, ptr + sizeof(DWORD), mesh_builder->nb_vertices * sizeof(D3DVECTOR)); data/wine-5.0/dlls/d3drm/meshbuilder.c:1081:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(faces_vertex_idx_data, ptr + sizeof(DWORD) + mesh_builder->nb_vertices * sizeof(D3DVECTOR) + sizeof(DWORD), data/wine-5.0/dlls/d3drm/meshbuilder.c:1134:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_builder->normals, ptr + sizeof(DWORD), mesh_builder->nb_normals * sizeof(D3DVECTOR)); data/wine-5.0/dlls/d3drm/meshbuilder.c:1138:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(faces_normal_idx_data, ptr + sizeof(DWORD) + mesh_builder->nb_normals * sizeof(D3DVECTOR) data/wine-5.0/dlls/d3drm/meshbuilder.c:1152:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_builder->pCoords2d, ptr + sizeof(DWORD), mesh_builder->nb_coords2d * sizeof(*mesh_builder->pCoords2d)); data/wine-5.0/dlls/d3drm/meshbuilder.c:1182:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_builder->material_indices, ptr + 2 * sizeof(DWORD), data/wine-5.0/dlls/d3drm/meshbuilder.c:2220:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertices, mesh_builder->vertices + start_idx, count * sizeof(*vertices)); data/wine-5.0/dlls/d3drm/meshbuilder.c:2246:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(normals, &mesh_builder->normals[start_idx], count * sizeof(*normals)); data/wine-5.0/dlls/d3drm/meshbuilder.c:2561:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(group->face_data, face_data, group->face_data_size * sizeof(*face_data)); data/wine-5.0/dlls/d3drm/meshbuilder.c:2588:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh->groups[group_id].vertices + start_idx, values, count * sizeof(*values)); data/wine-5.0/dlls/d3drm/meshbuilder.c:2708:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(face_data, mesh->groups[id].face_data, mesh->groups[id].face_data_size * sizeof(*face_data)); data/wine-5.0/dlls/d3drm/meshbuilder.c:2730:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertices, mesh->groups[group_id].vertices + start_idx, count * sizeof(*vertices)); data/wine-5.0/dlls/d3drm/tests/d3drm.c:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cname[64] = {0}; data/wine-5.0/dlls/d3drm/tests/d3drm.c:194:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cname, "XXX"); data/wine-5.0/dlls/d3drm/tests/d3drm.c:204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64] = {0}; data/wine-5.0/dlls/d3drm/tests/d3drm.c:436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[10]; data/wine-5.0/dlls/d3drm/tests/d3drm.c:1756:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&driver, &IID_IDirect3DRGBDevice, sizeof(GUID)); data/wine-5.0/dlls/d3drm/tests/d3drm.c:3005:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&driver, &IID_IDirect3DRGBDevice, sizeof(GUID)); data/wine-5.0/dlls/d3drm/tests/d3drm.c:3339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[128]; data/wine-5.0/dlls/d3drm/tests/d3drm.c:3808:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&driver, &IID_IDirect3DRGBDevice, sizeof(GUID)); data/wine-5.0/dlls/d3drm/tests/d3drm.c:6001:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3drm/tests/d3drm.c:6866:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad_strip, sizeof(quad_strip)); data/wine-5.0/dlls/d3drm/texture.c:222:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(image->palette, palette, 256 * sizeof(*image->palette)); data/wine-5.0/dlls/d3drm/texture.c:232:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dst_data[i * w], &src_data[(h - 1 - i) * w], w); data/wine-5.0/dlls/d3drm/texture.c:237:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_data, src_data, w * h); data/wine-5.0/dlls/d3dx10_43/async.c:293:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx10_43/async.c:295:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename_w, len); data/wine-5.0/dlls/d3dx11_43/async.c:292:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx11_43/async.c:294:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename_w, len); data/wine-5.0/dlls/d3dx9_36/d3dx9_private.h:305:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic_string[4]; data/wine-5.0/dlls/d3dx9_36/effect.c:33:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char parameter_magic_string[4] = {'@', '!', '#', '\xFF'}; data/wine-5.0/dlls/d3dx9_36/effect.c:34:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char parameter_block_magic_string[4] = {'@', '!', '#', '\xFE'}; data/wine-5.0/dlls/d3dx9_36/effect.c:155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic_string[ARRAY_SIZE(parameter_block_magic_string)]; data/wine-5.0/dlls/d3dx9_36/effect.c:434:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, *ptr, sizeof(*d)); data/wine-5.0/dlls/d3dx9_36/effect.c:568:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. heap_free(((char **)data)[i]); data/wine-5.0/dlls/d3dx9_36/effect.c:840:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_data, matrix->u.m, param->rows * 4 * sizeof(float)); data/wine-5.0/dlls/d3dx9_36/effect.c:845:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float *)dst_data + i * param->columns, matrix->u.m + i, param->columns * sizeof(float)); data/wine-5.0/dlls/d3dx9_36/effect.c:919:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_data, data, bytes); data/wine-5.0/dlls/d3dx9_36/effect.c:927:47: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (FAILED(hr = set_string(&((char **)dst_data)[i], ((const char **)data)[i]))) data/wine-5.0/dlls/d3dx9_36/effect.c:927:77: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (FAILED(hr = set_string(&((char **)dst_data)[i], ((const char **)data)[i]))) data/wine-5.0/dlls/d3dx9_36/effect.c:951:15: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). element = atoi(name); data/wine-5.0/dlls/d3dx9_36/effect.c:1063:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_name, parameter->full_name, param_name_len); data/wine-5.0/dlls/d3dx9_36/effect.c:1065:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_name + param_name_len + 1, name, name_len); data/wine-5.0/dlls/d3dx9_36/effect.c:1510:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, value_ptr, param_data_size); data/wine-5.0/dlls/d3dx9_36/effect.c:2504:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, param->data, param->bytes); data/wine-5.0/dlls/d3dx9_36/effect.c:2901:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param_get_data_and_dirtify(effect, param, param->columns * sizeof(float), TRUE), data/wine-5.0/dlls/d3dx9_36/effect.c:2992:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, vector, count * 4 * sizeof(float)); data/wine-5.0/dlls/d3dx9_36/effect.c:2997:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float *)data + param->columns * i, vector + i, data/wine-5.0/dlls/d3dx9_36/effect.c:4223:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(effect->current_parameter_block->magic_string, parameter_block_magic_string, data/wine-5.0/dlls/d3dx9_36/effect.c:5170:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, ptr, size); data/wine-5.0/dlls/d3dx9_36/effect.c:5210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*name, ptr, size); data/wine-5.0/dlls/d3dx9_36/effect.c:5244:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(object->data, *ptr, object->size); data/wine-5.0/dlls/d3dx9_36/effect.c:5253:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->magic_string, parameter_magic_string, sizeof(parameter_magic_string)); data/wine-5.0/dlls/d3dx9_36/effect.c:5279:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char part_str[16]; data/wine-5.0/dlls/d3dx9_36/effect.c:5283:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(part_str, "[%u]", element); data/wine-5.0/dlls/d3dx9_36/effect.c:5301:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->full_name, parent_name, parent_name_len); data/wine-5.0/dlls/d3dx9_36/effect.c:5302:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->full_name + parent_name_len, part_str, part_str_len); data/wine-5.0/dlls/d3dx9_36/effect.c:5303:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->full_name + parent_name_len + part_str_len, param->name, name_len); data/wine-5.0/dlls/d3dx9_36/effect.c:5316:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->full_name, param->name, len); data/wine-5.0/dlls/d3dx9_36/effect.c:5911:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*(char **)param->data, object->data, object->size); data/wine-5.0/dlls/d3dx9_36/effect.c:6823:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, srcfile, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/effect.c:6825:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, srcfile, -1, srcfileW, len); data/wine-5.0/dlls/d3dx9_36/effect.c:6954:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, srcfile, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/effect.c:6956:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, srcfile, -1, srcfileW, len); data/wine-5.0/dlls/d3dx9_36/font.c:104:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, FIELD_OFFSET(D3DXFONT_DESCA, FaceName)); data/wine-5.0/dlls/d3dx9_36/font.c:283:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&widedesc, desc, FIELD_OFFSET(D3DXFONT_DESCA, FaceName)); data/wine-5.0/dlls/d3dx9_36/font.c:284:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, desc->FaceName, -1, widedesc.FaceName, ARRAY_SIZE(widedesc.FaceName)); data/wine-5.0/dlls/d3dx9_36/mesh.c:215:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, num_elem * sizeof(*src)); data/wine-5.0/dlls/d3dx9_36/mesh.c:638:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vb_dst[idx_dst], &vb_src[idx_src], type_size); data/wine-5.0/dlls/d3dx9_36/mesh.c:718:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data_out, data_in, This->numvertices * vertex_size); data/wine-5.0/dlls/d3dx9_36/mesh.c:743:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data_out, data_in, This->numfaces * 3 * (options & D3DXMESH_32BIT ? 4 : 2)); data/wine-5.0/dlls/d3dx9_36/mesh.c:748:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cloned_this->attrib_buffer, This->attrib_buffer, This->numfaces * sizeof(*This->attrib_buffer)); data/wine-5.0/dlls/d3dx9_36/mesh.c:758:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cloned_this->attrib_table, This->attrib_table, This->attrib_table_size * sizeof(*This->attrib_table)); data/wine-5.0/dlls/d3dx9_36/mesh.c:849:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attrib_table, mesh->attrib_table, mesh->attrib_table_size * sizeof(*attrib_table)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1145:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_indices, indices, VERTS_PER_FACE * This->numfaces * sizeof(*indices)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1678:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dword_indices, indices, This->numfaces * 3 * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1731:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_vertices + i * vertex_size, orig_vertices + vertex_remap_ptr[i] * vertex_size, vertex_size); data/wine-5.0/dlls/d3dx9_36/mesh.c:1757:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attrib_buffer, sorted_attrib_buffer, This->numfaces * sizeof(*attrib_buffer)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1762:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((DWORD*)indices + face_remap[i] * 3, dword_indices + i * 3, 3 * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1782:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, dword_indices, This->numfaces * 3 * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1800:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(adjacency_out, adjacency_in, This->numfaces * 3 * sizeof(*adjacency_out)); data/wine-5.0/dlls/d3dx9_36/mesh.c:1850:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(new_table, attrib_table, size); data/wine-5.0/dlls/d3dx9_36/mesh.c:2719:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&material->MatD3D.Diffuse, data, sizeof(D3DCOLORVALUE)); data/wine-5.0/dlls/d3dx9_36/mesh.c:2723:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&material->MatD3D.Specular, data, sizeof(FLOAT) * 3); data/wine-5.0/dlls/d3dx9_36/mesh.c:2726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&material->MatD3D.Emissive, data, sizeof(FLOAT) * 3); data/wine-5.0/dlls/d3dx9_36/mesh.c:2838:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh->material_indices, data + 2, mesh->num_poly_faces * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:2923:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh->tex_coords, data, mesh->num_vertices * sizeof(*mesh->tex_coords)); data/wine-5.0/dlls/d3dx9_36/mesh.c:3066:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh->normals, data, mesh->num_normals * sizeof(D3DXVECTOR3)); data/wine-5.0/dlls/d3dx9_36/mesh.c:3252:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_data->vertices, in_ptr, mesh_data->num_vertices * sizeof(D3DXVECTOR3)); data/wine-5.0/dlls/d3dx9_36/mesh.c:3420:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(defaults->pValue, (BYTE*)material_ptr + material_effects[j].value_offset, defaults->NumBytes); data/wine-5.0/dlls/d3dx9_36/mesh.c:3562:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_vertex, out_ptr, vertex_size); data/wine-5.0/dlls/d3dx9_36/mesh.c:3630:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(materials_ptr, mesh_data.materials, mesh_data.num_materials * sizeof(D3DXMATERIAL)); data/wine-5.0/dlls/d3dx9_36/mesh.c:3703:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/mesh.c:3706:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, len); data/wine-5.0/dlls/d3dx9_36/mesh.c:3828:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(transform, data, sizeof(D3DXMATRIX)); data/wine-5.0/dlls/d3dx9_36/mesh.c:4066:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/mesh.c:4069:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, len); data/wine-5.0/dlls/d3dx9_36/mesh.c:4349:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(concat_vertices + concat_decl[j].Offset, data/wine-5.0/dlls/d3dx9_36/mesh.c:4737:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(adjacency_buf, adjacency_table, sizeof(adjacency_table)); data/wine-5.0/dlls/d3dx9_36/mesh.c:5188:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, text, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/mesh.c:5190:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, text, -1, textW, len); data/wine-5.0/dlls/d3dx9_36/mesh.c:6463:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, sizeof(D3DXVECTOR2)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6483:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, sizeof(D3DXVECTOR3)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6505:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, sizeof(D3DXVECTOR4)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6528:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, 4 * sizeof(BYTE)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6557:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, 2 * sizeof(SHORT)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6585:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, 4 * sizeof(SHORT)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6609:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, 2 * sizeof(USHORT)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6632:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, 4 * sizeof(USHORT)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6677:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6723:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6751:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, NUM_ELEM * sizeof(D3DXFLOAT16)); data/wine-5.0/dlls/d3dx9_36/mesh.c:6786:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, NUM_ELEM * sizeof(D3DXFLOAT16)); data/wine-5.0/dlls/d3dx9_36/mesh.c:7420:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(normal, &default_vector, normal_size); data/wine-5.0/dlls/d3dx9_36/preshader.c:152:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mnem[16]; data/wine-5.0/dlls/d3dx9_36/preshader.c:337:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, size); data/wine-5.0/dlls/d3dx9_36/shader.c:260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pathname, parent_name, p - parent_name); data/wine-5.0/dlls/d3dx9_36/shader.c:328:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/shader.c:331:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename_w, len); data/wine-5.0/dlls/d3dx9_36/shader.c:461:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/shader.c:464:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename_w, len); data/wine-5.0/dlls/d3dx9_36/shader.c:592:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/shader.c:595:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename_w, len); data/wine-5.0/dlls/d3dx9_36/shader.c:749:15: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). element = atoi(name); data/wine-5.0/dlls/d3dx9_36/shader.c:2016:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(object->ctab, data, object->size); data/wine-5.0/dlls/d3dx9_36/skin.c:125:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_vertices, vertices, num_influences * sizeof(*vertices)); data/wine-5.0/dlls/d3dx9_36/skin.c:126:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_weights, weights, num_influences * sizeof(*weights)); data/wine-5.0/dlls/d3dx9_36/skin.c:175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertices, bone->vertices, bone->num_influences * sizeof(*vertices)); data/wine-5.0/dlls/d3dx9_36/skin.c:177:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(weights, bone->weights, bone->num_influences * sizeof(*weights)); data/wine-5.0/dlls/d3dx9_36/skin.c:254:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_name, name, size); data/wine-5.0/dlls/d3dx9_36/skin.c:345:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(skin->vertex_declaration, declaration, count * sizeof(*declaration)); data/wine-5.0/dlls/d3dx9_36/skin.c:371:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(declaration, skin->vertex_declaration, count * sizeof(declaration[0])); data/wine-5.0/dlls/d3dx9_36/surface.c:847:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(new_data + sizeof(BITMAPFILEHEADER), *data, *size); data/wine-5.0/dlls/d3dx9_36/surface.c:1027:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strlength = MultiByteToWideChar(CP_ACP, 0, file, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/surface.c:1029:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, widename, strlength); data/wine-5.0/dlls/d3dx9_36/surface.c:1314:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strlength = MultiByteToWideChar(CP_ACP, 0, src_file, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/surface.c:1316:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src_file, -1, src_file_w, strlength); data/wine-5.0/dlls/d3dx9_36/surface.c:1516:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp, src + format->shift[c] / 8, data/wine-5.0/dlls/d3dx9_36/surface.c:1599:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_addr, src_addr, row_block_count * format->block_byte_count); data/wine-5.0/dlls/d3dx9_36/surface.c:1670:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, &val, dst_format->bytes_per_pixel); data/wine-5.0/dlls/d3dx9_36/surface.c:1778:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, &val, dst_format->bytes_per_pixel); data/wine-5.0/dlls/d3dx9_36/surface.c:2200:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, dst_filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/surface.c:2203:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, dst_filename, -1, filename, len); data/wine-5.0/dlls/d3dx9_36/surface.c:2348:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wic_pixel_format, pixel_format_guid, sizeof(GUID)); data/wine-5.0/dlls/d3dx9_36/surface.c:2435:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer_pointer, stream_data, size); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:27:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char temp_path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:59:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:68:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:77:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:101:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, shader, sizeof(shader)); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:107:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include, sizeof(include)); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:117:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include2, sizeof(include2)); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:123:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include3, sizeof(include3)); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:131:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include, sizeof(include)); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:197:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shader_vsh_path[MAX_PATH], shader3_vsh_path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shader_vsh_path[MAX_PATH], shader3_vsh_path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/core.c:371:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(desc.FaceName, "Arial"); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:171:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char temp_path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:203:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:221:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2062:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2084:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2106:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2143:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2165:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2187:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2214:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2254:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2283:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2316:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2353:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2393:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2426:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2463:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(expected_value, &blob[res_value_offset], res_desc->Bytes); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:2507:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *string_array[ARRAY_SIZE(expected_string_array)]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:5429:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[256]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7620:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, effect2, sizeof(effect2)); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7627:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include1, sizeof(include1)); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7634:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, include2, sizeof(include2)); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7746:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char effect_path[MAX_PATH], filename[MAX_PATH]; data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7790:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(effect_path, filename, filename_size); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7792:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, effect_path, -1, effect_path_w, ARRAY_SIZE(effect_path_w)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:78:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exp_buffer[256] = ""; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:79:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char got_buffer[256] = ""; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:86:31: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. exp_buffer_ptr += sprintf(exp_buffer_ptr, ", "); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:87:31: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. got_buffer_ptr += sprintf(got_buffer_ptr, ", "); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:90:27: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. exp_buffer_ptr += sprintf(exp_buffer_ptr, "%g", *exp); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:91:27: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. got_buffer_ptr += sprintf(got_buffer_ptr, "%g", *got); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1532:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix[128]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1551:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(prefix, "vertex[%u] position, ", i); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1564:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(prefix, "vertex[%u] normal, ", i); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1591:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(prefix, "vertex[%u] texture, ", i); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1902:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_container->pMaterials, materials, num_materials * sizeof(*materials)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1943:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(default_dest->pValue, default_src->pValue, default_src->NumBytes); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1957:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mesh_container->pAdjacency, adjacency, size); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1965:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mesh_container->MeshData, mesh_data, sizeof(*mesh_data)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:2603:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:2622:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "box (%g, %g, %g)", width, height, depth); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:2727:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:2746:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "polygon (%g, %u)", length, sides); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3004:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3023:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "sphere (%g, %u, %u)", radius, slices, stacks); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3231:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3250:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "cylinder (%g, %g, %g, %u, %u)", radius1, radius2, length, slices, stacks); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3395:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3414:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "torus (%g, %g, %u, %u)", innerradius, outerradius, sides, rings); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4610:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(vertices, test_data[i].vertices, test_data[i].num_vertices * sizeof(test_data[0].vertices[0])); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4616:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(indices, test_data[i].indices, test_data[i].num_faces * 3 * sizeof(test_data[0].indices[0])); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4750:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertex_buffer, vertices, sizeof(vertices)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4754:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, faces, sizeof(faces)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4758:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attributes_buffer, attributes, sizeof(attributes)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4805:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(declaration, declaration0, sizeof(declaration0)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:5633:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertex_buffer, tc[i].vertices, tc[i].num_vertices * sizeof(*tc[i].vertices)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:5649:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, tc[i].indices, VERTS_PER_FACE * tc[i].num_faces * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:5653:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, tc[i].indices, VERTS_PER_FACE * tc[i].num_faces * sizeof(WORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:5667:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attributes_buffer, attributes, sizeof(attributes)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6171:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertex_buffer, tc[i].vertices, tc[i].num_vertices * sizeof(*tc[i].vertices)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6186:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, tc[i].indices, VERTS_PER_FACE * tc[i].num_faces * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6190:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, tc[i].indices, VERTS_PER_FACE * tc[i].num_faces * sizeof(WORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6204:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attributes_buffer, attributes, sizeof(attributes)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6288:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertex_buffer, vertices, num_vertices * vertex_size); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6305:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, indices, 3 * num_faces * sizeof(DWORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6318:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(index_buffer, indices, 3 * num_faces * sizeof(WORD)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:6342:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(attributes_buffer, attributes, num_faces * sizeof(*attributes)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:10539:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vertices, &normal, normal_size); data/wine-5.0/dlls/d3dx9_36/tests/shader.c:1594:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *samplers[16] = {NULL}; /* maximum number of sampler registers v/ps 3.0 = 16 */ data/wine-5.0/dlls/d3dx9_36/tests/surface.c:106:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char noimage[4] = { data/wine-5.0/dlls/d3dx9_36/tests/texture.c:2472:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const mapping[6][3] = data/wine-5.0/dlls/d3dx9_36/tests/xfile.c:163:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/d3dx9_36/tests/xfile.c:250:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/d3dx9_36/texture.c:817:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, srcfile, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:819:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, srcfile, -1, widename, len); data/wine-5.0/dlls/d3dx9_36/texture.c:994:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:997:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, len); data/wine-5.0/dlls/d3dx9_36/texture.c:1062:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:1065:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, len); data/wine-5.0/dlls/d3dx9_36/texture.c:1560:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src_filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:1563:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src_filename, -1, filename, len); data/wine-5.0/dlls/d3dx9_36/texture.c:1626:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src_filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:1629:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src_filename, -1, filename, len); data/wine-5.0/dlls/d3dx9_36/texture.c:1867:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, dst_filename, -1, NULL, 0); data/wine-5.0/dlls/d3dx9_36/texture.c:1870:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, dst_filename, -1, filename, len); data/wine-5.0/dlls/d3dx9_36/volume.c:43:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar(CP_ACP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/d3dxof/d3dxof.c:65:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(object->xtemplates[0].name, "indexColor"); data/wine-5.0/dlls/d3dxof/d3dxof.c:232:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[12]; data/wine-5.0/dlls/d3dxof/d3dxof.c:234:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "file%05u.x", num++); data/wine-5.0/dlls/d3dxof/d3dxof.c:318:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[16]; data/wine-5.0/dlls/d3dxof/d3dxof.c:320:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "template%05u.x", num++); data/wine-5.0/dlls/d3dxof/d3dxof.c:593:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pstrNameBuf, This->pobj->name, len); data/wine-5.0/dlls/d3dxof/d3dxof.c:857:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pstrNameBuf, This->ptarget->name, len); data/wine-5.0/dlls/d3dxof/d3dxof_private.h:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LEN]; data/wine-5.0/dlls/d3dxof/d3dxof_private.h:52:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LEN]; data/wine-5.0/dlls/d3dxof/d3dxof_private.h:54:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). BOOL open; data/wine-5.0/dlls/d3dxof/d3dxof_private.h:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char children[MAX_CHILDREN][MAX_NAME_LEN]; data/wine-5.0/dlls/d3dxof/d3dxof_private.h:71:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LEN]; data/wine-5.0/dlls/d3dxof/mszip.c:638:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(decomp_state.inbuf, inbuffer, inlen); data/wine-5.0/dlls/d3dxof/mszip.c:642:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outbuffer, decomp_state.outbuf, outlen); data/wine-5.0/dlls/d3dxof/parsing.c:156:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (ptemplate->open) data/wine-5.0/dlls/d3dxof/parsing.c:172:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, buf->buffer, size); data/wine-5.0/dlls/d3dxof/parsing.c:198:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[17]; data/wine-5.0/dlls/d3dxof/parsing.c:199:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string, header, 16); data/wine-5.0/dlls/d3dxof/parsing.c:402:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[8]; /* longest keyword size (template) */ data/wine-5.0/dlls/d3dxof/parsing.c:460:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[50]; data/wine-5.0/dlls/d3dxof/parsing.c:510:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/wine-5.0/dlls/d3dxof/parsing.c:541:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/wine-5.0/dlls/d3dxof/parsing.c:573:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/wine-5.0/dlls/d3dxof/parsing.c:602:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/wine-5.0/dlls/d3dxof/parsing.c:798:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strguid[39]; data/wine-5.0/dlls/d3dxof/parsing.c:1129:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdata, buf->pdata, buf->cur_pos_data); data/wine-5.0/dlls/d3dxof/parsing.c:1397:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buf->pxo->type, &buf->pdxf->xtemplates[i].class_id, 16); data/wine-5.0/dlls/d3dxof/parsing.c:1420:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buf->pxo->class_id, buf->value, 16); data/wine-5.0/dlls/d3dxof/tests/d3dxof.c:719:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/d3dxof/tests/d3dxof.c:1112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/dbgeng/dbgeng.c:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char image_name[MAX_PATH]; data/wine-5.0/dlls/dbgeng/dbgeng.c:98:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, str, dst_len); data/wine-5.0/dlls/dbgeng/dbgeng.c:1919:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ptr, dst_len); data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:332:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/dbghelp/coff.c:84:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char namebuff[9]; data/wine-5.0/dlls/dbghelp/coff.c:89:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(namebuff, coff_sym->N.ShortName, 8); data/wine-5.0/dlls/dbghelp/cpu_x86_64.c:116:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const reg_names[16] = data/wine-5.0/dlls/dbghelp/cpu_x86_64.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(UNWIND_INFO) + 256 * sizeof(UNWIND_CODE)]; data/wine-5.0/dlls/dbghelp/cpu_x86_64.c:470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(UNWIND_INFO) + 256 * sizeof(UNWIND_CODE)]; data/wine-5.0/dlls/dbghelp/dbghelp.c:196:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, searchPath, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/dbghelp.c:199:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, searchPath, -1, sp, len); data/wine-5.0/dlls/dbghelp/dbghelp.c:396:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, UserSearchPath, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/dbghelp.c:398:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, UserSearchPath, -1, sp, len); data/wine-5.0/dlls/dbghelp/dwarf.c:83:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "%08x: ", i); data/wine-5.0/dlls/dbghelp/dwarf.c:943:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr + 1, xloc.u.block.ptr, xloc.u.block.size); data/wine-5.0/dlls/dbghelp/dwarf.c:1013:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(last, diname.u.string, len); data/wine-5.0/dlls/dbghelp/dwarf.c:1696:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(v.n1.n2.n3.byref, value.u.block.ptr, value.u.block.size); data/wine-5.0/dlls/dbghelp/dwarf.c:3035:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[16]; data/wine-5.0/dlls/dbghelp/dwarf.c:3047:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tmp, sz); data/wine-5.0/dlls/dbghelp/dwarf.c:3076:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrdst, ptrsrc, szdst); data/wine-5.0/dlls/dbghelp/elf_module.c:356:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char e_ident[EI_NIDENT]; data/wine-5.0/dlls/dbghelp/elf_module.c:385:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fmap->u.elf.fd = open(filename, O_RDONLY)) == -1) goto done; data/wine-5.0/dlls/dbghelp/elf_module.c:407:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fmap->u.elf.elfhdr.e_ident, elfhdr32.e_ident, EI_NIDENT); data/wine-5.0/dlls/dbghelp/elf_module.c:667:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n, symname, ptr - symname + 1); data/wine-5.0/dlls/dbghelp/elf_module.c:987:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). filename_len = MultiByteToWideChar(CP_UNIXCP, 0, filename, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/elf_module.c:998:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, filename, -1, slash, filename_len); data/wine-5.0/dlls/dbghelp/elf_module.c:1002:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(slash, dotDebugW, sizeof(dotDebugW)); data/wine-5.0/dlls/dbghelp/elf_module.c:1003:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, filename, -1, slash + ARRAY_SIZE(dotDebugW), filename_len); data/wine-5.0/dlls/dbghelp/elf_module.c:1008:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, globalDebugDirW, globalDebugDirLen * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/elf_module.c:1010:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, filename, -1, slash, filename_len); data/wine-5.0/dlls/dbghelp/elf_module.c:1052:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(z, globalDebugDirW, sizeof(globalDebugDirW)); data/wine-5.0/dlls/dbghelp/elf_module.c:1054:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(z, buildidW, sizeof(buildidW)); data/wine-5.0/dlls/dbghelp/elf_module.c:1071:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(z, dotDebug0W, sizeof(dotDebug0W)); data/wine-5.0/dlls/dbghelp/elf_module.c:1491:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/elf_module.c:1494:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, path, -1, pathW, len); data/wine-5.0/dlls/dbghelp/elf_module.c:1534:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/elf_module.c:1540:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, path, -1, name, len); data/wine-5.0/dlls/dbghelp/elf_module.c:1557:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/elf_module.c:1670:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufstr[256]; data/wine-5.0/dlls/dbghelp/elf_module.c:1698:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, bufstr, -1, bufstrW, ARRAY_SIZE(bufstrW)); data/wine-5.0/dlls/dbghelp/elf_module.c:1732:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, bufstr, -1, bufstrW, ARRAY_SIZE(bufstrW)); data/wine-5.0/dlls/dbghelp/macho_module.c:147:50: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char* format_uuid(const uint8_t uuid[16], char out[UUID_STRING_LEN]) data/wine-5.0/dlls/dbghelp/macho_module.c:149:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(out, "%02X%02X%02X%02X-%02X%02X-%02X%02X-%02X%02X-%02X%02X%02X%02X%02X%02X", data/wine-5.0/dlls/dbghelp/macho_module.c:339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(fmap->sect[0].section.sectname)]; data/wine-5.0/dlls/dbghelp/macho_module.c:515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char segname[16]; data/wine-5.0/dlls/dbghelp/macho_module.c:553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char segname[16]; data/wine-5.0/dlls/dbghelp/macho_module.c:610:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fmap->sect[info->section_index].section.sectname, section->sectname, sizeof(section->sectname)); data/wine-5.0/dlls/dbghelp/macho_module.c:611:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fmap->sect[info->section_index].section.segname, section->segname, sizeof(section->segname)); data/wine-5.0/dlls/dbghelp/macho_module.c:702:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fmap->fd = open(filename, O_RDONLY)) == -1) data/wine-5.0/dlls/dbghelp/macho_module.c:789:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uuid_string[UUID_STRING_LEN]; data/wine-5.0/dlls/dbghelp/macho_module.c:1134:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uuid_string[UUID_STRING_LEN]; data/wine-5.0/dlls/dbghelp/macho_module.c:1175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uuid_string[UUID_STRING_LEN]; data/wine-5.0/dlls/dbghelp/macho_module.c:1538:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/macho_module.c:1541:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, path, -1, pathW, len); data/wine-5.0/dlls/dbghelp/macho_module.c:1585:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/macho_module.c:1591:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, path, -1, name, len); data/wine-5.0/dlls/dbghelp/macho_module.c:1672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufstr[256]; data/wine-5.0/dlls/dbghelp/macho_module.c:1725:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, bufstr, -1, bufstrW, ARRAY_SIZE(bufstrW)); data/wine-5.0/dlls/dbghelp/macho_module.c:1810:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[PATH_MAX]; data/wine-5.0/dlls/dbghelp/macho_module.c:1868:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/macho_module.c:1872:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, path, -1, pathW, len); data/wine-5.0/dlls/dbghelp/minidump.c:369:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ffi, ptr, min(len, sizeof(*ffi))); data/wine-5.0/dlls/dbghelp/minidump.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/dlls/dbghelp/minidump.c:843:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/dlls/dbghelp/minidump.c:890:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/dlls/dbghelp/module.c:92:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 2 + MultiByteToWideChar( CP_UNIXCP, 0, ptr, -1, NULL, 0 ); data/wine-5.0/dlls/dbghelp/module.c:94:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, ptr, -1, buffer, len ); data/wine-5.0/dlls/dbghelp/module.c:120:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, ptr, len * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/module.c:154:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = 2 + MultiByteToWideChar( CP_UNIXCP, 0, env, -1, NULL, 0 ); data/wine-5.0/dlls/dbghelp/module.c:156:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, env, -1, buffer, len ); data/wine-5.0/dlls/dbghelp/module.c:283:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, ARRAY_SIZE(wname)); data/wine-5.0/dlls/dbghelp/module.c:386:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(idslW64.FileName, pair->effective->module.ImageName, data/wine-5.0/dlls/dbghelp/module.c:567:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ImageName, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/module.c:569:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ImageName, -1, wImageName, len); data/wine-5.0/dlls/dbghelp/module.c:574:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ModuleName, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/module.c:576:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ModuleName, -1, wModuleName, len); data/wine-5.0/dlls/dbghelp/module.c:766:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[MAX_PATH]; data/wine-5.0/dlls/dbghelp/module.c:797:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[MAX_PATH]; data/wine-5.0/dlls/dbghelp/module.c:853:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[MAX_PATH]; data/wine-5.0/dlls/dbghelp/module.c:885:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[MAX_PATH]; data/wine-5.0/dlls/dbghelp/module.c:978:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ModuleInfo, &mi, ModuleInfo->SizeOfStruct); data/wine-5.0/dlls/dbghelp/module.c:1008:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ModuleInfo, &miw, ModuleInfo->SizeOfStruct); data/wine-5.0/dlls/dbghelp/module.c:1058:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ModuleInfo, &mi64, ModuleInfo->SizeOfStruct); data/wine-5.0/dlls/dbghelp/module.c:1093:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ModuleInfo, &miw64, ModuleInfo->SizeOfStruct); data/wine-5.0/dlls/dbghelp/msc.c:105:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[128]; data/wine-5.0/dlls/dbghelp/msc.c:111:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "%08x: ", i); data/wine-5.0/dlls/dbghelp/msc.c:512:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char symname[256]; data/wine-5.0/dlls/dbghelp/msc.c:514:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(symname, p_name->name, p_name->namelen); data/wine-5.0/dlls/dbghelp/msc.c:1353:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/dbghelp/msc.c:2191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + i * pdb->block_size, data/wine-5.0/dlls/dbghelp/msc.c:2209:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + i * pdb->block_size, data/wine-5.0/dlls/dbghelp/msc.c:2307:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpstr, str, cb); data/wine-5.0/dlls/dbghelp/msc.c:2445:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sfile, image, sizeof(PDB_SYMBOL_FILE_EX)); data/wine-5.0/dlls/dbghelp/msc.c:2902:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pdb_lookup->filename, -1, data/wine-5.0/dlls/dbghelp/msc.c:2963:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[64]; data/wine-5.0/dlls/dbghelp/msc.c:3042:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char p[PEV_MAX_LEN]; data/wine-5.0/dlls/dbghelp/msc.c:3078:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char res[PEV_MAX_LEN]; data/wine-5.0/dlls/dbghelp/msc.c:3099:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char res[PEV_MAX_LEN]; data/wine-5.0/dlls/dbghelp/msc.c:3113:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char p2[PEV_MAX_LEN]; data/wine-5.0/dlls/dbghelp/msc.c:3157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char token[PEV_MAX_LEN]; data/wine-5.0/dlls/dbghelp/path.c:57:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, len * sizeof(WCHAR) ); data/wine-5.0/dlls/dbghelp/path.c:143:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dbghelp/path.c:152:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, DirPath, n); data/wine-5.0/dlls/dbghelp/path.c:279:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, root, -1, rootW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:280:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:311:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/dbghelp/path.c:333:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, root, -1, rootW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:334:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:401:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, searchPath, (ptr - searchPath) * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/path.c:441:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, searchPath, -1, searchPathW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:442:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, full_path, -1, full_pathW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:558:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fn[MAX_PATH]; data/wine-5.0/dlls/dbghelp/path.c:643:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, full_path, -1, full_pathW, MAX_PATH); data/wine-5.0/dlls/dbghelp/path.c:673:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, searchPath, (ptr - searchPath) * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/pe_module.c:116:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[IMAGE_SIZEOF_SHORT_NAME + 1]; data/wine-5.0/dlls/dbghelp/pe_module.c:123:46: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sectname = fmap->u.pe.strtable + atoi(sectname + 1); data/wine-5.0/dlls/dbghelp/pe_module.c:127:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. sectname = memcpy(tmp, sectname, IMAGE_SIZEOF_SHORT_NAME); data/wine-5.0/dlls/dbghelp/pe_module.c:240:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&fmap->u.pe.sect[i].shdr, section + i, sizeof(IMAGE_SECTION_HEADER)); data/wine-5.0/dlls/dbghelp/pe_module.c:257:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, sz); data/wine-5.0/dlls/dbghelp/pe_module.c:344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[9]; data/wine-5.0/dlls/dbghelp/pe_module.c:364:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. name = memcpy(tmp, isym->N.ShortName, 8); data/wine-5.0/dlls/dbghelp/pe_module.c:406:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[9]; data/wine-5.0/dlls/dbghelp/pe_module.c:434:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. name = memcpy(tmp, isym->N.ShortName, 8); data/wine-5.0/dlls/dbghelp/pe_module.c:666:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/dbghelp/source.c:110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(module->sources + module->sources_used, full, len); data/wine-5.0/dlls/dbghelp/source.c:175:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, ptr, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/source.c:185:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ptr, -1, conversion_buffer, len); data/wine-5.0/dlls/dbghelp/source.c:251:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, Mask, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/source.c:260:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Mask, -1, maskW, len); data/wine-5.0/dlls/dbghelp/stabs.c:324:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/dbghelp/stabs.c:408:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptd->buf + ptd->idx, first, len); data/wine-5.0/dlls/dbghelp/stabs.c:649:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/dlls/dbghelp/stabs.c:652:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tmp, "__inherited_class_"); data/wine-5.0/dlls/dbghelp/stabs.c:1115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/dbghelp/stabs.c:1281:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char symname[4096]; data/wine-5.0/dlls/dbghelp/storage.c:190:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new, v->buckets, v->buckets_allocated * sizeof(void*)); data/wine-5.0/dlls/dbghelp/symbol.c:150:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD sz = MultiByteToWideChar(CP_ACP, 0, srcfile, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:157:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, srcfile, -1, srcfileW, sz); data/wine-5.0/dlls/dbghelp/symbol.c:709:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sym_info->Name, name, sym_info->NameLen); data/wine-5.0/dlls/dbghelp/symbol.c:726:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:824:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, &module->addr_sorttab[module->num_sorttab], delta * sizeof(struct symt_ht*)); data/wine-5.0/dlls/dbghelp/symbol.c:1024:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, si->Name, -1, siw->Name, siw->MaxNameLen); data/wine-5.0/dlls/dbghelp/symbol.c:1051:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mod, Mask, (bang - Mask) * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/symbol.c:1138:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD sz = MultiByteToWideChar(CP_ACP, 0, Mask, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:1141:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Mask, -1, maskW, sz); data/wine-5.0/dlls/dbghelp/symbol.c:1153:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFOW) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:1291:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:1319:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:1382:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/wine-5.0/dlls/dbghelp/symbol.c:1384:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, Name, name - Name); data/wine-5.0/dlls/dbghelp/symbol.c:1414:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:1436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + MAX_SYM_NAME]; data/wine-5.0/dlls/dbghelp/symbol.c:1569:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, l64->FileName, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:1571:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, l64->FileName, -1, l64w->FileName, len); data/wine-5.0/dlls/dbghelp/symbol.c:1844:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ptr, -1, undecorated_name, undecorated_length); data/wine-5.0/dlls/dbghelp/symbol.c:1998:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, string, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:2000:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, string, -1, strW, sz); data/wine-5.0/dlls/dbghelp/symbol.c:2001:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, re, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:2003:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, re, -1, reW, sz); data/wine-5.0/dlls/dbghelp/symbol.c:2070:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD sz = MultiByteToWideChar(CP_ACP, 0, Mask, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:2074:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Mask, -1, maskW, sz); data/wine-5.0/dlls/dbghelp/symbol.c:2114:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/dbghelp/symbol.c:2198:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD sz = MultiByteToWideChar(CP_ACP, 0, file, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/symbol.c:2202:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, fileW, sz); data/wine-5.0/dlls/dbghelp/tests/dbghelp.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char si_buf[sizeof(SYMBOL_INFO) + 200]; data/wine-5.0/dlls/dbghelp/type.c:112:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/type.c:114:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, sz); data/wine-5.0/dlls/dbghelp/type.c:452:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/dlls/dbghelp/type.c:488:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sym_info->Name, tmp, sym_info->NameLen); data/wine-5.0/dlls/dbghelp/type.c:500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFOW) + 256 * sizeof(WCHAR)]; data/wine-5.0/dlls/dbghelp/type.c:767:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0); data/wine-5.0/dlls/dbghelp/type.c:770:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, X(WCHAR*), len); data/wine-5.0/dlls/ddeml.dll16/ddeml.c:513:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpConvInfo, &ci16, lpConvInfo->cb); data/wine-5.0/dlls/ddraw/ddraw.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char interface_name[100]; data/wine-5.0/dlls/ddraw/ddraw.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_name[100]; data/wine-5.0/dlls/ddraw/ddraw.c:2601:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(DDDI, &deviceidentifier, FIELD_OFFSET(DDDEVICEIDENTIFIER2, dwWHQLLevel) + sizeof(DWORD)); data/wine-5.0/dlls/ddraw/ddraw.c:3702:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_name[50]; data/wine-5.0/dlls/ddraw/ddraw.c:3703:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(device_name,"Direct3D HEL"); data/wine-5.0/dlls/ddraw/ddraw.c:3765:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(device_name,"Direct3D HAL"); data/wine-5.0/dlls/ddraw/ddraw_private.h:659:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, from, __copysize); \ data/wine-5.0/dlls/ddraw/device.c:2222:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->sysmem_vertex_buffer, old_buffer, device->nb_vertices * device->vertex_size); data/wine-5.0/dlls/ddraw/device.c:2227:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->sysmem_vertex_buffer + device->nb_vertices++ * device->vertex_size, vertex, device->vertex_size); data/wine-5.0/dlls/ddraw/device.c:3516:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, vertices, size); data/wine-5.0/dlls/ddraw/device.c:3709:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, vertices, vtx_size); data/wine-5.0/dlls/ddraw/device.c:3726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, indices, idx_size); data/wine-5.0/dlls/ddraw/device.c:3972:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->position.lpvData) + offset, 4 * sizeof(float)); data/wine-5.0/dlls/ddraw/device.c:3977:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->position.lpvData) + offset, 3 * sizeof(float)); data/wine-5.0/dlls/ddraw/device.c:3985:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->normal.lpvData) + offset, 3 * sizeof(float)); data/wine-5.0/dlls/ddraw/device.c:3992:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->diffuse.lpvData) + offset, sizeof(DWORD)); data/wine-5.0/dlls/ddraw/device.c:3999:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->specular.lpvData) + offset, sizeof(DWORD)); data/wine-5.0/dlls/ddraw/device.c:4007:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, ((BYTE *)src->textureCoords[tex].lpvData) + offset, attrib_count * sizeof(float)); data/wine-5.0/dlls/ddraw/device.c:4186:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, indices, idx_size); data/wine-5.0/dlls/ddraw/device.c:4454:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_map_desc.data, indices, index_count * sizeof(WORD)); data/wine-5.0/dlls/ddraw/executebuffer.c:538:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &buffer->desc, dwSize); data/wine-5.0/dlls/ddraw/executebuffer.c:652:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(map_desc.data, ((BYTE *)buffer->desc.lpData) + data->dwVertexOffset, copy_size); data/wine-5.0/dlls/ddraw/executebuffer.c:657:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer->data, data, data->dwSize); data/wine-5.0/dlls/ddraw/executebuffer.c:684:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, &buffer->data, sizeof(*data)); data/wine-5.0/dlls/ddraw/executebuffer.c:763:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&execute_buffer->desc, desc, desc->dwSize); data/wine-5.0/dlls/ddraw/light.c:201:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&light->light, data, sizeof(*data)); data/wine-5.0/dlls/ddraw/light.c:232:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpLight, &light->light, lpLight->dwSize); data/wine-5.0/dlls/ddraw/main.c:67:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DriverName[512] = "", DriverDescription[512] = ""; data/wine-5.0/dlls/ddraw/material.c:236:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&material->mat, mat, mat->dwSize); data/wine-5.0/dlls/ddraw/material.c:270:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mat, &material->mat, dwSize); data/wine-5.0/dlls/ddraw/surface.c:2671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, stored_data->content.data, stored_data->size); data/wine-5.0/dlls/ddraw/surface.c:5362:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_map_desc.data, src_map_desc.data, src_surface->surface_desc.u1.dwLinearSize); data/wine-5.0/dlls/ddraw/surface.c:5364:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_map_desc.data, src_map_desc.data, src_map_desc.row_pitch * src_desc->dwHeight); data/wine-5.0/dlls/ddraw/tests/d3d.c:64:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *callback_description_ptrs[MAX_ENUMERATION_COUNT]; data/wine-5.0/dlls/ddraw/tests/d3d.c:65:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char callback_description_strings[MAX_ENUMERATION_COUNT][100]; data/wine-5.0/dlls/ddraw/tests/d3d.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *callback_name_ptrs[MAX_ENUMERATION_COUNT]; data/wine-5.0/dlls/ddraw/tests/d3d.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char callback_name_strings[MAX_ENUMERATION_COUNT][100]; data/wine-5.0/dlls/ddraw/tests/d3d.c:733:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ctx2.callback_description_ptrs[i], "Fake Description"); data/wine-5.0/dlls/ddraw/tests/d3d.c:734:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ctx2.callback_name_ptrs[i], "Fake Device"); data/wine-5.0/dlls/ddraw/tests/d3d.c:1358:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[512]; data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1012:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 0], &src_data[ 0], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1013:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 640], &src_data[ 6], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1014:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[1280], &src_data[12], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1539:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, tquad, sizeof(tquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1707:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, tquad, sizeof(tquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:1865:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, tquad, sizeof(tquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:5846:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data, sizeof(src_data)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:5852:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data2, sizeof(src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:5980:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6228:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, unlitquad, sizeof(unlitquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6255:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, litquad, sizeof(litquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6273:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, unlitnquad, sizeof(unlitnquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6291:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, litnquad, sizeof(litnquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6362:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, tests[i].quad, sizeof(nquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:6704:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(*quad) * vertex_count); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:7568:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, test1_quads, sizeof(test1_quads)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:7732:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, test2_quads, sizeof(test2_quads)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:7819:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, test1_quads, sizeof(test1_quads)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:8618:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:8992:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad_strip)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:10669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:11065:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, tquad, sizeof(tquad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:11677:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:12260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:12741:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw1.c:12771:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_desc.lpData, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw2.c:850:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 0], &src_data[ 0], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw2.c:851:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 640], &src_data[ 6], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw2.c:852:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[1280], &src_data[12], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw2.c:6798:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data, sizeof(src_data)); data/wine-5.0/dlls/ddraw/tests/ddraw2.c:6804:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data2, sizeof(src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:1039:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 0], &src_data[ 0], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:1040:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 640], &src_data[ 6], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:1041:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[1280], &src_data[12], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:3957:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4276:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data1, unlitquad, sizeof(*src_data1)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4277:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&src_data1[1], litquad, sizeof(*src_data1)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4283:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data2, unlitnquad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4284:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&src_data2[1], litnquad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4425:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data2, tests[i].quad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:4786:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data, vertices, sizeof(vertices)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:8625:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data, sizeof(src_data)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:8631:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data2, sizeof(src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:9342:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:10272:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)surface_desc.lpSurface + y * U1(surface_desc).lPitch, data/wine-5.0/dlls/ddraw/tests/ddraw4.c:10273:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)formats[i].content + y * 4 * formats[i].pixel_size, data/wine-5.0/dlls/ddraw/tests/ddraw4.c:11548:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_strip, sizeof(quad_strip)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:11557:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_list, sizeof(quad_list)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:12898:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:16008:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw4.c:16873:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)lock.lpSurface + y * pitch, data/wine-5.0/dlls/ddraw/tests/ddraw7.c:981:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 0], &src_data[ 0], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:982:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[ 640], &src_data[ 6], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:983:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptr[1280], &src_data[12], 6 * sizeof(DWORD)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:3602:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:3916:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data1, unlitquad, sizeof(*src_data1)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:3917:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&src_data1[1], litquad, sizeof(*src_data1)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:3923:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data2, unlitnquad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:3924:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&src_data2[1], litnquad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:4009:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data2, tests[i].quad, sizeof(*src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:4423:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_data, vertices, sizeof(vertices)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:8481:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data, sizeof(src_data)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:8487:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(surface_desc.lpSurface, src_data2, sizeof(src_data2)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:9095:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:10248:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)surface_desc.lpSurface + y * U1(surface_desc).lPitch, data/wine-5.0/dlls/ddraw/tests/ddraw7.c:10249:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)formats[i].content + y * 4 * formats[i].pixel_size, data/wine-5.0/dlls/ddraw/tests/ddraw7.c:11529:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_strip, sizeof(quad_strip)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:11538:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad_list, sizeof(quad_list)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:12887:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:15820:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, quad, sizeof(quad)); data/wine-5.0/dlls/ddraw/tests/ddraw7.c:16841:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)lock.lpSurface + y * pitch, data/wine-5.0/dlls/ddraw/utils.c:962:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOut, pIn, sizeof(*pOut)); data/wine-5.0/dlls/ddraw/utils.c:1199:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, &temp, 16 * sizeof(D3DVALUE)); data/wine-5.0/dlls/ddraw/viewport.c:342:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vp, &viewport->viewports.vp1, size); data/wine-5.0/dlls/ddraw/viewport.c:360:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vp, &vp1, size); data/wine-5.0/dlls/ddraw/viewport.c:975:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vp, &viewport->viewports.vp2, size); data/wine-5.0/dlls/ddraw/viewport.c:993:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vp, &vp2, size); data/wine-5.0/dlls/devenum/createdevenum.c:403:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(array, data, size); data/wine-5.0/dlls/devenum/mediacatenum.c:187:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(V_BSTR(pVar), pData, received); data/wine-5.0/dlls/devenum/mediacatenum.c:240:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pArrayElements, pData, received); data/wine-5.0/dlls/dhcpcsvc/dhcpcsvc.c:106:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, query->params[i].size ); data/wine-5.0/dlls/dhcpcsvc/tests/dhcpcsvc.c:58:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ptr->AdapterName, -1, name, ARRAY_SIZE(name) ); data/wine-5.0/dlls/dhcpcsvc/tests/dhcpcsvc.c:121:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, params[i].Data, params[i].nBytesData ); data/wine-5.0/dlls/dinput/device.c:279:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+16]; data/wine-5.0/dlls/dinput/device.c:299:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(appname, "\\DirectInput"); data/wine-5.0/dlls/dinput/device.c:334:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, in, min(size, df->internal_format_size)); data/wine-5.0/dlls/dinput/device.c:358:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((out_c + df->dt[i].offset_out), (in_c + df->dt[i].offset_in), df->dt[i].size); data/wine-5.0/dlls/dinput/device.c:450:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format->user_df, asked_format, asked_format->dwSize); data/wine-5.0/dlls/dinput/device.c:874:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&obj_df[action], obj, df->dwObjSize); data/wine-5.0/dlls/dinput/device.c:1573:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)dod + dodsize * i, This->data_queue + n, dodsize); data/wine-5.0/dlls/dinput/dinput_main.c:1047:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, ptszUserName, -1, 0, 0); data/wine-5.0/dlls/dinput/dinput_main.c:1050:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ptszUserName, -1, username_w, len); data/wine-5.0/dlls/dinput/dinput_main.c:1267:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, from , -1, NULL , 0); data/wine-5.0/dlls/dinput/dinput_main.c:1270:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, from , -1, to , len); data/wine-5.0/dlls/dinput/effect_linuxinput.c:916:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, _dump_dinput_GUID(rguid), -1, data/wine-5.0/dlls/dinput/joystick.c:282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick.c:538:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(lpDIDevCaps, &This->devcaps, size); data/wine-5.0/dlls/dinput/joystick.c:592:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdidoi, &didoiW, FIELD_OFFSET(DIDEVICEOBJECTINSTANCEW, tszName)); data/wine-5.0/dlls/dinput/joystick.c:761:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buffer, -1, pdidi->tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick.c:762:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, This->name, -1, pdidi->tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick.c:892:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/joystick.c:894:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/joystick.c:934:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/joystick.c:936:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/joystick.c:1008:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+16]; data/wine-5.0/dlls/dinput/joystick.c:1020:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). This->deadzone = atoi(buffer); data/wine-5.0/dlls/dinput/joystick_linux.c:79:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick_linux.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick_linux.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sys_path[sizeof(SYS_PATH_FORMAT) + 16], id_str[5]; data/wine-5.0/dlls/dinput/joystick_linux.c:143:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((sys_fd = open(sys_path, O_RDONLY)) != -1) data/wine-5.0/dlls/dinput/joystick_linux.c:174:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(joydev.device, O_RDONLY)) == -1) data/wine-5.0/dlls/dinput/joystick_linux.c:177:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(joydev.device, O_RDONLY)) == -1) continue; data/wine-5.0/dlls/dinput/joystick_linux.c:180:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(joydev.name, "Wine Joystick"); data/wine-5.0/dlls/dinput/joystick_linux.c:378:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, joystick_devices[id].name, -1, lpddi->tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linux.c:379:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, joystick_devices[id].name, -1, lpddi->tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linux.c:421:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(joystick_devices[id].device, O_RDONLY)) == -1) data/wine-5.0/dlls/dinput/joystick_linux.c:450:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(joystick_devices[id].device, O_RDONLY)) == -1) data/wine-5.0/dlls/dinput/joystick_linux.c:517:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df, &c_dfDIJoystick2, c_dfDIJoystick2.dwSize); data/wine-5.0/dlls/dinput/joystick_linux.c:528:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[wine_obj], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_linux.c:539:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[i + 12], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_linux.c:695:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). This->joyfd = open(This->joydev->device, O_RDONLY); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:185:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick_linuxinput.c:195:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(buf, O_RDWR)) == -1) data/wine-5.0/dlls/dinput/joystick_linuxinput.c:197:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(buf, O_RDONLY); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:381:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, joydevs[id].name, -1, lpddi->tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:382:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, joydevs[id].name, -1, lpddi->tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:536:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df, &c_dfDIJoystick2, c_dfDIJoystick2.dwSize); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:549:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[wine_obj], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:575:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[newDevice->generic.devcaps.dwButtons + 12], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_linuxinput.c:707:24: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((This->joyfd = open(This->joydev->device, O_RDWR)) == -1) data/wine-5.0/dlls/dinput/joystick_linuxinput.c:709:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((This->joyfd = open(This->joydev->device, O_RDONLY)) == -1) data/wine-5.0/dlls/dinput/joystick_osx.c:997:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(lpddi->tszInstanceName, "Joystick %d", id); data/wine-5.0/dlls/dinput/joystick_osx.c:1011:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick_osx.c:1012:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char friendly[32]; data/wine-5.0/dlls/dinput/joystick_osx.c:1045:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(friendly, "Joystick %d", id); data/wine-5.0/dlls/dinput/joystick_osx.c:1046:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, friendly, -1, lpddi->tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_osx.c:1051:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, lpddi->tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/joystick_osx.c:1061:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ret[6]; data/wine-5.0/dlls/dinput/joystick_osx.c:1070:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ret, "%u", (unsigned int)axis); data/wine-5.0/dlls/dinput/joystick_osx.c:1089:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/dinput/joystick_osx.c:1176:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df, &c_dfDIJoystick2, c_dfDIJoystick2.dwSize); data/wine-5.0/dlls/dinput/joystick_osx.c:1219:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[wine_obj], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_osx.c:1228:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[i + 8], df->dwObjSize); data/wine-5.0/dlls/dinput/joystick_osx.c:1234:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIJoystick2.rgodf[i + 12], df->dwObjSize); data/wine-5.0/dlls/dinput/keyboard.c:183:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ddi.tszInstanceName, "Keyboard"); data/wine-5.0/dlls/dinput/keyboard.c:184:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ddi.tszProductName, "Wine Keyboard"); data/wine-5.0/dlls/dinput/keyboard.c:186:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpddi, &ddi, (dwSize < sizeof(ddi) ? dwSize : sizeof(ddi))); data/wine-5.0/dlls/dinput/keyboard.c:207:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Keyboard", -1, ddi.tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/keyboard.c:208:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Wine Keyboard", -1, ddi.tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/keyboard.c:210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpddi, &ddi, (dwSize < sizeof(ddi) ? dwSize : sizeof(ddi))); data/wine-5.0/dlls/dinput/keyboard.c:265:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newDevice->base.guid, rguid, sizeof(*rguid)); data/wine-5.0/dlls/dinput/keyboard.c:274:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df, &c_dfDIKeyboard, c_dfDIKeyboard.dwSize); data/wine-5.0/dlls/dinput/keyboard.c:279:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/dinput/keyboard.c:286:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&df->rgodf[idx], &c_dfDIKeyboard.rgodf[dik_code], df->dwObjSize); data/wine-5.0/dlls/dinput/keyboard.c:426:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDIDevCaps, &devcaps, lpDIDevCaps->dwSize); data/wine-5.0/dlls/dinput/keyboard.c:646:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/keyboard.c:648:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/keyboard.c:687:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/keyboard.c:689:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/mouse.c:126:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ddi.tszInstanceName, "Mouse"); data/wine-5.0/dlls/dinput/mouse.c:127:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ddi.tszProductName, "Wine Mouse"); data/wine-5.0/dlls/dinput/mouse.c:129:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpddi, &ddi, (dwSize < sizeof(ddi) ? dwSize : sizeof(ddi))); data/wine-5.0/dlls/dinput/mouse.c:150:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Mouse", -1, ddi.tszInstanceName, MAX_PATH); data/wine-5.0/dlls/dinput/mouse.c:151:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Wine Mouse", -1, ddi.tszProductName, MAX_PATH); data/wine-5.0/dlls/dinput/mouse.c:153:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpddi, &ddi, (dwSize < sizeof(ddi) ? dwSize : sizeof(ddi))); data/wine-5.0/dlls/dinput/mouse.c:203:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/dinput/mouse.c:231:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df, &c_dfDIMouse2, c_dfDIMouse2.dwSize); data/wine-5.0/dlls/dinput/mouse.c:233:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(df->rgodf, c_dfDIMouse2.rgodf, df->dwNumObjs * df->dwObjSize); data/wine-5.0/dlls/dinput/mouse.c:701:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDIDevCaps, &devcaps, lpDIDevCaps->dwSize); data/wine-5.0/dlls/dinput/mouse.c:754:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdidoi, &didoiW, FIELD_OFFSET(DIDEVICEOBJECTINSTANCEW, tszName)); data/wine-5.0/dlls/dinput/mouse.c:818:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/mouse.c:820:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/mouse.c:859:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, NULL, 0); data/wine-5.0/dlls/dinput/mouse.c:861:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszUserName, -1, lpszUserNameW, username_size); data/wine-5.0/dlls/dinput/tests/joystick.c:314:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char oldstate[248], curstate[248]; data/wine-5.0/dlls/dinput/tests/joystick.c:386:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpddi->tszInstanceName, -1, nameBuffer, MAX_PATH); data/wine-5.0/dlls/dinput/tests/joystick.c:394:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpddi->tszProductName, -1, nameBuffer, MAX_PATH); data/wine-5.0/dlls/dinput/tests/joystick.c:859:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(curstate, "X%5d Y%5d Z%5d Rx%5d Ry%5d Rz%5d " data/wine-5.0/dlls/dinput/tests/keyboard.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hkl_name[64]; data/wine-5.0/dlls/dinput/tests/keyboard.c:52:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(hkl_name, "%08x", langid); data/wine-5.0/dlls/dinput8/tests/device.c:186:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). username_size = MultiByteToWideChar(CP_ACP, 0, data->username, -1, usernameW, 0); data/wine-5.0/dlls/dinput8/tests/device.c:187:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data->username, -1, usernameW, username_size); data/wine-5.0/dlls/dmband/band.c:270:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pNewInstrument->pInstrument, &inst, sizeof(DMUS_IO_INSTRUMENT)); data/wine-5.0/dlls/dmband/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmband/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmband/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmband/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmband/tests/dmband.c:183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64] = { 0 }; data/wine-5.0/dlls/dmband/tests/dmband.c:326:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmband/tests/dmband.c:336:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmband/tests/dmband.c:349:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmband/tests/dmband.c:358:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmcompos/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmcompos/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmcompos/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmcompos/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmcompos/tests/dmcompos.c:484:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmcompos/tests/dmcompos.c:494:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmcompos/tests/dmcompos.c:507:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmcompos/tests/dmcompos.c:516:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmime/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmime/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmime/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmime/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmime/performance.c:767:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pParam, &This->fAutoDownload, sizeof(This->fAutoDownload)); data/wine-5.0/dlls/dmime/performance.c:769:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pParam, &This->cMasterGrooveLevel, sizeof(This->cMasterGrooveLevel)); data/wine-5.0/dlls/dmime/performance.c:771:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pParam, &This->fMasterTempo, sizeof(This->fMasterTempo)); data/wine-5.0/dlls/dmime/performance.c:773:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pParam, &This->lMasterVolume, sizeof(This->lMasterVolume)); data/wine-5.0/dlls/dmime/performance.c:786:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->fAutoDownload, pParam, dwSize); data/wine-5.0/dlls/dmime/performance.c:790:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->cMasterGrooveLevel, pParam, dwSize); data/wine-5.0/dlls/dmime/performance.c:794:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->fMasterTempo, pParam, dwSize); data/wine-5.0/dlls/dmime/performance.c:798:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->lMasterVolume, pParam, dwSize); data/wine-5.0/dlls/dmime/tests/dmime.c:636:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/dmime/tests/dmime.c:678:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64] = { 0 }; data/wine-5.0/dlls/dmime/tests/dmime.c:688:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64] = { 0 }; data/wine-5.0/dlls/dmime/tests/dmime.c:889:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmime/tests/dmime.c:899:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmime/tests/dmime.c:912:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmime/tests/dmime.c:921:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmime/tests/performance.c:494:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char rifffile[8+4+8+16+8+256] = "RIFF\x24\x01\x00\x00WAVE" /* header: 4 ("WAVE") + (8 + 16) (format segment) + (8 + 256) (data segment) = 0x124 */ data/wine-5.0/dlls/dmloader/debug.c:48:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], *ptr = buffer; data/wine-5.0/dlls/dmloader/debug.c:50:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ptr += sprintf(ptr, "DMUS_IO_CONTAINER_HEADER (%p):", pHeader); data/wine-5.0/dlls/dmloader/debug.c:62:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], *ptr = buffer; data/wine-5.0/dlls/dmloader/debug.c:64:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ptr += sprintf(ptr, "DMUS_IO_CONTAINED_OBJECT_HEADER (%p):", pHeader); data/wine-5.0/dlls/dmloader/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmloader/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmloader/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmloader/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmloader/loader.c:897:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPath[MAX_PATH]; data/wine-5.0/dlls/dmloader/loader.c:905:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar (CP_ACP, 0, szPath, -1, wszPath, MAX_PATH); data/wine-5.0/dlls/dmloader/loaderstream.c:389:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (pv, pByte, cb); data/wine-5.0/dlls/dmloader/tests/loader.c:29:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char rifffile[8+4+8+16+8+256] = "RIFF\x24\x01\x00\x00WAVE" /* header: 4 ("WAVE") + (8 + 16) (format segment) + (8 + 256) (data segment) = 0x124 */ data/wine-5.0/dlls/dmloader/tests/loader.c:411:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmloader/tests/loader.c:421:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmloader/tests/loader.c:434:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmloader/tests/loader.c:443:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmscript/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmscript/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmscript/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmscript/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmscript/tests/dmscript.c:324:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmscript/tests/dmscript.c:334:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmstyle/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmstyle/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmstyle/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmstyle/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmstyle/tests/dmstyle.c:409:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmstyle/tests/dmstyle.c:419:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmstyle/tests/dmstyle.c:432:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmstyle/tests/dmstyle.c:441:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmusic/buffer.c:156:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&header[1], data, len); data/wine-5.0/dlls/dmusic/collection.c:159:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, instrument->wszName, length * sizeof(WCHAR)); data/wine-5.0/dlls/dmusic/collection.c:308:37: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szName, -1, This->dmobj.desc.wszName, DMUS_MAX_NAME); data/wine-5.0/dlls/dmusic/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dmusic/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dmusic/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dmusic/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dmusic/dmusic.c:414:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[51]; data/wine-5.0/dlls/dmusic/dmusic.c:428:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE(buff)); data/wine-5.0/dlls/dmusic/dmusic_main.c:221:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128] = "", *ptr = &buffer[0]; data/wine-5.0/dlls/dmusic/port.c:558:4: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pWaveFormatEx, &format, min(sizeof(format), *pdwWaveFormatExSize)); data/wine-5.0/dlls/dmusic/tests/dmusic.c:256:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&desc.guidBufferFormat, &GUID_NULL, sizeof(GUID)); data/wine-5.0/dlls/dmusic/tests/dmusic.c:568:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dmusic/tests/dmusic.c:578:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dmusic/tests/dmusic.c:591:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dmusic/tests/dmusic.c:600:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dmusic/tests/dmusic.c:607:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "INAM"); data/wine-5.0/dlls/dnsapi/dnsapi.h:62:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/dnsapi/dnsapi.h:64:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/dnsapi/dnsapi.h:74:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_UTF8, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/dnsapi/dnsapi.h:76:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, str, -1, ret, len ); data/wine-5.0/dlls/dnsapi/ns_name.c:220:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. dstp = memcpy(dstp, srcp - 1, n + 1); data/wine-5.0/dlls/dnsapi/query.c:74:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[11]; data/wine-5.0/dlls/dnsapi/query.c:76:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tmp, "0x%02x", section ); data/wine-5.0/dlls/dnsapi/query.c:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *str, dname[NS_MAXDNAME] = "."; data/wine-5.0/dlls/dnsapi/query.c:181:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, ++rdata, len ); data/wine-5.0/dlls/dnsapi/query.c:312:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( r->Data.Null.Data, rr->rdata, rr->rdlength ); data/wine-5.0/dlls/dnsapi/query.c:321:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( r->Data.OPT.Data, rr->rdata, rr->rdlength ); data/wine-5.0/dlls/dnsapi/query.c:504:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ncb.ncb_callname, name, len ); data/wine-5.0/dlls/dnsapi/query.c:536:52: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. record->Data.A.IpAddress = *(DWORD *)((char *)buffer[i].destination_addr + 2); data/wine-5.0/dlls/dnsapi/query.c:601:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char answer[DNS_MAX_PACKET_SIZE]; data/wine-5.0/dlls/dnsapi/query.c:783:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/dnsapi/record.c:112:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. default: { static char tmp[7]; sprintf( tmp, "0x%04x", type ); return tmp; } data/wine-5.0/dlls/dnsapi/record.c:112:36: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default: { static char tmp[7]; sprintf( tmp, "0x%04x", type ); return tmp; } data/wine-5.0/dlls/dnsapi/record.c:440:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/dplayx/dplay.c:1291:7: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpGData->lpRemoteData, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplay.c:1418:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpDst, lpSrc, lpSrc->dwSize ); data/wine-5.0/dlls/dplayx/dplay.c:1490:7: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpPData->lpRemoteData, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplay.c:2656:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( data, src, bufsize ); data/wine-5.0/dlls/dplayx/dplay.c:2697:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpName, &lpGData->name, lpGData->name.dwSize ); data/wine-5.0/dlls/dplayx/dplay.c:2978:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( data, src, bufsize ); data/wine-5.0/dlls/dplayx/dplay.c:3024:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpName, &lpPList->lpPData->name, lpPList->lpPData->name.dwSize ); data/wine-5.0/dlls/dplayx/dplay.c:3408:15: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (lpData) CopyMemory( lpData, lpMsg->msg, *lpdwDataSize ); data/wine-5.0/dlls/dplayx/dplay.c:3921:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpSessionDest, lpSessionSrc, sizeof( *lpSessionSrc ) ); data/wine-5.0/dlls/dplayx/dplay.c:4282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[51]; data/wine-5.0/dlls/dplayx/dplay.c:4306:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[51]; data/wine-5.0/dlls/dplayx/dplay.c:4335:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplay.c:4380:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[51]; data/wine-5.0/dlls/dplayx/dplay.c:4403:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[51]; data/wine-5.0/dlls/dplayx/dplay.c:4433:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplay.c:4603:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpContext, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplay.c:4632:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[51]; data/wine-5.0/dlls/dplayx/dplay.c:4659:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[256]; data/wine-5.0/dlls/dplayx/dplay.c:4682:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplay.c:4694:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, subKeyName, -1, NULL, 0 ); data/wine-5.0/dlls/dplayx/dplay.c:4696:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, subKeyName, -1, lpSpData->lpszName, len ); data/wine-5.0/dlls/dplayx/dplay.c:5272:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpMElem->msg, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplay.c:5976:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpData->lpConn, lpConnection, dwConnectionSize ); data/wine-5.0/dlls/dplayx/dplaysp.c:535:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpPlayerData, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplaysp.c:639:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpSpData, lpData, dwDataSize ); data/wine-5.0/dlls/dplayx/dplayx_global.c:602:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpStartOfFreeSpace, src->lpAddress, src->dwAddressSize ); data/wine-5.0/dlls/dplayx/dplayx_global.c:670:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpStartOfFreeSpace, src->lpAddress, src->dwAddressSize ); data/wine-5.0/dlls/dplayx/dplayx_global.c:1065:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char szTempStr[12]; data/wine-5.0/dlls/dplayx/dplayx_messages.c:434:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpReplyList->replyExpected.lpReplyMsg, data/wine-5.0/dlls/dplayx/dplobby.c:720:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[51]; data/wine-5.0/dlls/dplayx/dplobby.c:759:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char atSubKey[51]; data/wine-5.0/dlls/dplayx/dplobby.c:760:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[51]; data/wine-5.0/dlls/dplayx/dplobby.c:785:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplobby.c:812:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, atSubKey, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplobby.c:897:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subKeyName[51]; data/wine-5.0/dlls/dplayx/dplobby.c:930:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[51]; data/wine-5.0/dlls/dplayx/dplobby.c:953:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, returnBuffer, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/dplayx/dplobby.c:963:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &This->cbkeyhack, &hkServiceProvider, sizeof( hkServiceProvider ) ); data/wine-5.0/dlls/dplayx/dplobby.c:1138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char returnBuffer[200]; data/wine-5.0/dlls/dplayx/dplobby.c:1300:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[200]; data/wine-5.0/dlls/dplayx/dplobby.c:1770:7: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpAddress, lpElements->lpData, sizeof( GUID ) ); data/wine-5.0/dlls/dplayx/dplobby.c:1820:7: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpAddress, lpElements->lpData, sizeof( DPADDRESS ) ); data/wine-5.0/dlls/dplayx/name_server.c:120:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpCacheNode->lpNSAddrHdr, lpcNSAddrHdr, dwHdrSize ); data/wine-5.0/dlls/dplayx/name_server.c:190:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( lpCache->lpLocalAddrHdr, lpHdr, dwHdrSize ); data/wine-5.0/dlls/dplayx/name_server.c:369:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dwVariableLen = MultiByteToWideChar( CP_ACP, 0, data/wine-5.0/dlls/dplayx/name_server.c:386:3: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory( &rmsg->sd, lpDP->dp2->lpSessionDesc, data/wine-5.0/dlls/dplayx/name_server.c:389:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpDP->dp2->lpSessionDesc->u1.lpszSessionNameA, -1, data/wine-5.0/dlls/dplayx/tests/dplayx.c:75:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTrace1[1024], szTrace2[1024]; data/wine-5.0/dlls/dplayx/tests/dplayx.c:91:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[10][256]; data/wine-5.0/dlls/dplayx/tests/dplayx.c:217:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%d", HRESULT_CODE(hr) ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:277:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCONNECTION_DIRECTPLAY,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:279:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCONNECTION_DIRECTPLAYLOBBY,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:288:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_ALL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:290:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:292:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_REMOTE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:294:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_GROUP,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:296:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_SESSION,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:298:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_SERVERPLAYER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:300:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_SPECTATOR,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:302:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMPLAYERS_OWNER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:307:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_ALL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:309:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:311:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_REMOTE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:313:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_GROUP,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:315:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_SESSION,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:317:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_SHORTCUT,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:319:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_STAGINGAREA,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:321:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMGROUPS_HIDDEN,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:329:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPPLAYER_SERVERPLAYER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:331:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPPLAYER_SPECTATOR,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:333:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPPLAYER_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:335:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPPLAYER_OWNER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:343:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGROUP_STAGINGAREA,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:345:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGROUP_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:347:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGROUP_HIDDEN,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:355:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_AVAILABLE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:357:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_ALL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:359:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_ASYNC,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:361:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_STOPASYNC,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:363:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_PASSWORDREQUIRED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:365:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPENUMSESSIONS_RETURNSTATUS,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:374:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGETCAPS_GUARANTEED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:383:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGET_REMOTE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:385:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPGET_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:393:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPRECEIVE_ALL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:395:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPRECEIVE_TOPLAYER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:397:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPRECEIVE_FROMPLAYER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:399:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPRECEIVE_PEEK,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:410:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_MAX_PRIORITY,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:415:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_GUARANTEED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:417:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_HIGHPRIORITY,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:419:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_OPENSTREAM,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:421:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_CLOSESTREAM,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:423:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_SIGNED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:425:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_ENCRYPTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:427:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_LOBBYSYSTEMMESSAGE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:429:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_ASYNC,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:431:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSEND_NOSENDCOMPLETEMSG,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:444:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSET_REMOTE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:446:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSET_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:448:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSET_GUARANTEED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:456:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPMESSAGEQUEUE_SEND,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:458:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPMESSAGEQUEUE_RECEIVE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:466:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCONNECT_RETURNSTATUS,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:474:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPOPEN_JOIN,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:476:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPOPEN_CREATE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:478:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPOPEN_RETURNSTATUS,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:486:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_NEWPLAYERSDISABLED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:488:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_MIGRATEHOST,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:490:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_NOMESSAGEID,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:492:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_JOINDISABLED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:494:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_KEEPALIVE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:496:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_NODATAMESSAGES,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:498:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_SECURESERVER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:500:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_PRIVATE,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:502:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_PASSWORDREQUIRED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:504:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_MULTICASTSERVER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:506:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_CLIENTSERVER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:509:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_DIRECTPLAYPROTOCOL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:511:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_NOPRESERVEORDER,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:513:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPSESSION_OPTIMIZELATENCY,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:522:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPLCONNECTION_CREATESESSION,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:524:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPLCONNECTION_JOINSESSION,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:532:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPESC_TIMEDOUT,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:541:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_ISHOST,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:543:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_GROUPOPTIMIZED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:545:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_KEEPALIVEOPTIMIZED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:547:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_GUARANTEEDOPTIMIZED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:549:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_GUARANTEEDSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:551:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_SIGNINGSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:553:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_ENCRYPTIONSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:555:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_ASYNCCANCELSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:557:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_ASYNCCANCELALLSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:559:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_SENDTIMEOUTSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:561:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_SENDPRIORITYSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:563:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPCAPS_ASYNCSUPPORTED,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:566:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags, "DPPLAYERCAPS_LOCAL,"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:570:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(flags, "UNKNOWN"); data/wine-5.0/dlls/dplayx/tests/dplayx.c:625:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[5]; data/wine-5.0/dlls/dplayx/tests/dplayx.c:638:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( temp, "%d,", dwDataSize ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:1480:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dpsd_server[i], &dpsd, sizeof(DPSESSIONDESC2) ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6887:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/dplayx/tests/dplayx.c:6889:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\\StringFileInfo\\%04x%04x\\OriginalFilename", MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US), 1200); data/wine-5.0/dlls/dplayx/tests/dplayx.c:6902:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dplayx/tests/dplayx.c:6910:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\dplayx.dll"); data/wine-5.0/dlls/dpnet/address.c:371:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, &entry->data.value, sizeof(DWORD)); data/wine-5.0/dlls/dpnet/address.c:374:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, &entry->data.guid, sizeof(GUID)); data/wine-5.0/dlls/dpnet/address.c:377:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.string, entry->size); data/wine-5.0/dlls/dpnet/address.c:380:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.ansi, entry->size); data/wine-5.0/dlls/dpnet/address.c:383:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.binary, entry->size); data/wine-5.0/dlls/dpnet/address.c:450:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.string, entry->size); data/wine-5.0/dlls/dpnet/address.c:453:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.ansi, entry->size); data/wine-5.0/dlls/dpnet/address.c:456:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvBuffer, entry->data.binary, entry->size); data/wine-5.0/dlls/dpnet/address.c:571:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->data.binary, lpvData, dwDataSize); data/wine-5.0/dlls/dpnet/client.c:251:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, pdpnPlayerInfo->pvData, pdpnPlayerInfo->dwDataSize); data/wine-5.0/dlls/dpnet/peer.c:418:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, pdpnPlayerInfo->pvData, pdpnPlayerInfo->dwDataSize); data/wine-5.0/dlls/dpnet/server.c:203:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, pdpnPlayerInfo->pvData, pdpnPlayerInfo->dwDataSize); data/wine-5.0/dlls/dpnet/tests/address.c:361:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dpnet/tests/address.c:368:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\dpnet.dll"); data/wine-5.0/dlls/dpnet/tests/client.c:965:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dpnet/tests/client.c:972:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\dpnet.dll"); data/wine-5.0/dlls/dpnet/tests/server.c:356:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/dpnet/tests/server.c:358:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\\StringFileInfo\\%04x%04x\\OriginalFilename", MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US), 1200); data/wine-5.0/dlls/dpnet/tests/server.c:371:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dpnet/tests/server.c:378:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\dpnet.dll"); data/wine-5.0/dlls/dpnet/tests/thread.c:246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/dpnet/tests/thread.c:253:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\dpnet.dll"); data/wine-5.0/dlls/dpvoice/server.c:71:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pData, &pcm_type, sizeof(pcm_type)); data/wine-5.0/dlls/dpvoice/server.c:72:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string_loc, pcm_name, sizeof(pcm_name)); data/wine-5.0/dlls/dsound/buffer.c:135:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(This->notifies, notify, howmuch * sizeof(DSBPOSITIONNOTIFY)); data/wine-5.0/dlls/dsound/buffer.c:451:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(lpwf,This->pwfx,size); data/wine-5.0/dlls/dsound/buffer.c:456:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(lpwf,This->pwfx,wfsize); data/wine-5.0/dlls/dsound/buffer.c:835:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&filters[u].guid, &pDSFXDesc[u].guidDSFXClass, sizeof(GUID)); data/wine-5.0/dlls/dsound/buffer.c:1044:2: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(&dsb->dsbd, dsbd, dsbd->dwSize); data/wine-5.0/dlls/dsound/buffer.c:1195:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(dsb, pdsb, sizeof(*dsb)); data/wine-5.0/dlls/dsound/capture.c:193:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(This->notifies, notify, howmuch * sizeof(DSBPOSITIONNOTIFY)); data/wine-5.0/dlls/dsound/capture.c:368:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(lpwfxFormat, This->device->pwfx, dwSizeAllocated); data/wine-5.0/dlls/dsound/capture.c:729:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(This->pdscbd, lpcDSCBufferDesc, lpcDSCBufferDesc->dwSize); data/wine-5.0/dlls/dsound/capture.c:916:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->buffer + device->write_pos_bytes, buf + skip_bytes, avail_bytes); data/wine-5.0/dlls/dsound/capture.c:922:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->buffer, buf + skip_bytes + avail_bytes, packet_bytes); data/wine-5.0/dlls/dsound/dsound_main.c:117:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+16]; data/wine-5.0/dlls/dsound/dsound_main.c:136:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( appname, "\\DirectSound" ); data/wine-5.0/dlls/dsound/dsound_main.c:146:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ds_hel_buflen = atoi(buffer); data/wine-5.0/dlls/dsound/dsound_main.c:310:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char descA[MAXPNAMELEN], modA[MAXPNAMELEN]; data/wine-5.0/dlls/dsound/dsound_private.h:276:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, str, size ); data/wine-5.0/dlls/dsound/mixer.c:640:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, pos, bytes); data/wine-5.0/dlls/dsound/primary.c:188:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(w, retwfe, sizeof(WAVEFORMATEX) + retwfe->Format.cbSize); data/wine-5.0/dlls/dsound/primary.c:422:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pwfx, wfex, sizeof(PCMWAVEFORMAT)); data/wine-5.0/dlls/dsound/primary.c:428:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pwfx, wfex, sizeof(WAVEFORMATEX) + wfex->cbSize); data/wine-5.0/dlls/dsound/primary.c:787:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(lpwf,device->primary_pwfx,size); data/wine-5.0/dlls/dsound/propset.c:177:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ppd->DeviceName, -1, NULL, 0); data/wine-5.0/dlls/dsound/propset.c:181:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ppd->DeviceName, -1, data.DeviceName, len); data/wine-5.0/dlls/dsound/propset.c:286:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data.Module, module, len * sizeof(WCHAR)); data/wine-5.0/dlls/dsound/propset.c:290:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data.Description, desc, len * sizeof(WCHAR)); data/wine-5.0/dlls/dsound/tests/capture.c:40:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[32]; data/wine-5.0/dlls/dsound/tests/capture.c:87:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Unknown(0x%04x)", format); data/wine-5.0/dlls/dsound/tests/capture.c:93:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char str[64]; data/wine-5.0/dlls/dsound/tests/ds3d.c:136:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[512]; data/wine-5.0/dlls/dsound/tests/ds3d.c:212:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr1,state->wave+state->written,len1); data/wine-5.0/dlls/dsound/tests/ds3d.c:215:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr2,state->wave+state->written,len2); data/wine-5.0/dlls/dsound/tests/ds3d8.c:67:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr1,state->wave+state->written,len1); data/wine-5.0/dlls/dsound/tests/ds3d8.c:70:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr2,state->wave+state->written,len2); data/wine-5.0/dlls/dsound/tests/propset.c:90:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char descriptionA[0x100]; data/wine-5.0/dlls/dsound/tests/propset.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char moduleA[MAX_PATH]; data/wine-5.0/dlls/dsound/tests/propset.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char descriptionA[0x100]; data/wine-5.0/dlls/dsound/tests/propset.c:139:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char moduleA[MAX_PATH]; data/wine-5.0/dlls/dsound/tests/propset.c:140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char interfaceA[MAX_PATH]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:597:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:616:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, tests[i].plain, tests[i].plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:688:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:725:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, plainText, plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:745:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, plainText, plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:1102:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData1[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:1103:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData2[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:1201:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData1, plainText, plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:1214:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData2, plainText, plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:1251:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData1[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:1252:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData2[36]; data/wine-5.0/dlls/dssenh/tests/dssenh.c:1330:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData1, plainText, plainLen); data/wine-5.0/dlls/dssenh/tests/dssenh.c:1341:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData2, plainText, plainLen); data/wine-5.0/dlls/dswave/dmobject.c:441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &This->desc, This->desc.dwSize); data/wine-5.0/dlls/dswave/dmobject.c:478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->desc.pbMemData, desc->pbMemData, desc->llMemLength); data/wine-5.0/dlls/dswave/dmobject.c:493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DMUS_MAX_NAME]; data/wine-5.0/dlls/dswave/dmobject.c:502:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, len, desc->wszName, sizeof(desc->wszName)); data/wine-5.0/dlls/dswave/tests/dswave.c:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char riff[1024]; data/wine-5.0/dlls/dswave/tests/dswave.c:129:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. *sizes[level] = p - (char *)sizes[level] - sizeof(DWORD); data/wine-5.0/dlls/dswave/tests/dswave.c:142:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &GUID_NULL, sizeof(GUID_NULL)); data/wine-5.0/dlls/dswave/tests/dswave.c:151:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, &ver, sizeof(ver)); data/wine-5.0/dlls/dswave/tests/dswave.c:158:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "INAM"); data/wine-5.0/dlls/dwrite/analyzer.c:887:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*buff, *text, len*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:898:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*buff + read, *text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:1028:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff, text, len*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:1037:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[read], text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:1416:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&modified_advances[start], &advances[start], (end - start + 1) * sizeof(*advances)); data/wine-5.0/dlls/dwrite/analyzer.c:1418:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&modified_offsets[start], &offsets[start], (end - start + 1) * sizeof(*offsets)); data/wine-5.0/dlls/dwrite/analyzer.c:2347:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mapping->ranges, ranges, sizeof(*mapping->ranges) * ranges_count); data/wine-5.0/dlls/dwrite/bidi.c:1070:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(explicit, levels, count*sizeof(*explicit)); data/wine-5.0/dlls/dwrite/dwrite_private.h:44:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/dwrite/dwrite_private.h:59:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/font.c:353:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &block[glyph & GLYPH_BLOCK_MASK], sizeof(*metrics)); data/wine-5.0/dlls/dwrite/font.c:368:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*block)[glyph & GLYPH_BLOCK_MASK], metrics, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/font.c:633:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &fontface->metrics, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/font.c:801:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &metrics1, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/font.c:1705:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &This->data->metrics, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/font.c:2969:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, in, len*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/font.c:3399:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(strW, name->ptr, name->len * sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/font.c:3490:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nameW, token->ptr, len * sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/font.c:4642:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file->reference_key, reference_key, key_size); data/wine-5.0/dlls/dwrite/font.c:5072:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->key, key, key_size); data/wine-5.0/dlls/dwrite/font.c:5529:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, draw_width); data/wine-5.0/dlls/dwrite/font.c:5691:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(analysis->glyphs, desc->run->glyphIndices, desc->run->glyphCount*sizeof(*desc->run->glyphIndices)); data/wine-5.0/dlls/dwrite/font.c:6032:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colorglyphenum->offsets, run->glyphOffsets, run->glyphCount * sizeof(*run->glyphOffsets)); data/wine-5.0/dlls/dwrite/font.c:6045:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colorglyphenum->advances, run->glyphAdvances, run->glyphCount * sizeof(FLOAT)); data/wine-5.0/dlls/dwrite/font.c:6290:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(axis_values, reference->axis_values, value_count * sizeof(*axis_values)); data/wine-5.0/dlls/dwrite/font.c:6350:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(object->axis_values, axis_values, axis_values_count * sizeof(*axis_values)); data/wine-5.0/dlls/dwrite/font.c:6568:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->data, data, data_size); data/wine-5.0/dlls/dwrite/freetype.c:753:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, w); data/wine-5.0/dlls/dwrite/freetype.c:798:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, w); data/wine-5.0/dlls/dwrite/gdiinterop.c:77:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/dwrite/layout.c:603:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(layout->actual_breakpoints, layout->nominal_breakpoints, sizeof(DWRITE_LINE_BREAKPOINT)*layout->len); data/wine-5.0/dlls/dwrite/layout.c:3604:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&metrics[i], &layout->lines[i].metrics, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/layout.c:3625:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &layout->metrics, sizeof(*metrics)); data/wine-5.0/dlls/dwrite/layout.c:3805:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, layout->clustermetrics, sizeof(DWRITE_CLUSTER_METRICS) * min(max_count, layout->cluster_count)); data/wine-5.0/dlls/dwrite/layout.c:4823:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&layout->nominal_breakpoints[position], breakpoints, length*sizeof(DWRITE_LINE_BREAKPOINT)); data/wine-5.0/dlls/dwrite/opentype.c:1264:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data0[95]; data/wine-5.0/dlls/dwrite/opentype.c:1266:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data1[12]; data/wine-5.0/dlls/dwrite/opentype.c:1271:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[14]; data/wine-5.0/dlls/dwrite/opentype.c:1871:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name_mac_langid_to_locale[lang_id], -1, locale, locale_len); data/wine-5.0/dlls/dwrite/opentype.c:1911:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(codepage, 0, (LPSTR)(storage_area + offset), length, NULL, 0); data/wine-5.0/dlls/dwrite/opentype.c:1913:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(codepage, 0, (LPSTR)(storage_area + offset), length, name_string, len); data/wine-5.0/dlls/dwrite/tests/analyzer.c:331:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&g_actual_bp[position], breakpoints, length*sizeof(DWRITE_LINE_BREAKPOINT)); data/wine-5.0/dlls/dwrite/tests/analyzer.c:2271:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(advances, ptr->advances, glyph_count * sizeof(*advances)); data/wine-5.0/dlls/dwrite/tests/analyzer.c:2348:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[64]; data/wine-5.0/dlls/dwrite/tests/analyzer.c:2349:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "{%.2f, %.2f, %.2f, %.2f, %.2f, %.2f}", m->m11, m->m12, data/wine-5.0/dlls/dwrite/tests/font.c:4223:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "MS Sans Serif"); data/wine-5.0/dlls/dwrite/tests/font.c:4248:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "wine_test"); data/wine-5.0/dlls/dwrite/tests/font.c:6327:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(panose, &tt_os2->panose, sizeof(*panose)); data/wine-5.0/dlls/dwrite/tests/layout.c:591:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry.string, descr->string, descr->stringLength*sizeof(WCHAR)); data/wine-5.0/dlls/dxdiagn/provider.c:185:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->params, pParams, pParams->dwSize); data/wine-5.0/dlls/dxdiagn/provider.c:1012:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, adapter_info.Driver, -1, driverW, ARRAY_SIZE(driverW)); data/wine-5.0/dlls/dxdiagn/provider.c:1013:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, adapter_info.Description, -1, descriptionW, data/wine-5.0/dlls/dxdiagn/provider.c:1015:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, adapter_info.DeviceName, -1, devicenameW, data/wine-5.0/dlls/dxdiagn/tests/container.c:137:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:144:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:151:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:175:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:206:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:376:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char containerbufA[256]; data/wine-5.0/dlls/dxdiagn/tests/container.c:377:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char childbufA[256]; data/wine-5.0/dlls/dxdiagn/tests/container.c:378:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dotbufferA[255 + 255 + 3 + 1]; data/wine-5.0/dlls/dxdiagn/tests/container.c:384:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, dotbufferA, -1, dotbufferW, ARRAY_SIZE(dotbufferW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:460:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(property, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:466:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(property, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:482:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(property, testW, sizeof(testW)); data/wine-5.0/dlls/dxdiagn/tests/container.c:511:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(property, testW, sizeof(testW)); data/wine-5.0/dlls/dxerr8/dxerr8.c:120:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[1024]; data/wine-5.0/dlls/dxerr9/dxerr9.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[1024]; data/wine-5.0/dlls/dxgi/adapter.c:152:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[ARRAY_SIZE(desc->Description)]; data/wine-5.0/dlls/dxgi/adapter.c:164:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, description, -1, desc->Description, ARRAY_SIZE(description))) data/wine-5.0/dlls/dxgi/adapter.c:198:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &desc3, sizeof(*desc)); data/wine-5.0/dlls/dxgi/adapter.c:257:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &desc3, sizeof(*desc)); data/wine-5.0/dlls/dxgi/adapter.c:274:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, &desc3, sizeof(*desc)); data/wine-5.0/dlls/dxgi/tests/dxgi.c:5785:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). use_adapter_idx = atoi(argv[++i]); data/wine-5.0/dlls/dxgi/utils.c:644:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, stored_data->content.data, stored_data->size); data/wine-5.0/dlls/explorerframe/tests/nstc.c:535:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&last_tvi, (void*)lParam, sizeof(TVITEMEXW)); data/wine-5.0/dlls/explorerframe/tests/nstc.c:628:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/faultrep/faultrep.c:90:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, lpAppFileName, -1, NULL, 0); data/wine-5.0/dlls/faultrep/faultrep.c:98:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpAppFileName, -1, wstr, len); data/wine-5.0/dlls/fontsub/main.c:60:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*dest, src, src_len); data/wine-5.0/dlls/fusion/asmcache.c:400:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_file, src_dir, src_len * sizeof(WCHAR) ); data/wine-5.0/dlls/fusion/asmcache.c:408:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_file, dst_dir, dst_len * sizeof(WCHAR) ); data/wine-5.0/dlls/fusion/asmname.c:232:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvProperty, name->pubkey, sizeof(DWORD) * 2); data/wine-5.0/dlls/fusion/assembly.c:546:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(assembly->metadatahdr, metadatahdr, size); data/wine-5.0/dlls/fusion/assembly.c:553:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, ptr, sizeof(METADATAHDR) - ofs); data/wine-5.0/dlls/fusion/assembly.c:715:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/fusion/assembly.c:718:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, cpy, len); data/wine-5.0/dlls/fusion/tests/asmcache.c:927:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllpath[MAX_PATH]; data/wine-5.0/dlls/fusion/tests/asmcache.c:982:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(dllpath, "\\assembly\\GAC_MSIL\\wine\\\\1.0.0.0__2d03617b1c31e2f5\\wine.dll"); data/wine-5.0/dlls/fusion/tests/asmenum.c:92:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, dest, MAX_PATH); data/wine-5.0/dlls/fusion/tests/asmenum.c:220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/fusion/tests/asmenum.c:223:67: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void enum_gac_assembly_dirs(struct list *assemblies, const char *parent, char path[MAX_PATH]) data/wine-5.0/dlls/fusion/tests/asmenum.c:223:81: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void enum_gac_assembly_dirs(struct list *assemblies, const char *parent, char path[MAX_PATH]) data/wine-5.0/dlls/fusion/tests/asmenum.c:239:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char culture[MAX_PATH]; data/wine-5.0/dlls/fusion/tests/asmenum.c:275:58: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void enum_gac_assemblies(struct list *assemblies, char path[MAX_PATH]) data/wine-5.0/dlls/fusion/tests/asmname.c:340:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, dest, MAX_PATH); data/wine-5.0/dlls/fusion/tests/fusion.c:91:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, windirA, -1, windir, MAX_PATH); data/wine-5.0/dlls/fusion/tests/fusion.c:176:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cachepathA, -1, cachepath, MAX_PATH); data/wine-5.0/dlls/gdi.exe16/env.c:61:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char NullPort[256]; data/wine-5.0/dlls/gdi.exe16/env.c:72:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/gdi.exe16/env.c:108:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpdev, p, nMaxSize); data/wine-5.0/dlls/gdi.exe16/env.c:152:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device_mode, lpdev, nCount); data/wine-5.0/dlls/gdi.exe16/gdi.c:274:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, font16->lfFaceName, -1, font32->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/gdi.exe16/gdi.c:472:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &surface->info, surface->info_size ); data/wine-5.0/dlls/gdi.exe16/gdi.c:549:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &surface->info, info, surface->info_size ); data/wine-5.0/dlls/gdi.exe16/gdi.c:1659:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &brush16, count ); data/wine-5.0/dlls/gdi.exe16/gdi.c:1676:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &font16, count ); data/wine-5.0/dlls/gdi.exe16/gdi.c:3681:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, size ); data/wine-5.0/dlls/gdi.exe16/printdrv.c:225:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char psCmd[1024]; data/wine-5.0/dlls/gdi.exe16/printdrv.c:301:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, psCmdP, -1, psCmdPW, MAX_PATH); data/wine-5.0/dlls/gdi.exe16/printdrv.c:304:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(buffer, O_CREAT | O_TRUNC | O_WRONLY, 0666)) < 0) data/wine-5.0/dlls/gdi32/bidi.c:389:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpOutString, lpString, uCount * sizeof(WCHAR)); data/wine-5.0/dlls/gdi32/bitblt.c:226:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, dst_bits->ptr, size ); data/wine-5.0/dlls/gdi32/bitblt.c:281:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:333:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:334:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:371:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:421:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:505:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitblt.c:1041:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(plg,lpPoint,sizeof(POINT)*3); data/wine-5.0/dlls/gdi32/bitmap.c:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitmap.c:117:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bi->bmiColors, dib.dsBitfields, sizeof(dib.dsBitfields)); data/wine-5.0/dlls/gdi32/bitmap.c:256:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitmap.c:293:39: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (src_stride == dst_stride) memcpy( bits, src_ptr, count ); data/wine-5.0/dlls/gdi32/bitmap.c:296:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bits, src_ptr, min( count, dst_stride ) ); data/wine-5.0/dlls/gdi32/bitmap.c:325:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/bitmap.c:390:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)src_bits.ptr + i * dst_stride, (char *)bits + i * src_stride, src_stride ); data/wine-5.0/dlls/gdi32/bitmap.c:392:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)src_bits.ptr + i * dst_stride, (char *)bits + i * src_stride, count % src_stride ); data/wine-5.0/dlls/gdi32/brush.c:59:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/gdi32/brush.c:77:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( brush->bits.ptr, bits.ptr, info->bmiHeader.biSizeImage ); data/wine-5.0/dlls/gdi32/brush.c:86:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( brush->info, info, get_dib_info_size( info, DIB_RGB_COLORS )); data/wine-5.0/dlls/gdi32/brush.c:162:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, brush->pattern.info, get_dib_info_size( brush->pattern.info, brush->pattern.usage )); data/wine-5.0/dlls/gdi32/brush.c:486:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &brush->logbrush, count ); data/wine-5.0/dlls/gdi32/dib.c:218:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bmiColors, info->bmiColors, 3 * sizeof(DWORD) ); data/wine-5.0/dlls/gdi32/dib.c:231:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bmiColors, src_colors, colors * sizeof(WORD) ); data/wine-5.0/dlls/gdi32/dib.c:236:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bmiColors, src_colors, colors * sizeof(RGBQUAD) ); data/wine-5.0/dlls/gdi32/dib.c:303:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->bmiColors, table, colors * sizeof(RGBQUAD) ); data/wine-5.0/dlls/gdi32/dib.c:417:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out_ptr, in_bits + i, num ); data/wine-5.0/dlls/gdi32/dib.c:435:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out_ptr, in_bits + i, (num + 1) / 2); data/wine-5.0/dlls/gdi32/dib.c:470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:619:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:667:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_bmibuf[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:669:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_bmibuf[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:774:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:893:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:972:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colors, bitmap->color_table + startpos, result * sizeof(RGBQUAD)); data/wine-5.0/dlls/gdi32/dib.c:1038:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( core->bmciColors, src->bmiColors, src->bmiHeader.biClrUsed * sizeof(WORD) ); data/wine-5.0/dlls/gdi32/dib.c:1056:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bmiColors, src->bmiColors, 3 * sizeof(DWORD) ); data/wine-5.0/dlls/gdi32/dib.c:1066:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( colorptr, src->bmiColors, size ); data/wine-5.0/dlls/gdi32/dib.c:1165:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->bmiColors, get_default_color_table( info->bmiHeader.biBitCount ), data/wine-5.0/dlls/gdi32/dib.c:1186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:1195:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, info, info_size ); data/wine-5.0/dlls/gdi32/dib.c:1196:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)ret + info_size, (char *)src_info + bitmap_info_size( src_info, usage ), data/wine-5.0/dlls/gdi32/dib.c:1224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_bmibuf[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:1226:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_bmibuf[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:1378:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_info->bmiColors, bit_fields_555, sizeof(bit_fields_555) ); data/wine-5.0/dlls/gdi32/dib.c:1385:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_info->bmiColors, bit_fields_888, sizeof(bit_fields_888) ); data/wine-5.0/dlls/gdi32/dib.c:1492:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dib.c:1531:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmp->color_table, info->bmiColors, bmp->dib.dsBmih.biClrUsed * sizeof(RGBQUAD) ); data/wine-5.0/dlls/gdi32/dib.c:1684:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmp->color_table, get_default_color_table( format->bit_count ), data/wine-5.0/dlls/gdi32/dibdrv/bitblt.c:45:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char BITBLT_Opcodes[256][MAX_OP_LEN] = data/wine-5.0/dlls/gdi32/dibdrv/bitblt.c:705:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)ptr + y * stride, data/wine-5.0/dlls/gdi32/dibdrv/bitblt.c:823:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->bmiColors, dib->color_table, info->bmiHeader.biClrUsed * sizeof(RGBQUAD) ); data/wine-5.0/dlls/gdi32/dibdrv/dc.c:288:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( clip_rects->rects, clip_rects->buffer, (out - clip_rects->buffer) * sizeof(RECT) ); data/wine-5.0/dlls/gdi32/dibdrv/dc.c:576:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dibdrv/graphics.c:1270:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( points, pt, total * sizeof(*pt) ); data/wine-5.0/dlls/gdi32/dibdrv/graphics.c:1340:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( points, pt, total * sizeof(*pt) ); data/wine-5.0/dlls/gdi32/dibdrv/objects.c:1731:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pattern->dashes, dashes, count * sizeof(DWORD) ); data/wine-5.0/dlls/gdi32/dibdrv/objects.c:1955:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/dibdrv/opengl.c:102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:871:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( start + x - rc->left, start_xor + brush_x, len * 4 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:942:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( start + (x - rc->left) * 3, start_xor + brush_x * 3, len * 3 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:1011:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( start + x - rc->left, start_xor + brush_x, len * 2 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:1080:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( start + x - rc->left, start_xor + brush_x, len ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2231:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2236:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left) * 4); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2499:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2504:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left) * 4); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2806:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:2811:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left) * 3); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3078:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3083:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left) * 2); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3343:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3348:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left) * 2); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3695:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:3700:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, src_rect->right - src_rect->left); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:4094:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->bottom - src_rect->top) * src->stride); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:4099:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_start, src_start, (src_rect->right - src_rect->left + 1) / 2); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:4981:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + dib->stride / 4, ptr, (rc->right - rc->left) * 4 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:5032:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + dib->stride / 4, ptr, (rc->right - rc->left) * 4 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:5093:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + dib->stride, ptr, (rc->right - rc->left) * 3 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:5139:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, ptr - dib->stride * 2, (rc->right - rc->left) * 2 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:5181:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, ptr - dib->stride * 2, (rc->right - rc->left) * 2 ); data/wine-5.0/dlls/gdi32/dibdrv/primitives.c:5231:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, ptr - dib->stride * 16, rc->right - rc->left ); data/wine-5.0/dlls/gdi32/driver.c:974:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (const char*) dmA->dmDeviceName, -1, data/wine-5.0/dlls/gdi32/driver.c:977:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmW->dmSpecVersion, &dmA->dmSpecVersion, dmA_size - CCHDEVICENAME); data/wine-5.0/dlls/gdi32/driver.c:982:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (const char*) dmA->dmFormName, -1, data/wine-5.0/dlls/gdi32/driver.c:988:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmW->dmLogPixels, &dmA->dmLogPixels, dmA_size - FIELD_OFFSET(DEVMODEA, dmLogPixels)); data/wine-5.0/dlls/gdi32/driver.c:992:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)dmW + dmW_size, (const char *)dmA + dmA_size, dmA->dmDriverExtra); data/wine-5.0/dlls/gdi32/driver.c:1051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[300]; data/wine-5.0/dlls/gdi32/driver.c:1060:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, lpszDevice, -1, deviceW, 300)) return -1; data/wine-5.0/dlls/gdi32/driver.c:1106:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[300]; data/wine-5.0/dlls/gdi32/driver.c:1114:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, lpszDevice, -1, deviceW, 300)) return -1; data/wine-5.0/dlls/gdi32/driver.c:1183:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, in_data, in_count ); data/wine-5.0/dlls/gdi32/enhmetafile.c:485:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(emh, buf, bufsize); data/wine-5.0/dlls/gdi32/enhmetafile.c:1801:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpPackedStruct, data/wine-5.0/dlls/gdi32/enhmetafile.c:1804:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ((BYTE*)lpPackedStruct) + lpCreate->cbBmi, data/wine-5.0/dlls/gdi32/enhmetafile.c:1965:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bits, (const BYTE *)mr + pAlphaBlend->offBitsSrc, pAlphaBlend->cbBitsSrc); data/wine-5.0/dlls/gdi32/enhmetafile.c:2587:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( emrDst, emrSrc, emrSrc->nBytes ); data/wine-5.0/dlls/gdi32/enhmetafile.c:2629:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( emrDst, emrSrc, emrSrc->nBytes ); data/wine-5.0/dlls/gdi32/enhmetafile.c:2686:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->lpPe, (LPCSTR)lpEof + lpEof->offPalEntries, data/wine-5.0/dlls/gdi32/enhmetafile.c:2780:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, chunk->emf_data, chunk->chunk_size ); data/wine-5.0/dlls/gdi32/enhmetafile.c:2900:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mfcomment[1], lpbBuffer, cbBuffer); data/wine-5.0/dlls/gdi32/enhmfdrv/bitblt.c:188:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &emr[1], info, bmi_size); data/wine-5.0/dlls/gdi32/enhmfdrv/bitblt.c:191:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ( ( (BYTE *) (&emr[1]) ) + bmi_size, bits, info->bmiHeader.biSizeImage); data/wine-5.0/dlls/gdi32/enhmfdrv/bitblt.c:259:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE*)pEMR + pEMR->offBmiSrc, info, bmiSize); data/wine-5.0/dlls/gdi32/enhmfdrv/bitblt.c:260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE*)pEMR + pEMR->offBitsSrc, bits, info->bmiHeader.biSizeImage); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:66:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, pts, count * sizeof(*dest) ); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:592:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( emr->aPolyCounts, counts, polys * sizeof(DWORD) ); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:648:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( types_dest, types, count ); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:852:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)pemr + pemr->emrtext.offString, str, count * sizeof(WCHAR)); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:868:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)pemr + pemr->emrtext.offDx, lpDx, count * sizeof(INT)); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:987:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( emr->Ver, vert_array, nvert * sizeof(vert_array[0]) ); data/wine-5.0/dlls/gdi32/enhmfdrv/graphics.c:988:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( emr->Ver + nvert, pts, num_pts * sizeof(pts[0]) ); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:224:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((CHAR *)physDev->emh + physDev->emh->nBytes - emr->nSize, emr, data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:288:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). total = MultiByteToWideChar( CP_ACP, 0, filename, -1, NULL, 0 ); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:290:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, filenameW, total ); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:295:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). total = MultiByteToWideChar( CP_ACP, 0, description, len1 + len2 + 3, NULL, 0 ); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:297:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, description, len1 + len2 + 3, descriptionW, total ); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:433:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)physDev->emh + sizeof(ENHMETAHEADER), description, length); data/wine-5.0/dlls/gdi32/enhmfdrv/objects.c:139:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/enhmfdrv/objects.c:181:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (BYTE *)emr + emr->offBmi, info, emr->cbBmi ); data/wine-5.0/dlls/gdi32/enhmfdrv/objects.c:182:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (BYTE *)emr + emr->offBits, bits, emr->cbBits ); data/wine-5.0/dlls/gdi32/enhmfdrv/objects.c:522:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&emr->Data[0], buffer, bytes); data/wine-5.0/dlls/gdi32/font.c:170:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fontW, fontA, sizeof(LOGFONTA) - LF_FACESIZE); data/wine-5.0/dlls/gdi32/font.c:171:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, fontA->lfFaceName, -1, fontW->lfFaceName, data/wine-5.0/dlls/gdi32/font.c:178:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fontA, fontW, sizeof(LOGFONTA) - LF_FACESIZE); data/wine-5.0/dlls/gdi32/font.c:203:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)fontA->elfFullName, -1, data/wine-5.0/dlls/gdi32/font.c:206:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)fontA->elfStyle, -1, data/wine-5.0/dlls/gdi32/font.c:209:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)fontA->elfScript, -1, data/wine-5.0/dlls/gdi32/font.c:263:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ptmA->ntmFontSig, &ptmW->ntmFontSig, sizeof(FONTSIGNATURE)); data/wine-5.0/dlls/gdi32/font.c:274:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (type == REG_DWORD) memcpy( value, buf, sizeof(*value) ); data/wine-5.0/dlls/gdi32/font.c:465:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(cp, 0, str, count, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:467:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, str, count, strW, lenW); data/wine-5.0/dlls/gdi32/font.c:823:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &lfA, count ); data/wine-5.0/dlls/gdi32/font.c:841:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &font->logfont, count ); data/wine-5.0/dlls/gdi32/font.c:1513:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/gdi32/font.c:1630:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpOTM, output, cbData); data/wine-5.0/dlls/gdi32/font.c:1736:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpOTM, output, cbData); data/wine-5.0/dlls/gdi32/font.c:2024:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/font.c:2080:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, bits.ptr, info->bmiHeader.biSizeImage ); data/wine-5.0/dlls/gdi32/font.c:2868:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbchs[2]; data/wine-5.0/dlls/gdi32/font.c:2881:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, mbchs, len, &wChar, 1); data/wine-5.0/dlls/gdi32/font.c:2931:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszResourceFile, -1, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:2933:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszResourceFile, -1, lpszResourceFileW, len); data/wine-5.0/dlls/gdi32/font.c:2938:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszFontFile, -1, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:2940:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszFontFile, -1, lpszFontFileW, len); data/wine-5.0/dlls/gdi32/font.c:2945:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszCurrentPath, -1, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:2947:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszCurrentPath, -1, lpszCurrentPathW, len); data/wine-5.0/dlls/gdi32/font.c:3344:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpResults->lpOutString, lpString, nSet * sizeof(WCHAR)); data/wine-5.0/dlls/gdi32/font.c:3559:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:3563:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, strW, len); data/wine-5.0/dlls/gdi32/font.c:3664:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, data, -1, NULL, 0 ); data/wine-5.0/dlls/gdi32/font.c:3666:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (name) MultiByteToWideChar( CP_ACP, 0, data, -1, name, len ); data/wine-5.0/dlls/gdi32/font.c:3769:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/gdi32/font.c:3773:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, strW, len); data/wine-5.0/dlls/gdi32/freetype.c:765:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cached_path[MAX_PATH]; data/wine-5.0/dlls/gdi32/freetype.c:922:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(output, O_CREAT | O_EXCL | O_WRONLY, 0600); data/wine-5.0/dlls/gdi32/freetype.c:1109:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, p, len); data/wine-5.0/dlls/gdi32/freetype.c:1172:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cp, 0, str, -1, NULL, 0); data/wine-5.0/dlls/gdi32/freetype.c:1174:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, str, -1, wstr, len); data/wine-5.0/dlls/gdi32/freetype.c:1442:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). i = MultiByteToWideChar( codepage, 0, (char *)name->string, name->string_len, NULL, 0 ); data/wine-5.0/dlls/gdi32/freetype.c:1444:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( codepage, 0, (char *)name->string, name->string_len, ret, i ); data/wine-5.0/dlls/gdi32/freetype.c:2724:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/gdi32/freetype.c:3028:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( name, "/fonts" ); data/wine-5.0/dlls/gdi32/freetype.c:3353:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pFontCopy, pbFont, cbFont); data/wine-5.0/dlls/gdi32/freetype.c:3434:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fullname, font_path, path_len * sizeof(WCHAR) ); data/wine-5.0/dlls/gdi32/freetype.c:3436:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fullname + path_len + 1, font_file, (file_len + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/gdi32/freetype.c:3520:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( fd->dfCopyright, "Wine fontdir" ); data/wine-5.0/dlls/gdi32/freetype.c:3554:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char dos_string[0x40] = "This is a TrueType resource file"; data/wine-5.0/dlls/gdi32/freetype.c:3658:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &dos, sizeof(dos) ); data/wine-5.0/dlls/gdi32/freetype.c:3659:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + sizeof(dos), dos_string, sizeof(dos_string) ); data/wine-5.0/dlls/gdi32/freetype.c:3660:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + dos.e_lfanew, &ne, sizeof(ne) ); data/wine-5.0/dlls/gdi32/freetype.c:3663:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &rsrc_tab, sizeof(rsrc_tab) ); data/wine-5.0/dlls/gdi32/freetype.c:3667:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, last_part, res_name_len ); data/wine-5.0/dlls/gdi32/freetype.c:3671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, last_part, import_name_len ); data/wine-5.0/dlls/gdi32/freetype.c:3675:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, FONTRES, sizeof(FONTRES) ); data/wine-5.0/dlls/gdi32/freetype.c:3676:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + sizeof(FONTRES), fontdir->szFaceName, strlen( fontdir->szFaceName ) ); data/wine-5.0/dlls/gdi32/freetype.c:3679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, font_fileA, font_file_len ); data/wine-5.0/dlls/gdi32/freetype.c:3682:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, fontdir, fontdir->dfSize ); data/wine-5.0/dlls/gdi32/freetype.c:4039:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[40], cpbuf[40]; data/wine-5.0/dlls/gdi32/freetype.c:4058:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( cpbuf, "%u,%u", ansi_cp, oem_cp ); data/wine-5.0/dlls/gdi32/freetype.c:4540:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( name, O_RDONLY )) == -1) return NULL; data/wine-5.0/dlls/gdi32/freetype.c:5348:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_UTF8, 0, (const char*)str, -1, data/wine-5.0/dlls/gdi32/freetype.c:5574:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dcmat, &dc->xformWorld2Vport, sizeof(FMAT2)); data/wine-5.0/dlls/gdi32/freetype.c:6035:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, p + 1, i * sizeof(WCHAR)); data/wine-5.0/dlls/gdi32/freetype.c:6152:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pntm->ntmTm, &font->potm->otmTextMetrics, sizeof(TEXTMETRICW)); data/wine-5.0/dlls/gdi32/freetype.c:7065:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, w ); data/wine-5.0/dlls/gdi32/freetype.c:8192:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&font->potm->otmPanoseNumber, pOS2->panose, PANOSE_COUNT); data/wine-5.0/dlls/gdi32/freetype.c:8330:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(potm, physdev->font->potm, physdev->font->potm->otmSize); data/wine-5.0/dlls/gdi32/freetype.c:8889:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info, font->fileinfo, *needed); data/wine-5.0/dlls/gdi32/freetype.c:9014:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(kern_pair, font->kern_pairs, cPairs * sizeof(*kern_pair)); data/wine-5.0/dlls/gdi32/freetype.c:9140:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(kern_pair, font->kern_pairs, cPairs * sizeof(*kern_pair)); data/wine-5.0/dlls/gdi32/gdi_private.h:620:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, get_dib_info_size( src, DIB_RGB_COLORS )); data/wine-5.0/dlls/gdi32/metafile.c:296:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, mh, mh->mtSize * 2 ); data/wine-5.0/dlls/gdi32/metafile.c:806:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( font.lfFaceName, mr->rdParm + 9, LF_FACESIZE ); data/wine-5.0/dlls/gdi32/metafile.c:1068:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mh_out, mh_in, size); data/wine-5.0/dlls/gdi32/metafile.c:1161:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(chunk->emf_data, chunk_data, chunk->chunk_size); data/wine-5.0/dlls/gdi32/mfdrv/bitblt.c:155:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 11, info, infosize); data/wine-5.0/dlls/gdi32/mfdrv/bitblt.c:156:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 11 + infosize / 2, bits, info->bmiHeader.biSizeImage); data/wine-5.0/dlls/gdi32/mfdrv/bitblt.c:187:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 9, info, infosize); data/wine-5.0/dlls/gdi32/mfdrv/bitblt.c:188:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 9 + infosize / 2, bits, info->bmiHeader.biSizeImage); data/wine-5.0/dlls/gdi32/mfdrv/graphics.c:134:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 1, pt, count * 4); data/wine-5.0/dlls/gdi32/mfdrv/graphics.c:230:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 1, pointcounts, polygons*sizeof(INT16)); data/wine-5.0/dlls/gdi32/mfdrv/graphics.c:231:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + 1+polygons, pts , totalpoint16*sizeof(*pts)); data/wine-5.0/dlls/gdi32/mfdrv/init.c:55:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(mr->rdParm[2]), in_data, cbInput); data/wine-5.0/dlls/gdi32/mfdrv/init.c:376:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, filename, -1, NULL, 0 ); data/wine-5.0/dlls/gdi32/mfdrv/init.c:378:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, filenameW, len ); data/wine-5.0/dlls/gdi32/mfdrv/init.c:499:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((WORD *)physDev->mh + physDev->mh->mtSize, mr, rlen); data/wine-5.0/dlls/gdi32/mfdrv/init.c:523:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8]; data/wine-5.0/dlls/gdi32/mfdrv/init.c:537:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8]; data/wine-5.0/dlls/gdi32/mfdrv/init.c:553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/gdi32/mfdrv/init.c:572:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[14]; data/wine-5.0/dlls/gdi32/mfdrv/init.c:593:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[18]; data/wine-5.0/dlls/gdi32/mfdrv/init.c:616:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[22]; data/wine-5.0/dlls/gdi32/mfdrv/objects.c:173:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mr->rdParm, &lb16, sizeof(LOGBRUSH16)); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:179:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/gdi32/mfdrv/objects.c:197:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_info, src_info, info_size ); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:210:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_ptr, (char *)bits + i * width_bytes, width_bytes ); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:212:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( dst_ptr, bits, src_info->bmiHeader.biSizeImage ); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:253:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(METARECORD) - 2 + sizeof(LOGFONT16)]; data/wine-5.0/dlls/gdi32/mfdrv/objects.c:312:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(METARECORD) - 2 + sizeof(*logpen)]; data/wine-5.0/dlls/gdi32/mfdrv/objects.c:317:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(mr->rdParm), logpen, sizeof(*logpen)); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:385:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(mr->rdParm), logPalette, sizeofPalette); data/wine-5.0/dlls/gdi32/mfdrv/objects.c:447:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(METARECORD) - sizeof(WORD)]; data/wine-5.0/dlls/gdi32/mfdrv/text.c:60:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (isrect) memcpy(mr->rdParm + 4, rect, sizeof(RECT16)); data/wine-5.0/dlls/gdi32/mfdrv/text.c:61:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + (isrect ? 8 : 4), str, count); data/wine-5.0/dlls/gdi32/mfdrv/text.c:63:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mr->rdParm + (isrect ? 8 : 4) + ((count + 1) >> 1),lpDx, data/wine-5.0/dlls/gdi32/painting.c:134:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pts + 1, points, sizeof(POINT) * count ); data/wine-5.0/dlls/gdi32/painting.c:189:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &bzr[1], &points[i], 3 * sizeof(POINT) ); data/wine-5.0/dlls/gdi32/painting.c:199:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &line_pts[num_pts], &bzr_pts[1], (num_bzr_pts - 1) * sizeof(POINT) ); data/wine-5.0/dlls/gdi32/painting.c:224:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pts + 1, points, sizeof(POINT) * count ); data/wine-5.0/dlls/gdi32/painting.c:1130:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptBuf, Points + Bezier * 3, sizeof(POINT) * 4); data/wine-5.0/dlls/gdi32/palette.c:83:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( LOGPALETTE, palPalEntry[20] )]; data/wine-5.0/dlls/gdi32/palette.c:131:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( palettePtr->entries, palette->palPalEntry, size ); data/wine-5.0/dlls/gdi32/palette.c:160:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( LOGPALETTE, palPalEntry[256] )]; data/wine-5.0/dlls/gdi32/palette.c:212:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( entries, &palPtr->entries[start], count * sizeof(PALETTEENTRY) ); data/wine-5.0/dlls/gdi32/palette.c:253:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &palPtr->entries[start], entries, count * sizeof(PALETTEENTRY) ); data/wine-5.0/dlls/gdi32/palette.c:573:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &palette->count, count ); data/wine-5.0/dlls/gdi32/path.c:157:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->points, src_path->points, path->count * sizeof(*path->points) ); data/wine-5.0/dlls/gdi32/path.c:158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->flags, src_path->flags, path->count * sizeof(*path->flags) ); data/wine-5.0/dlls/gdi32/path.c:211:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pts_new, path->points, path->count * sizeof(path->points[0]) ); data/wine-5.0/dlls/gdi32/path.c:212:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pts_new + count, path->flags, path->count * sizeof(path->flags[0]) ); data/wine-5.0/dlls/gdi32/path.c:264:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &path->points[path->count], points, count * sizeof(*points) ); data/wine-5.0/dlls/gdi32/path.c:280:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &path->points[path->count], points, count * sizeof(*points) ); data/wine-5.0/dlls/gdi32/path.c:669:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPoints, dc->path->points, sizeof(POINT)*dc->path->count); data/wine-5.0/dlls/gdi32/path.c:670:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTypes, dc->path->flags, sizeof(BYTE)*dc->path->count); data/wine-5.0/dlls/gdi32/pen.c:203:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(penPtr->logpen.elpStyleEntry, style_bits, style_count * sizeof(DWORD)); data/wine-5.0/dlls/gdi32/pen.c:330:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy(buffer, &pen->logpen, ret); data/wine-5.0/dlls/gdi32/printdrv.c:104:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,doc->lpszDocName,-1,NULL,0); data/wine-5.0/dlls/gdi32/printdrv.c:106:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,doc->lpszDocName,-1,szDocName,len); data/wine-5.0/dlls/gdi32/printdrv.c:110:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,doc->lpszOutput,-1,NULL,0); data/wine-5.0/dlls/gdi32/printdrv.c:112:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,doc->lpszOutput,-1,szOutput,len); data/wine-5.0/dlls/gdi32/printdrv.c:116:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,doc->lpszDatatype,-1,NULL,0); data/wine-5.0/dlls/gdi32/printdrv.c:118:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,doc->lpszDatatype,-1,szDatatype,len); data/wine-5.0/dlls/gdi32/region.c:139:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_rects, rgn->rects, rgn->numRects * sizeof(RECT) ); data/wine-5.0/dlls/gdi32/region.c:470:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->rects, src->rects, src->numRects * sizeof(RECT) ); data/wine-5.0/dlls/gdi32/region.c:913:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( rgndata->Buffer, obj->rects, size ); data/wine-5.0/dlls/gdi32/region.c:1362:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->rects, src->rects, src->numRects * sizeof(RECT)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[sizeof(BITMAPINFO) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:379:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:435:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[sizeof(BITMAPINFO) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bcibuf[sizeof(BITMAPCOREINFO) + 256 * sizeof(RGBTRIPLE)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:442:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coreBits[256]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char logpalbuf[sizeof(LOGPALETTE) + 256 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:915:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[2048]; /* 2 x 2 pixels, max 64 bits-per-pixel, max 64 planes */ data/wine-5.0/dlls/gdi32/tests/bitmap.c:1296:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[sizeof(BITMAPINFO) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:1488:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], buf_cmp[256]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:1609:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors ) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:1846:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info2, info, sizeof(BITMAPINFOHEADER)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:1966:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info2, info, sizeof(BITMAPINFOHEADER)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:2107:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bi_buf[sizeof(BITMAPINFOHEADER) + sizeof(RGBQUAD) * 256]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:2428:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dibinfo_buf[sizeof(BITMAPINFOHEADER) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:3125:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&biSrc, &biDst, sizeof(BITMAPINFO)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:3353:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dstBuffer, expected, 4 * sizeof(*dstBuffer)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:3366:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(srcBuffer, expected, 4 * sizeof(*dstBuffer)); data/wine-5.0/dlls/gdi32/tests/bitmap.c:4006:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + sizeof(DWORD)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:4592:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char palbuf[sizeof(LOGPALETTE) + 256 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/bitmap.c:5030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char palbuf[sizeof(LOGPALETTE) + 256 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/brush.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + 2 * sizeof(RGBQUAD) + 32 * 32 / 8]; data/wine-5.0/dlls/gdi32/tests/brush.c:210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( GlobalLock( mem ), buffer, sizeof(buffer) ); data/wine-5.0/dlls/gdi32/tests/brush.c:276:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + 256 * sizeof(RGBQUAD) + 16 * 16]; data/wine-5.0/dlls/gdi32/tests/brush.c:279:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pal_buffer[sizeof(LOGPALETTE) + 256 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/clipping.c:123:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(RGNDATAHEADER) + sizeof(RECT)]; data/wine-5.0/dlls/gdi32/tests/clipping.c:180:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(RGNDATAHEADER) + 2 * sizeof(RECT)]; data/wine-5.0/dlls/gdi32/tests/clipping.c:195:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgn.data.Buffer, &rc, sizeof(rc)); data/wine-5.0/dlls/gdi32/tests/clipping.c:237:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgn.data.Buffer, &rc, sizeof(rc)); data/wine-5.0/dlls/gdi32/tests/clipping.c:260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgn.data.Buffer, arc, sizeof(arc)); data/wine-5.0/dlls/gdi32/tests/dc.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/gdi32/tests/dc.c:478:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/dc.c:917:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(BITMAPINFOHEADER) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/dc.c:1293:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tech[256]; data/wine-5.0/dlls/gdi32/tests/dc.c:1303:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[260]; data/wine-5.0/dlls/gdi32/tests/dc.c:1429:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char psadobe[10] = "%!PS-Adobe"; data/wine-5.0/dlls/gdi32/tests/dc.c:1430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024], *p; data/wine-5.0/dlls/gdi32/tests/dc.c:1431:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], file_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/dc.c:1447:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf + 2, "\n% ===> before DOWNLOADHEADER <===\n"); data/wine-5.0/dlls/gdi32/tests/dc.c:1452:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/gdi32/tests/dc.c:1457:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf + 2, "\n% ===> after DOWNLOADHEADER <===\n"); data/wine-5.0/dlls/gdi32/tests/dc.c:1493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/gdi32/tests/dib.c:1707:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pal_buffer[sizeof(LOGPALETTE) + 255 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/dib.c:1757:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pal_buffer[sizeof(LOGPALETTE) + 255 * sizeof(PALETTEENTRY)]; data/wine-5.0/dlls/gdi32/tests/dib.c:3030:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( lf.lfFaceName, "Tahoma" ); data/wine-5.0/dlls/gdi32/tests/dib.c:3140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[sizeof(BITMAPINFO) + 256 * sizeof(RGBQUAD)]; data/wine-5.0/dlls/gdi32/tests/font.c:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp_path[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:396:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char test_str[11] = "Test String"; data/wine-5.0/dlls/gdi32/tests/font.c:484:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char test_str[11] = "Test String"; data/wine-5.0/dlls/gdi32/tests/font.c:506:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:755:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:1209:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "System"); data/wine-5.0/dlls/gdi32/tests/font.c:1301:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:1348:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:1352:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Times New Roman"); data/wine-5.0/dlls/gdi32/tests/font.c:1389:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:1462:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:1623:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "System"); data/wine-5.0/dlls/gdi32/tests/font.c:1652:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:1675:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:1885:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:2080:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:2095:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( copy, res, size ); data/wine-5.0/dlls/gdi32/tests/font.c:2186:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Wingdings"); data/wine-5.0/dlls/gdi32/tests/font.c:2200:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:2224:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:2497:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/gdi32/tests/font.c:2549:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ansi_buf[128]; data/wine-5.0/dlls/gdi32/tests/font.c:2554:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(code_page, 0, ansi_buf, count, unicode_buf, count); data/wine-5.0/dlls/gdi32/tests/font.c:2563:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ansi_buf[128]; data/wine-5.0/dlls/gdi32/tests/font.c:4080:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:4139:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Nonexistent font"); data/wine-5.0/dlls/gdi32/tests/font.c:4151:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Nonexistent font"); data/wine-5.0/dlls/gdi32/tests/font.c:4167:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Nonexistent font"); data/wine-5.0/dlls/gdi32/tests/font.c:4180:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Times New Roman"); data/wine-5.0/dlls/gdi32/tests/font.c:4302:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:4412:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:4425:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fA.lfFaceName, faceA, sizeof faceA); data/wine-5.0/dlls/gdi32/tests/font.c:4460:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fW.lfFaceName, faceW, sizeof faceW); data/wine-5.0/dlls/gdi32/tests/font.c:4501:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char test_str[11] = "Test String"; data/wine-5.0/dlls/gdi32/tests/font.c:5030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:5039:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(file_name, "\\fonts\\"); data/wine-5.0/dlls/gdi32/tests/font.c:5173:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:5385:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/gdi32/tests/font.c:5398:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial Bold"); data/wine-5.0/dlls/gdi32/tests/font.c:5408:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial Bold Italic"); data/wine-5.0/dlls/gdi32/tests/font.c:5415:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial Italic Bold"); data/wine-5.0/dlls/gdi32/tests/font.c:5492:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "MS Shell Dlg"); data/wine-5.0/dlls/gdi32/tests/font.c:5510:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "MS Shell Dlg 2"); data/wine-5.0/dlls/gdi32/tests/font.c:5552:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[LF_FULLFACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:5766:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/gdi32/tests/font.c:5886:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:5887:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp_path[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:5888:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fot_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:6036:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facename[100]; data/wine-5.0/dlls/gdi32/tests/font.c:6178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:6258:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:6325:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char face_name[LF_FACESIZE]; data/wine-5.0/dlls/gdi32/tests/font.c:6453:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:6552:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "System"); data/wine-5.0/dlls/gdi32/tests/font.c:6571:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:6656:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Wingdings"); data/wine-5.0/dlls/gdi32/tests/font.c:6706:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Courier"); data/wine-5.0/dlls/gdi32/tests/font.c:6905:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:6942:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/font.c:6960:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(font.lfFaceName, "wine_3_this_is_a_very_long_name"); data/wine-5.0/dlls/gdi32/tests/font.c:6965:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(font.lfFaceName, "wine_2_this_is_a_very_long_name"); data/wine-5.0/dlls/gdi32/tests/font.c:6970:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(font.lfFaceName, "wine_1_this_is_a_very_long_name"); data/wine-5.0/dlls/gdi32/tests/font.c:7043:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:7100:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/gdi32/tests/font.c:7220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/icm.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/icm.c:227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char profile[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/metafile.c:1584:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[MF_BUFSIZE]; data/wine-5.0/dlls/gdi32/tests/metafile.c:1613:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[MF_BUFSIZE]; data/wine-5.0/dlls/gdi32/tests/metafile.c:1765:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(eto1, emr1, emr1->nSize); data/wine-5.0/dlls/gdi32/tests/metafile.c:1767:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(eto2, emr2, emr2->nSize); data/wine-5.0/dlls/gdi32/tests/metafile.c:1791:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(emr_nt4, emr2, emr2->nSize); data/wine-5.0/dlls/gdi32/tests/metafile.c:1848:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[MF_BUFSIZE]; data/wine-5.0/dlls/gdi32/tests/metafile.c:2091:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/metafile.c:2092:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mf_name[MAX_PATH]; data/wine-5.0/dlls/gdi32/tests/metafile.c:2179:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, MF_GRAPHICS_BITS, sizeof(MF_GRAPHICS_BITS)); data/wine-5.0/dlls/gdi32/tests/metafile.c:2194:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, MF_GRAPHICS_BITS, sizeof(MF_GRAPHICS_BITS)); data/wine-5.0/dlls/gdi32/tests/metafile.c:2213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, MF_GRAPHICS_BITS, sizeof(MF_GRAPHICS_BITS)); data/wine-5.0/dlls/gdi32/tests/metafile.c:2606:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(RGNDATAHEADER) + sizeof(RECT)]; data/wine-5.0/dlls/gdi32/tests/metafile.c:2705:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/gdi32/tests/metafile.c:3175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/gdi32/tests/palette.c:46:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmpbuf[sizeof(BITMAPINFO) + 10 * sizeof(WORD)]; data/wine-5.0/dlls/gdi32/tests/palette.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char logpalettebuf[sizeof(LOGPALETTE) + sizeof(logpalettedata)]; data/wine-5.0/dlls/gdi32/tests/palette.c:58:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( logpalette->palPalEntry, logpalettedata, sizeof(logpalettedata) ); data/wine-5.0/dlls/gdi32/tests/palette.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char logpalettebuf[sizeof(LOGPALETTE) + sizeof(logpalettedata)]; data/wine-5.0/dlls/gdi32/tests/palette.c:134:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( logpalette->palPalEntry, logpalettedata, sizeof(logpalettedata) ); data/wine-5.0/dlls/gdi32/tests/path.c:403:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *type_string[8] = { "Unknown (0)", "PT_CLOSEFIGURE", "PT_LINETO", data/wine-5.0/dlls/gdi32/tests/pen.c:71:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char elp_buffer[128]; data/wine-5.0/dlls/gdi32/tests/pen.c:515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[offsetof(EXTLOGPEN, elpStyleEntry) + 16 * sizeof(DWORD)]; data/wine-5.0/dlls/gdi32/tests/pen.c:572:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[offsetof(EXTLOGPEN, elpStyleEntry) + 16 * sizeof(DWORD)]; data/wine-5.0/dlls/gdiplus/brush.c:53:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*clone, brush, sizeof(GpSolidFill)); data/wine-5.0/dlls/gdiplus/brush.c:73:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, sizeof(GpPathGradient)); data/wine-5.0/dlls/gdiplus/brush.c:109:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->blendfac, src->blendfac, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:110:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->blendpos, src->blendpos, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:111:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->surroundcolors, src->surroundcolors, dest->surroundcolorcount * sizeof(ARGB)); data/wine-5.0/dlls/gdiplus/brush.c:115:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pblendcolor, src->pblendcolor, pcount * sizeof(ARGB)); data/wine-5.0/dlls/gdiplus/brush.c:116:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pblendpos, src->pblendpos, pcount * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:130:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, sizeof(GpLineGradient)); data/wine-5.0/dlls/gdiplus/brush.c:155:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->blendfac, src->blendfac, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:156:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->blendpos, src->blendpos, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:160:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pblendcolor, src->pblendcolor, pcount * sizeof(ARGB)); data/wine-5.0/dlls/gdiplus/brush.c:161:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pblendpos, src->pblendpos, pcount * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1037:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blend, brush->blendfac, count*sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1039:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(positions, brush->blendpos, count*sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1361:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_blendfac, factors, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1362:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_blendpos, positions, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1385:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(factors, brush->blendfac, brush->blendcount * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(positions, brush->blendpos, brush->blendcount * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1506:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_blendfac, blend, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1507:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_blendpos, pos, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/brush.c:1574:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_color, blend, sizeof(ARGB) * count); data/wine-5.0/dlls/gdiplus/brush.c:1575:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_pos, pos, sizeof(REAL) * count); data/wine-5.0/dlls/gdiplus/brush.c:1608:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blend, brush->pblendcolor, sizeof(ARGB) * brush->pblendcount); data/wine-5.0/dlls/gdiplus/brush.c:1609:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, brush->pblendpos, sizeof(REAL) * brush->pblendcount); data/wine-5.0/dlls/gdiplus/brush.c:1793:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_surroundcolors, argb, num_colors * sizeof(ARGB)); data/wine-5.0/dlls/gdiplus/brush.c:2035:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_color, blend, sizeof(ARGB) * count); data/wine-5.0/dlls/gdiplus/brush.c:2036:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_pos, positions, sizeof(REAL) * count); data/wine-5.0/dlls/gdiplus/brush.c:2060:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blend, brush->pblendcolor, sizeof(ARGB) * brush->pblendcount); data/wine-5.0/dlls/gdiplus/brush.c:2061:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(positions, brush->pblendpos, sizeof(REAL) * brush->pblendcount); data/wine-5.0/dlls/gdiplus/customlinecap.c:66:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*to)->pathdata.Points, from->pathdata.Points, from->pathdata.Count data/wine-5.0/dlls/gdiplus/customlinecap.c:68:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*to)->pathdata.Types, from->pathdata.Types, from->pathdata.Count); data/wine-5.0/dlls/gdiplus/customlinecap.c:93:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cap->pathdata.Points, pathdata->Points, pathdata->Count * sizeof(PointF)); data/wine-5.0/dlls/gdiplus/customlinecap.c:95:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cap->pathdata.Types, pathdata->Types, pathdata->Count); data/wine-5.0/dlls/gdiplus/customlinecap.c:300:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cap->cap.pathdata.Types, types_filled, sizeof(types_filled)); data/wine-5.0/dlls/gdiplus/customlinecap.c:313:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cap->cap.pathdata.Types, types_unfilled, sizeof(types_unfilled)); data/wine-5.0/dlls/gdiplus/font.c:258:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lfw, lfa, FIELD_OFFSET(LOGFONTA,lfFaceName) ); data/wine-5.0/dlls/gdiplus/font.c:260:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_ACP, 0, lfa->lfFaceName, -1, lfw.lfFaceName, LF_FACESIZE)) data/wine-5.0/dlls/gdiplus/font.c:443:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lfa, &lfw, FIELD_OFFSET(LOGFONTA,lfFaceName) ); data/wine-5.0/dlls/gdiplus/font.c:1196:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[4]; /* table name */ data/wine-5.0/dlls/gdiplus/font.c:1414:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( codepage, 0, (char *)data, name_len, NULL, 0 ) + 1; data/wine-5.0/dlls/gdiplus/font.c:1418:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( codepage, 0, (char *)data, name_len, ret, len - 1 ); data/wine-5.0/dlls/gdiplus/font.c:1648:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_family_list, fonts->FontFamilies, fonts->count*sizeof(void*)); data/wine-5.0/dlls/gdiplus/graphics.c:433:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp_bits, src, src_width * src_height * 4); data/wine-5.0/dlls/gdiplus/graphics.c:1734:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(custptf, custom->pathdata.Points, count * sizeof(PointF)); data/wine-5.0/dlls/gdiplus/graphics.c:1839:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(origpt, pt, sizeof(GpPointF) * 4); data/wine-5.0/dlls/gdiplus/graphics.c:1843:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pt, origpt, sizeof(GpPointF) * 4); data/wine-5.0/dlls/gdiplus/graphics.c:1890:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptcopy, pt, count * sizeof(GpPointF)); data/wine-5.0/dlls/gdiplus/graphics.c:2993:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptf, points, 3 * sizeof(GpPointF)); data/wine-5.0/dlls/gdiplus/graphics.c:6711:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(region, clip, sizeof(GpRegion)); data/wine-5.0/dlls/gdiplus/graphics.c:7152:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(real_positions, positions, sizeof(PointF) * length); data/wine-5.0/dlls/gdiplus/graphicspath.c:385:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pts, points, sizeof(GpPointF)*count); data/wine-5.0/dlls/gdiplus/graphicspath.c:761:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&path->pathdata.Points[old_count], addingPath->pathdata.Points, data/wine-5.0/dlls/gdiplus/graphicspath.c:763:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&path->pathdata.Types[old_count], addingPath->pathdata.Types, count); data/wine-5.0/dlls/gdiplus/graphicspath.c:822:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(path->pathdata.Points[path->pathdata.Count]), &(ptf[1]),sizeof(GpPointF)*(count-1)); data/wine-5.0/dlls/gdiplus/graphicspath.c:858:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&path->pathdata.Points[old_count], points, count*sizeof(GpPointF)); data/wine-5.0/dlls/gdiplus/graphicspath.c:1156:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*clone)->pathdata.Points, path->pathdata.Points, data/wine-5.0/dlls/gdiplus/graphicspath.c:1158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*clone)->pathdata.Types, path->pathdata.Types, path->datalen); data/wine-5.0/dlls/gdiplus/graphicspath.c:1234:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*path)->pathdata.Points, points, count * sizeof(PointF)); data/wine-5.0/dlls/gdiplus/graphicspath.c:1235:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*path)->pathdata.Types, types, count); data/wine-5.0/dlls/gdiplus/graphicspath.c:1388:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pathData->Points, path->pathdata.Points, sizeof(PointF) * pathData->Count); data/wine-5.0/dlls/gdiplus/graphicspath.c:1389:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pathData->Types , path->pathdata.Types , pathData->Count); data/wine-5.0/dlls/gdiplus/graphicspath.c:1432:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(points, path->pathdata.Points, path->pathdata.Count * sizeof(GpPointF)); data/wine-5.0/dlls/gdiplus/graphicspath.c:1472:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(types, path->pathdata.Types, path->pathdata.Count); data/wine-5.0/dlls/gdiplus/graphicspath.c:1643:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Points, revpath.Points, sizeof(GpPointF)*count); data/wine-5.0/dlls/gdiplus/graphicspath.c:1644:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Types, revpath.Types, sizeof(BYTE)*count); data/wine-5.0/dlls/gdiplus/graphicspath.c:2340:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, backup, sizeof(*path)); data/wine-5.0/dlls/gdiplus/graphicspath.c:2386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, backup, sizeof(*path)); data/wine-5.0/dlls/gdiplus/image.c:569:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_bits+dst_stride*y, src_bits+src_stride*y, widthbytes); data/wine-5.0/dlls/gdiplus/image.c:1276:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_palette->Entries, src_palette->Entries, sizeof(ARGB) * src_palette->Count); data/wine-5.0/dlls/gdiplus/image.c:1787:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/gdiplus/image.c:1835:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*bitmap)->image.format, &ImageFormatMemoryBMP, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:1985:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(xorrow, srcrow, xorstride); data/wine-5.0/dlls/gdiplus/image.c:2308:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, &image->format, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:2586:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.caub.pElems, item_size); data/wine-5.0/dlls/gdiplus/image.c:2593:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.caui.pElems, item_size); data/wine-5.0/dlls/gdiplus/image.c:2601:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.caul.pElems, item_size); data/wine-5.0/dlls/gdiplus/image.c:2609:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.cauh.pElems, item_size); data/wine-5.0/dlls/gdiplus/image.c:2612:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.pszVal, item_size); data/wine-5.0/dlls/gdiplus/image.c:2615:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value, value->u.blob.pBlobData, item_size); data/wine-5.0/dlls/gdiplus/image.c:2660:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer->value, ((GpBitmap *)image)->prop_item[i].value, buffer->length); data/wine-5.0/dlls/gdiplus/image.c:2780:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ((GpBitmap *)image)->prop_item, prop_size); data/wine-5.0/dlls/gdiplus/image.c:2830:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item_value, item->value, item_size); data/wine-5.0/dlls/gdiplus/image.c:2918:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dimensionIDs, result, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:2976:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop_item, bitmap->prop_item, sizeof(PropertyItem) * bitmap->prop_count); data/wine-5.0/dlls/gdiplus/image.c:2978:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop_item + prop_count + 1, bitmap->prop_item + prop_count, prop_size); data/wine-5.0/dlls/gdiplus/image.c:2993:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop_item[prop_count].value, item->value, item->length); data/wine-5.0/dlls/gdiplus/image.c:3762:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&new_image->format, &image->format, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:4383:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*image)->format, &codec->info.FormatID, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:4527:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wicformat, desired_wicformat, sizeof(GUID)); data/wine-5.0/dlls/gdiplus/image.c:4682:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(palette->Entries, image->palette->Entries, sizeof(ARGB)*image->palette->Count); data/wine-5.0/dlls/gdiplus/image.c:4712:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(image->palette->Entries, palette->Entries, sizeof(ARGB)*palette->Count); data/wine-5.0/dlls/gdiplus/image.c:4983:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&decoders[decoder_count], &codecs[i].info, sizeof(ImageCodecInfo)); data/wine-5.0/dlls/gdiplus/image.c:5034:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&encoders[encoder_count], &codecs[i].info, sizeof(ImageCodecInfo)); data/wine-5.0/dlls/gdiplus/image.c:5158:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/gdiplus/image.c:5458:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_pixel, src_pixel, bytesperpixel); data/wine-5.0/dlls/gdiplus/image.c:5734:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(palette->Entries, wic_palette->Entries, wic_palette->Count * sizeof(wic_palette->Entries[0])); data/wine-5.0/dlls/gdiplus/imageattributes.c:52:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(remap_tables[i].colormap, imageattr->colorremaptables[i].colormap, data/wine-5.0/dlls/gdiplus/imageattributes.c:70:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*cloneImageattr)->colorremaptables, remap_tables, sizeof(remap_tables)); data/wine-5.0/dlls/gdiplus/imageattributes.c:279:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_map, map, sizeof(*map) * mapSize); data/wine-5.0/dlls/gdiplus/matrix.c:53:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, temp, 6 * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/matrix.c:181:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, matrix->matrix, sizeof(matrix->matrix)); data/wine-5.0/dlls/gdiplus/metafile.c:630:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metafile->comment_data, "EMF+", 4); data/wine-5.0/dlls/gdiplus/metafile.c:646:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_data, metafile->comment_data, metafile->comment_data_length); data/wine-5.0/dlls/gdiplus/metafile.c:1130:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(record+1, rects, sizeof(GpRectF) * count); data/wine-5.0/dlls/gdiplus/metafile.c:1941:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*path)->pathdata.Points, points, sizeof(*points) * data->PathPointCount); data/wine-5.0/dlls/gdiplus/metafile.c:1945:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*path)->pathdata.Types, types, sizeof(*types) * data->PathPointCount); data/wine-5.0/dlls/gdiplus/metafile.c:2007:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&node->elementdata.rect, rect, sizeof(*rect)); data/wine-5.0/dlls/gdiplus/metafile.c:2460:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(familyname, data->FamilyName, data->Length * sizeof(*familyname)); data/wine-5.0/dlls/gdiplus/metafile.c:2581:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(record->dParm, data, dataSize); data/wine-5.0/dlls/gdiplus/metafile.c:2771:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(real_metafile->world_transform->matrix, record->MatrixData, sizeof(record->MatrixData)); data/wine-5.0/dlls/gdiplus/metafile.c:3524:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(real_metafile->playback_points, destPoints, sizeof(PointF) * 3); data/wine-5.0/dlls/gdiplus/metafile.c:3731:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_header, header, sizeof(*dst_header)); data/wine-5.0/dlls/gdiplus/metafile.c:4317:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(draw_image_record->PointData.pointsF, points, 3 * sizeof(*points)); data/wine-5.0/dlls/gdiplus/metafile.c:4459:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m, &pen->transform, sizeof(*m)); data/wine-5.0/dlls/gdiplus/pathiterator.c:52:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*iterator)->pathdata.Types, path->pathdata.Types, size); data/wine-5.0/dlls/gdiplus/pathiterator.c:53:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*iterator)->pathdata.Points, path->pathdata.Points,size * sizeof(PointF)); data/wine-5.0/dlls/gdiplus/pathiterator.c:100:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(types, &(iterator->pathdata.Types[startIndex]), *resultCount); data/wine-5.0/dlls/gdiplus/pathiterator.c:101:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(points, &(iterator->pathdata.Points[startIndex]), data/wine-5.0/dlls/gdiplus/pathiterator.c:191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Points, &(iterator->pathdata.Points[start]), sizeof(GpPointF)*(*result)); data/wine-5.0/dlls/gdiplus/pathiterator.c:192:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Types, &(iterator->pathdata.Types[start]), sizeof(BYTE)*(*result)); data/wine-5.0/dlls/gdiplus/pathiterator.c:324:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Points, &(iter->pathdata.Points[start]), sizeof(GpPointF)*(*result)); data/wine-5.0/dlls/gdiplus/pathiterator.c:325:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Types, &(iter->pathdata.Types[start]), sizeof(BYTE)*(*result)); data/wine-5.0/dlls/gdiplus/pen.c:119:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*clonepen)->dashes, pen->dashes, pen->numdashes * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/pen.c:271:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dash, pen->dashes, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/pen.c:619:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pen->dashes, dash, count * sizeof(REAL)); data/wine-5.0/dlls/gdiplus/region.c:250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(region, path_region, sizeof(GpRegion)); data/wine-5.0/dlls/gdiplus/region.c:297:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(region, rect_region, sizeof(GpRegion)); data/wine-5.0/dlls/gdiplus/region.c:305:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(left, ®ion->node, sizeof(region_element)); data/wine-5.0/dlls/gdiplus/region.c:364:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(region1, reg2copy, sizeof(GpRegion)); data/wine-5.0/dlls/gdiplus/region.c:907:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Points, ptf, sizeof(*ptf) * path_header->count); data/wine-5.0/dlls/gdiplus/region.c:916:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path->pathdata.Types, types, path_header->count); data/wine-5.0/dlls/gdiplus/region.c:1457:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(element, &new_region->node, sizeof(region_element)); data/wine-5.0/dlls/gdiplus/region.c:1588:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*data)->Buffer, &(*data)->rdh.rcBound, sizeof(RECT)); data/wine-5.0/dlls/gdiplus/stringformat.c:218:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tabs, format->tabs, sizeof(REAL)*count); data/wine-5.0/dlls/gdiplus/stringformat.c:306:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format->character_ranges, ranges, sizeof(CharacterRange) * rangeCount); data/wine-5.0/dlls/gdiplus/stringformat.c:338:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format->tabs, tabs, sizeof(REAL)*count); data/wine-5.0/dlls/gdiplus/stringformat.c:385:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*newFormat)->tabs, format->tabs, sizeof(REAL) * format->tabcount); data/wine-5.0/dlls/gdiplus/stringformat.c:397:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*newFormat)->character_ranges, format->character_ranges, data/wine-5.0/dlls/gdiplus/tests/font.c:814:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fallback_font[LF_FACESIZE]; data/wine-5.0/dlls/gdiplus/tests/font.c:835:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lf.lfFaceName, -1, ms_shell_dlg, LF_FACESIZE); data/wine-5.0/dlls/gdiplus/tests/font.c:862:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName,"Arial"); data/wine-5.0/dlls/gdiplus/tests/graphics.c:2287:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(logfont.lfFaceName,"Arial"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:36:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, "PathPointTypeStart"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:39:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, "PathPointTypeLine"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:42:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, "PathPointTypeBezier"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:45:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, "Unknown type"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:52:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, "Unknown type"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:57:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, " | PathPointTypePathMarker"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:59:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(name, " | PathPointTypeCloseSubpath"); data/wine-5.0/dlls/gdiplus/tests/graphicspath.c:83:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ename[POINT_TYPE_MAX_LEN], name[POINT_TYPE_MAX_LEN]; data/wine-5.0/dlls/gdiplus/tests/image.c:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[39]; data/wine-5.0/dlls/gdiplus/tests/image.c:58:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer2[39]; data/wine-5.0/dlls/gdiplus/tests/image.c:90:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, buff, size); data/wine-5.0/dlls/gdiplus/tests/image.c:1328:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pngimage[285] = { data/wine-5.0/dlls/gdiplus/tests/image.c:1338:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gifimage[35] = { data/wine-5.0/dlls/gdiplus/tests/image.c:1350:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char bmpimage[66] = { data/wine-5.0/dlls/gdiplus/tests/image.c:1358:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char jpgimage[285] = { data/wine-5.0/dlls/gdiplus/tests/image.c:1399:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char wmfimage[180] = { data/wine-5.0/dlls/gdiplus/tests/image.c:1438:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, wmfimage, sizeof(wmfimage)); data/wine-5.0/dlls/gdiplus/tests/image.c:2600:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gifanimation[72] = { data/wine-5.0/dlls/gdiplus/tests/image.c:2666:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char palette_buf[256]; data/wine-5.0/dlls/gdiplus/tests/image.c:2673:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, gifanimation, sizeof(gifanimation)); data/wine-5.0/dlls/gdiplus/tests/image.c:2774:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, gifimage, sizeof(gifimage)); data/wine-5.0/dlls/gdiplus/tests/image.c:2812:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, transparentgif, sizeof(transparentgif)); data/wine-5.0/dlls/gdiplus/tests/image.c:2856:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, gifanimation2, sizeof(gifanimation2)); data/wine-5.0/dlls/gdiplus/tests/image.c:3197:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char invalid_image[256]; data/wine-5.0/dlls/gdiplus/tests/image.c:3235:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, image_data, image_size); data/wine-5.0/dlls/gdiplus/tests/image.c:3317:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/gdiplus/tests/image.c:3496:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[14]; data/wine-5.0/dlls/gdiplus/tests/image.c:4026:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pixels, pixels_24, sizeof(pixels_24)); data/wine-5.0/dlls/gdiplus/tests/image.c:5236:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/gdiplus/tests/image.c:5270:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/gdiplus/tests/image.c:5273:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (j >=1) memcpy(buf + tRNS_off, "tEST", 4); data/wine-5.0/dlls/gdiplus/tests/image.c:5274:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (j >=2) memcpy(buf + PLTE_off, "tEST", 4); data/wine-5.0/dlls/gdiplus/tests/image.c:5332:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pngimage, sizeof(pngimage)); data/wine-5.0/dlls/gdiplus/tests/region.c:55:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(RGNDATAHEADER) + sizeof(RECT)]; data/wine-5.0/dlls/glu32/glu.c:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[256]; data/wine-5.0/dlls/glu32/mipmap.c:49:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ub[4]; data/wine-5.0/dlls/glu32/mipmap.c:52:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b[4]; data/wine-5.0/dlls/glu32/mipmap.c:409:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:410:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:507:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:510:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:644:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:647:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:790:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:793:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:936:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:939:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:1082:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:1085:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:1229:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[ysize*height]); data/wine-5.0/dlls/glu32/mipmap.c:1230:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert((char *)dest == &((char *)dataOut) data/wine-5.0/dlls/glu32/mipmap.c:4353:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dstTrav,srcTrav,rowsize); data/wine-5.0/dlls/glu32/mipmap.c:6140:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[rowSizeInBytes*height]); data/wine-5.0/dlls/glu32/mipmap.c:6206:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[rowSizeInBytes]); data/wine-5.0/dlls/glu32/mipmap.c:6247:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. assert(src == &((const char *)dataIn)[rowSizeInBytes*height]); data/wine-5.0/dlls/gphoto2.ds/capability.c:238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pVal->ItemList, values, sizeof(TW_UINT16)*nrofvalues); data/wine-5.0/dlls/gphoto2.ds/capability.c:254:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (*values, pVal->ItemList, sizeof(TW_UINT16)*(*nrofvalues)); data/wine-5.0/dlls/hhctrl.ocx/chm.c:283:39: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (merge & HHWIN_PARAM_TABORDER) memcpy(dst->tabOrder, src->tabOrder, sizeof(src->tabOrder)); data/wine-5.0/dlls/hhctrl.ocx/chm.c:515:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rel_path, path, (ptr-path)*sizeof(WCHAR)); data/wine-5.0/dlls/hhctrl.ocx/help.c:183:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string, stringresource, iSize*sizeof(WCHAR)); data/wine-5.0/dlls/hhctrl.ocx/help.c:755:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char needle[100]; data/wine-5.0/dlls/hhctrl.ocx/help.c:1905:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp[tmp_len], h, len); data/wine-5.0/dlls/hhctrl.ocx/help.c:1943:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp[tmp_len], h, len); data/wine-5.0/dlls/hhctrl.ocx/help.c:1947:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(code_page, 0, tmp, tmp_len, NULL, 0); data/wine-5.0/dlls/hhctrl.ocx/help.c:1949:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(code_page, 0, tmp, tmp_len, unicode_text, len); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wdata, data, sizeof(*data)); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:403:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, wdata, sizeof(*wdata)); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:523:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char idtxt[10]; data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:530:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(idtxt, ptr, space-ptr); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:532:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). mapid = atoi(idtxt); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:555:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buflen = MultiByteToWideChar(CP_ACP, 0, szCmdLine, len, NULL, 0) + 1; data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:557:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szCmdLine, len, filename, buflen); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.h:263:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.h:283:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, lenA, NULL, 0)+1; /* +1 for null pad */ data/wine-5.0/dlls/hhctrl.ocx/hhctrl.h:285:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, lenA, ret, len); data/wine-5.0/dlls/hhctrl.ocx/index.c:239:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&item->items[num_items], &new_item->items[0], sizeof(IndexSubItem)); data/wine-5.0/dlls/hhctrl.ocx/search.c:39:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->filename, filename, filename_len); data/wine-5.0/dlls/hhctrl.ocx/search.c:107:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int wlen = MultiByteToWideChar(CP_ACP, 0, text, textlen, NULL, 0); data/wine-5.0/dlls/hhctrl.ocx/search.c:109:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, text, textlen, title, wlen); data/wine-5.0/dlls/hhctrl.ocx/search.c:114:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer[buffer_size], text, textlen); data/wine-5.0/dlls/hhctrl.ocx/stream.c:50:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->buf+buf->len, data, len); data/wine-5.0/dlls/hhctrl.ocx/stream.c:166:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name_buf[32]; data/wine-5.0/dlls/hhctrl.ocx/stream.c:175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(node_buf, node, node_len); data/wine-5.0/dlls/hhctrl.ocx/stream.c:180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name_buf, name, name_len); data/wine-5.0/dlls/hhctrl.ocx/stream.h:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BLOCK_SIZE]; data/wine-5.0/dlls/hid/tests/device.c:203:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(btn, "%i ", button_pages[j]); data/wine-5.0/dlls/hid/tests/device.c:305:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bytestr[5]; data/wine-5.0/dlls/hid/tests/device.c:306:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(bytestr, "%x ", (BYTE)data[i]); data/wine-5.0/dlls/hid/tests/device.c:379:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bytestr[5]; data/wine-5.0/dlls/hid/tests/device.c:380:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(bytestr, "%x ", (BYTE)data[i]); data/wine-5.0/dlls/hidclass.sys/buffer.c:148:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, ret, ring->buffer_size); data/wine-5.0/dlls/hidclass.sys/buffer.c:180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, ret, ring->buffer_size); data/wine-5.0/dlls/hidclass.sys/buffer.c:224:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ring->buffer[ring->end * ring->buffer_size], data, ring->buffer_size); data/wine-5.0/dlls/hidclass.sys/device.c:229:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, packet->reportBuffer, packet->reportBufferLen); data/wine-5.0/dlls/hidclass.sys/device.c:235:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer[1], packet->reportBuffer, packet->reportBufferLen); data/wine-5.0/dlls/hidclass.sys/device.c:407:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(irp->AssociatedIrp.SystemBuffer, &base->information, sizeof(HID_COLLECTION_INFORMATION)); data/wine-5.0/dlls/hidclass.sys/device.c:425:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(irp->UserBuffer, base->preparseData, base->preparseData->dwSize); data/wine-5.0/dlls/hidclass.sys/device.c:482:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out_buffer, packet->reportBuffer, packet->reportBufferLen); data/wine-5.0/dlls/hlink/browse_ctx.c:181:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->BrowseWindowInfo, phlbwi, phlbwi->cbSize); data/wine-5.0/dlls/hlink/browse_ctx.c:198:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(phlbwi, This->BrowseWindowInfo, This->BrowseWindowInfo->cbSize); data/wine-5.0/dlls/hlink/extserv.c:250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->headers, pwzAdditionalHeaders, len*sizeof(WCHAR)); data/wine-5.0/dlls/hlink/extserv.c:251:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->headers+len, endlW, sizeof(endlW)); data/wine-5.0/dlls/hlink/hlink_main.c:133:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tgt, pwzTarget, tgt_len * sizeof(WCHAR)); data/wine-5.0/dlls/hlink/hlink_private.h:44:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/hlink/hlink_private.h:59:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/hlink/tests/hlink.c:1284:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszDisplayName, winehq_urlW, sizeof(winehq_urlW)); data/wine-5.0/dlls/hlink/tests/hlink.c:1838:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*displayName, site_monikerW, sizeof(site_monikerW)); data/wine-5.0/dlls/hlink/tests/hlink.c:1846:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*displayName, ref_monikerW, sizeof(ref_monikerW)); data/wine-5.0/dlls/http.sys/http.c:525:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, conn->buffer, conn->unk_verb_len); data/wine-5.0/dlls/http.sys/http.c:531:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, conn->url, conn->url_len); data/wine-5.0/dlls/http.sys/http.c:545:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, httpW, sizeof(httpW)); data/wine-5.0/dlls/http.sys/http.c:547:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, host, host_len, (WCHAR *)(buffer + offset), host_len * sizeof(WCHAR)); data/wine-5.0/dlls/http.sys/http.c:549:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, abs_path, abs_path_len + query_len, data/wine-5.0/dlls/http.sys/http.c:558:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, &addr, sizeof(addr)); data/wine-5.0/dlls/http.sys/http.c:564:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, &addr, sizeof(addr)); data/wine-5.0/dlls/http.sys/http.c:588:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, name, name_len); data/wine-5.0/dlls/http.sys/http.c:592:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, value, value_len); data/wine-5.0/dlls/http.sys/http.c:601:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, value, value_len); data/wine-5.0/dlls/http.sys/http.c:620:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, p, chunk_len); data/wine-5.0/dlls/http.sys/http.c:651:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, conn->buffer, conn->unk_verb_len); data/wine-5.0/dlls/http.sys/http.c:657:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, conn->url, conn->url_len); data/wine-5.0/dlls/http.sys/http.c:671:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, httpW, sizeof(httpW)); data/wine-5.0/dlls/http.sys/http.c:673:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, host, host_len, (WCHAR *)(buffer + offset), host_len * sizeof(WCHAR)); data/wine-5.0/dlls/http.sys/http.c:675:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, abs_path, abs_path_len + query_len, data/wine-5.0/dlls/http.sys/http.c:684:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, &addr, sizeof(addr)); data/wine-5.0/dlls/http.sys/http.c:690:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, &addr, sizeof(addr)); data/wine-5.0/dlls/http.sys/http.c:714:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, name, name_len); data/wine-5.0/dlls/http.sys/http.c:718:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, value, value_len); data/wine-5.0/dlls/http.sys/http.c:727:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, value, value_len); data/wine-5.0/dlls/http.sys/http.c:746:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, p, chunk_len); data/wine-5.0/dlls/http.sys/http.c:927:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char day_names[7][4] = {"Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"}; data/wine-5.0/dlls/http.sys/http.c:928:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char month_names[12][4] = data/wine-5.0/dlls/http.sys/http.c:945:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(response_header) + sizeof(response_body) + 37]; data/wine-5.0/dlls/http.sys/http.c:1273:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(irp->AssociatedIrp.SystemBuffer, conn->buffer, len); data/wine-5.0/dlls/httpapi/httpapi_main.c:367:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char day_names[7][4] = {"Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"}; data/wine-5.0/dlls/httpapi/httpapi_main.c:368:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char month_names[12][4] = data/wine-5.0/dlls/httpapi/httpapi_main.c:422:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, dummy[12]; data/wine-5.0/dlls/httpapi/httpapi_main.c:439:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. len = 12 + sprintf(dummy, "%hu", response->s.StatusCode) + response->s.ReasonLength; data/wine-5.0/dlls/httpapi/httpapi_main.c:458:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[12]; data/wine-5.0/dlls/httpapi/httpapi_main.c:459:50: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. len += strlen(header_names[i]) + 2 + sprintf(dummy, "%d", body_len) + 2; data/wine-5.0/dlls/httpapi/httpapi_main.c:473:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer->buffer, "HTTP/1.1 %u %.*s\r\n", response->s.StatusCode, data/wine-5.0/dlls/httpapi/httpapi_main.c:485:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer->buffer + strlen(buffer->buffer), "Content-Length: %d\r\n", body_len); data/wine-5.0/dlls/httpapi/httpapi_main.c:490:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer->buffer + strlen(buffer->buffer), "%.*s: %.*s\r\n", header->NameLength, data/wine-5.0/dlls/httpapi/httpapi_main.c:495:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, "\r\n", 2); data/wine-5.0/dlls/httpapi/httpapi_main.c:500:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, chunk->FromMemory.pBuffer, chunk->FromMemory.BufferLength); data/wine-5.0/dlls/httpapi/tests/httpapi.c:95:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048], response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:282:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expect[16]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:283:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect, "localhost:%u", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:357:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048], response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:432:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer1[2048], DECLSPEC_ALIGN(8) req_buffer2[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:438:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:538:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048], DECLSPEC_ALIGN(8) req_buffer2[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:542:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[4096], response_buffer[2048], req_body[2048], recv_body[2000]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:892:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:932:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:934:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expect[24], req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:993:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect, "http://localhost:%u/", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1018:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1021:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[200]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1153:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048], response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1163:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[100]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1276:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expect[16]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1277:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect, "localhost:%u", port); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DECLSPEC_ALIGN(8) req_buffer[2048], response_buffer[2048]; data/wine-5.0/dlls/httpapi/tests/httpapi.c:1358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char req_text[100]; data/wine-5.0/dlls/iccvid/iccvid.c:69:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char r[4], g[4], b[4]; data/wine-5.0/dlls/iccvid/iccvid.c:87:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char *in_buffer, uiclip[1024], *uiclp = NULL; data/wine-5.0/dlls/iccvid/iccvid.c:509:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cvinfo->v4_codebook[cur_strip], cvinfo->v4_codebook[cur_strip-1], 260 * sizeof(cvid_codebook)); data/wine-5.0/dlls/iccvid/iccvid.c:510:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cvinfo->v1_codebook[cur_strip], cvinfo->v1_codebook[cur_strip-1], 260 * sizeof(cvid_codebook)); data/wine-5.0/dlls/iccvid/iccvid.c:841:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out, in, size ); data/wine-5.0/dlls/ieframe/classinfo.c:86:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pGUID, This->version == 1 ? &DIID_DWebBrowserEvents : &DIID_DWebBrowserEvents2, data/wine-5.0/dlls/ieframe/client.c:578:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[16]; data/wine-5.0/dlls/ieframe/client.c:591:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", dispid); data/wine-5.0/dlls/ieframe/ieframe.h:348:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/ieframe/ieframe.h:366:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/ieframe/ieframe.h:369:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/ieframe/intshcut.c:376:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pCommandInfo->pcszVerb, -1, NULL, 0); data/wine-5.0/dlls/ieframe/intshcut.c:378:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pCommandInfo->pcszVerb, -1, wideVerb, len); data/wine-5.0/dlls/ieframe/intshcut.c:608:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char indexString[50]; data/wine-5.0/dlls/ieframe/intshcut.c:619:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(indexString, "ICONINDEX=%d", pvread[1].u.iVal); data/wine-5.0/dlls/ieframe/intshcut.c:860:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpcstrUrl, -1, NULL, 0); data/wine-5.0/dlls/ieframe/intshcut.c:862:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpcstrUrl, -1, urlfilepath, len); data/wine-5.0/dlls/ieframe/navigate.c:471:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pszAdditionalHeaders, This->headers, size); data/wine-5.0/dlls/ieframe/navigate.c:568:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->post_data, post_data, post_data_len); data/wine-5.0/dlls/ieframe/navigate.c:847:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(task->post_data->pvData, post_data, post_data_size); data/wine-5.0/dlls/ieframe/navigate.c:878:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(post_data->pvData, post_data, bsc->post_data_len); data/wine-5.0/dlls/ieframe/shellbrowser.c:671:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(post_data->pvData, pPostData, cbPostData); data/wine-5.0/dlls/ieframe/tests/ie.c:67:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/ieframe/tests/ie.c:69:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/ieframe/tests/ie.c:214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/ieframe/tests/webbrowser.c:238:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:240:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:1453:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcPosRect, &pos_rect, sizeof(RECT)); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:1457:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcClipRect, &clip_rect, sizeof(RECT)); data/wine-5.0/dlls/ieframe/tests/webbrowser.c:3972:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_path[MAX_PATH]; data/wine-5.0/dlls/ieframe/tests/webbrowser.c:3973:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_url[MAX_PATH] = "File://"; data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:532:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Microsoft IMA ADPCM", -1, data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:534:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Microsoft IMA ADPCM CODEC", -1, data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:536:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/imaadp32.acm/imaadp32.c:538:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/imagehlp/integrity.c:461:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char null[8]; data/wine-5.0/dlls/imagehlp/tests/image.c:59:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char funcname[0x20]; data/wine-5.0/dlls/imagehlp/tests/image.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[0x10]; data/wine-5.0/dlls/imagehlp/tests/image.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment1[FILE_PE_START - sizeof(IMAGE_DOS_HEADER)]; data/wine-5.0/dlls/imagehlp/tests/image.c:70:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment2[FILE_TEXT - FILE_PE_START - sizeof(IMAGE_NT_HEADERS32) - data/wine-5.0/dlls/imagehlp/tests/image.c:72:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char text_section[FILE_IDATA-FILE_TEXT]; data/wine-5.0/dlls/imagehlp/tests/image.c:74:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment3[FILE_TOTAL-FILE_IDATA-sizeof(struct Imports)]; data/wine-5.0/dlls/imagehlp/tests/image.c:179:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pb, pb, cb); data/wine-5.0/dlls/imagehlp/tests/image.c:250:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/image.c:286:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char kernel32_path[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/image.c:303:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(kernel32_path, "\\KERNEL32.DLL"); data/wine-5.0/dlls/imagehlp/tests/image.c:321:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_file[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/image.c:382:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_file[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/image.c:434:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_file[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/integrity.c:32:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char test_dll_path[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/integrity.c:122:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sys_dir[MAX_PATH+15]; data/wine-5.0/dlls/imagehlp/tests/integrity.c:123:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/imagehlp/tests/integrity.c:194:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(cert->bCertificate, cert_data, len); data/wine-5.0/dlls/imagehlp/tests/integrity.c:275:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/imm32/imm.c:139:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/imm32/imm.c:141:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/imm32/imm.c:217:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)src, -1, data/wine-5.0/dlls/imm32/imm.c:225:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)src, -1, NULL, 0); data/wine-5.0/dlls/imm32/imm.c:319:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key, key_pathW, sizeof(key_pathW) ); data/wine-5.0/dlls/imm32/imm.c:387:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR)ptr->imeClassName, data/wine-5.0/dlls/imm32/imm.c:952:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpData,-1,buffer,81); data/wine-5.0/dlls/imm32/imm.c:993:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,buffer,-1,lpData,80); data/wine-5.0/dlls/imm32/imm.c:1031:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCandList, candlist, ret); data/wine-5.0/dlls/imm32/imm.c:1134:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCandList, candlist, ret); data/wine-5.0/dlls/imm32/imm.c:1182:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lplf,&lfW,sizeof(LOGFONTA)); data/wine-5.0/dlls/imm32/imm.c:1219:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, src, src_len, dst, dst_len / sizeof(WCHAR)); data/wine-5.0/dlls/imm32/imm.c:1229:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ret); data/wine-5.0/dlls/imm32/imm.c:1282:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_ACP, 0, string.strA, str_len, NULL, 0); data/wine-5.0/dlls/imm32/imm.c:1304:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, min(src_len, dst_len)); data/wine-5.0/dlls/imm32/imm.c:1348:40: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ((DWORD *)target)[i] = MultiByteToWideChar(CP_ACP, 0, (LPSTR)ssource, data/wine-5.0/dlls/imm32/imm.c:1359:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target, source, min(slen,tlen)); data/wine-5.0/dlls/imm32/imm.c:1376:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_ACP, 0, (LPSTR)ssource, offset, NULL, 0); data/wine-5.0/dlls/imm32/imm.c:1995:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, sba.szDescription, -1, data/wine-5.0/dlls/imm32/imm.c:2361:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data->IMC.lfFont.W,lplf,sizeof(LOGFONTA)); data/wine-5.0/dlls/imm32/imm.c:2362:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lplf->lfFaceName, -1, data->IMC.lfFont.W.lfFaceName, data/wine-5.0/dlls/imm32/imm.c:2426:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). comp_len = MultiByteToWideChar(CP_ACP, 0, lpComp, dwCompLen, NULL, 0); data/wine-5.0/dlls/imm32/imm.c:2430:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpComp, dwCompLen, CompBuffer, comp_len); data/wine-5.0/dlls/imm32/imm.c:2433:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). read_len = MultiByteToWideChar(CP_ACP, 0, lpRead, dwReadLen, NULL, 0); data/wine-5.0/dlls/imm32/imm.c:2437:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpRead, dwReadLen, ReadBuffer, read_len); data/wine-5.0/dlls/imm32/imm.c:2798:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpImeParentMenu,&lpImeParentMenuW,sizeof(IMEMENUITEMINFOA)); data/wine-5.0/dlls/imm32/imm.c:2809:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpImeMenu[i],&lpImeMenuW[1],sizeof(IMEMENUITEMINFOA)); data/wine-5.0/dlls/imm32/imm.c:2869:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpImeParentMenu,&lpImeParentMenuA,sizeof(IMEMENUITEMINFOA)); data/wine-5.0/dlls/imm32/imm.c:2871:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpImeParentMenuA.szString, data/wine-5.0/dlls/imm32/imm.c:2879:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpImeMenu[i],&lpImeMenuA[1],sizeof(IMEMENUITEMINFOA)); data/wine-5.0/dlls/imm32/imm.c:2881:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpImeMenuA[i].szString, data/wine-5.0/dlls/imm32/tests/imm32.c:97:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&msg_spy.msgs[msg_spy.i_msg].msg, cwp, sizeof(msg_spy.msgs[0].msg)); data/wine-5.0/dlls/imm32/tests/imm32.c:297:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resstr[16] = ""; data/wine-5.0/dlls/imm32/tests/imm32.c:405:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[64]; data/wine-5.0/dlls/imm32/tests/imm32.c:426:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cstring[20]; data/wine-5.0/dlls/imm32/tests/imm32.c:1053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[16]; data/wine-5.0/dlls/inetcomm/internettransport.c:78:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPort[10]; data/wine-5.0/dlls/inetcomm/internettransport.c:117:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[256]; data/wine-5.0/dlls/inetcomm/internettransport.c:118:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service[256]; data/wine-5.0/dlls/inetcomm/mimeintl.c:205:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, charset, -1, NULL, 0); data/wine-5.0/dlls/inetcomm/mimeintl.c:210:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, charset, -1, bstr, len); data/wine-5.0/dlls/inetcomm/mimeole.c:484:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len + 1); data/wine-5.0/dlls/inetcomm/mimeole.c:684:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, key, cp - key); data/wine-5.0/dlls/inetcomm/mimeole.c:728:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, *cur, len); data/wine-5.0/dlls/inetcomm/mimeole.c:759:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(body->content_pri_type, header->value.u.pszVal, len); data/wine-5.0/dlls/inetcomm/mimeole.c:1346:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->pszName, param->name, len); data/wine-5.0/dlls/inetcomm/mimeole.c:1349:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->pszData, param->value, len); data/wine-5.0/dlls/inetcomm/mimeole.c:1560:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[1024]; data/wine-5.0/dlls/inetcomm/mimeole.c:1563:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[4]; data/wine-5.0/dlls/inetcomm/mimeole.c:1641:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[1024]; data/wine-5.0/dlls/inetcomm/mimeole.c:3720:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mhtml_url, mhtml_prefixW, sizeof(mhtml_prefixW)); data/wine-5.0/dlls/inetcomm/pop3transport.c:659:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(command, "\r\n"); data/wine-5.0/dlls/inetcomm/pop3transport.c:689:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(command, "\r\n"); data/wine-5.0/dlls/inetcomm/pop3transport.c:885:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(command, "\r\n"); data/wine-5.0/dlls/inetcomm/pop3transport.c:908:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(command, "\r\n"); data/wine-5.0/dlls/inetcomm/protocol.c:75:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/inetcomm/protocol.c:494:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(binding->url, url.mhtml, url.mhtml_len*sizeof(WCHAR)); data/wine-5.0/dlls/inetcomm/protocol.c:685:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, mhtml_prefixW, sizeof(mhtml_prefixW)); data/wine-5.0/dlls/inetcomm/protocol.c:687:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, url.mhtml, url.mhtml_len*sizeof(WCHAR)); data/wine-5.0/dlls/inetcomm/protocol.c:690:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, mhtml_separatorW, sizeof(mhtml_separatorW)); data/wine-5.0/dlls/inetcomm/smtptransport.c:680:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->addrlist, pMessage->rAddressList.prgAddress, size); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:80:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, charset, -1, NULL, 0); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:85:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, charset, -1, bstr, len); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:123:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:125:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:132:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1366:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1412:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH+32], *p, urla[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1423:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "winetest.mht"); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1433:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, urla, -1, test_url, ARRAY_SIZE(test_url)); data/wine-5.0/dlls/iphlpapi/icmp.c:331:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer+ICMP_MINLEN, RequestData, RequestSize); data/wine-5.0/dlls/iphlpapi/icmp.c:529:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ier->Address,&ip_header->ip_src,sizeof(IPAddr)); data/wine-5.0/dlls/iphlpapi/icmp.c:535:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ier->Data, ((char *)ip_header)+ip_header_len+ICMP_MINLEN, ier->DataSize); data/wine-5.0/dlls/iphlpapi/icmp.c:543:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ier->Options.OptionsData, ((char *)ip_header)+ip_header_len, ier->Options.OptionsSize); data/wine-5.0/dlls/iphlpapi/ifenum.c:156:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[IFNAMSIZ]; data/wine-5.0/dlls/iphlpapi/ifenum.c:311:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cur->hdr, buf, read ); data/wine-5.0/dlls/iphlpapi/ifenum.c:413:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret, ifr.ifr_addr.sa_data + 2, sizeof(DWORD)); data/wine-5.0/dlls/iphlpapi/ifenum.c:432:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret, ifr.ifr_addr.sa_data + 2, sizeof(DWORD)); data/wine-5.0/dlls/iphlpapi/ifenum.c:514:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr, ifr.ifr_hwaddr.sa_data, addrLen); data/wine-5.0/dlls/iphlpapi/ifenum.c:557:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&saddr->sin_addr.s_addr, ifr.ifr_addr.sa_data + 2, sizeof(DWORD)); data/wine-5.0/dlls/iphlpapi/ifenum.c:570:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr, &arp.arp_ha.sa_data[0], addrLen); data/wine-5.0/dlls/iphlpapi/ifenum.c:634:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr, LLADDR(sdl), addrLen); data/wine-5.0/dlls/iphlpapi/ifenum.c:680:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameBuf[IF_NAMESIZE]; data/wine-5.0/dlls/iphlpapi/ifenum.c:773:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->bPhysAddr, addr, len); data/wine-5.0/dlls/iphlpapi/ifenum.c:783:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->bDescr, name, entry->dwDescrLen); data/wine-5.0/dlls/iphlpapi/ifenum.c:799:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ipAddrRow->dwAddr, sa->sa_data + 2, sizeof(DWORD)); data/wine-5.0/dlls/iphlpapi/ifenum.c:902:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[IFNAMSIZ]; data/wine-5.0/dlls/iphlpapi/ifenum.c:1110:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *toIPAddressString(unsigned int addr, char string[16]) data/wine-5.0/dlls/iphlpapi/ifenum.c:1110:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *toIPAddressString(unsigned int addr, char string[16]) data/wine-5.0/dlls/iphlpapi/ifenum.h:115:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *toIPAddressString(unsigned int addr, char string[16]) DECLSPEC_HIDDEN; data/wine-5.0/dlls/iphlpapi/ifenum.h:115:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *toIPAddressString(unsigned int addr, char string[16]) DECLSPEC_HIDDEN; data/wine-5.0/dlls/iphlpapi/ip_icmp.h:99:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id_data[1]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:318:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "%x:", ntohs(addr->u.Word[i])); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:322:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(p, "%x", ntohs(addr->u.Word[7])); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:417:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[46]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:424:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pairs[i].DestinationAddress, &dst_list[i], sizeof(*pairs[i].DestinationAddress) ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:605:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char adapterName[MAX_ADAPTER_NAME]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:740:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->IpAddressList.IpAddress.String, "0.0.0.0"); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:741:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->IpAddressList.IpMask.String, "0.0.0.0"); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:757:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr->PrimaryWinsServer.IpAddress.String, data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:759:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr->SecondaryWinsServer.IpAddress.String, data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:853:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(p, "%d", *addrp); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:855:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "%d.", *addrp); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1005:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[IF_NAMESIZE], *ptr = (char *)aa + sizeof(IP_ADAPTER_ADDRESSES), *src; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1014:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "{%08x-0000-0000-0000-000000000000}", index); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1061:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&sin->sin_addr, &adapterRow->dwForwardNextHop, data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1077:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_buf[16]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1119:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_buf[46]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1127:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sa, v6addrs[i].lpSockaddr, sizeof(*sa)); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1149:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_buf[16]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1192:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_buf[46]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1246:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &s->sin_addr, &src->sin_addr, sizeof(IN_ADDR) ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1258:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &s->sin6_addr, &src->sin6_addr, sizeof(IN6_ADDR) ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1435:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar( CP_UNIXCP, 0, found_suffix, -1, NULL, 0 ) * sizeof(WCHAR); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1441:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar( CP_UNIXCP, 0, found_suffix, -1, suffix, *len / sizeof(WCHAR) ) * sizeof(WCHAR); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1645:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBestRoute, &table->table[matchedNdx], sizeof(MIB_IPFORWARDROW)); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1698:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameBuf[MAX_ADAPTER_NAME]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1723:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_ADAPTER_NAME], *name; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1744:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, (const char *)row.bDescr, -1, row2->Description, len ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1746:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &row2->PhysicalAddress, &row.bPhysAddr, row.dwPhysAddrLen ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1747:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &row2->PermanentPhysicalAddress, &row.bPhysAddr, row.dwPhysAddrLen ); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:1954:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameBuf[MAX_ADAPTER_NAME]; data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2028:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIpAddrTable, table, size); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2086:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIpForwardTable, table, size); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2133:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIpNetTable, table, size); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2415:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTcpTable, table, size); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2498:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pUdpTable, table, size); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2546:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row->InterfaceLuid, &aa->Luid, sizeof(aa->Luid)); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2622:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row->Address, ua->Address.lpSockaddr, ua->Address.iSockaddrLength); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:2623:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row->InterfaceLuid, &aa->Luid, sizeof(aa->Luid)); data/wine-5.0/dlls/iphlpapi/iphlpapi_main.c:3224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[IF_MAX_STRING_SIZE + 1]; data/wine-5.0/dlls/iphlpapi/ipstats.c:222:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( "/dev/arp", O_RDWR )) == -1) data/wine-5.0/dlls/iphlpapi/ipstats.c:296:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/dev", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:299:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:429:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:432:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:602:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp6", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:642:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr, *value; data/wine-5.0/dlls/iphlpapi/ipstats.c:782:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp6", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:807:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr, *value; data/wine-5.0/dlls/iphlpapi/ipstats.c:843:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:846:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:1030:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:1034:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:1189:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp6", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:1200:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr, *value; data/wine-5.0/dlls/iphlpapi/ipstats.c:1236:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/snmp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:1239:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:1346:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &table->table[table->dwNumEntries++], row, sizeof(*row) ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1399:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/route", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:1401:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:1443:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/iphlpapi/ipstats.c:1465:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, entry->ipRouteIfIndex.o_bytes, namelen ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1616:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &table->table[table->dwNumEntries++], row, sizeof(*row) ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1666:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/arp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:1668:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:1715:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/iphlpapi/ipstats.c:1724:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( row.bPhysAddr, entry->ipNetToMediaPhysAddress.o_bytes, row.dwPhysAddrLen ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1728:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, entry->ipNetToMediaIfIndex.o_bytes, namelen ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1781:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( row.bPhysAddr, &sdl->sdl_data[sdl->sdl_nlen], row.dwPhysAddrLen ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1867:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)table->table + (table->dwNumEntries * row_size), row, row_size ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1972:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char socket[32]; data/wine-5.0/dlls/iphlpapi/ipstats.c:1974:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( socket, "socket:[%lu]", inode ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1978:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[32]; data/wine-5.0/dlls/iphlpapi/ipstats.c:1982:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( dir, "/proc/%u/fd", map[i].unix_pid ); data/wine-5.0/dlls/iphlpapi/ipstats.c:1987:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link[sizeof(dirent->d_name) + 32], name[32]; data/wine-5.0/dlls/iphlpapi/ipstats.c:2027:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errbuf[_POSIX2_LINE_MAX]; data/wine-5.0/dlls/iphlpapi/ipstats.c:2130:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/net/tcp", "r"))) data/wine-5.0/dlls/iphlpapi/ipstats.c:2132:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:2416:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)table->table + (table->dwNumEntries * row_size), row, row_size ); data/wine-5.0/dlls/iphlpapi/ipstats.c:2451:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen( "/proc/net/udp", "r" ))) data/wine-5.0/dlls/iphlpapi/ipstats.c:2453:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:2661:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)table->table + (table->dwNumEntries * row_size), row, row_size ); data/wine-5.0/dlls/iphlpapi/ipstats.c:2694:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/ipstats.c:2696:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen( "/proc/net/if_inet6", "r" ))) data/wine-5.0/dlls/iphlpapi/ipstats.c:2791:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen( "/proc/net/udp6", "r" ))) data/wine-5.0/dlls/iphlpapi/ipstats.c:2793:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:172:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[40]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:175:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%u.%u.%u.%u", (ip >> 24) & 0xff, (ip >> 16) & 0xff, (ip >> 8) & 0xff, ip & 0xff ); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:181:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[40]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:190:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. buf += sprintf( buf, "%x", htons(p[i]) ); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:327:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_INTERFACE_NAME_LEN]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:385:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:893:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[40]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:970:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char senddata[32], replydata[sizeof(senddata) + sizeof(ICMP_ECHO_REPLY)]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1440:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[128], buf[39]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1453:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(temp + i * 3, "%02X-", aa->PhysicalAddress[i]); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1487:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(temp + strlen(temp), "%d ", aa->ZoneIndices[i]); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1508:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}", data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1622:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char remote_ip[16]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1768:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[IF_MAX_STRING_SIZE + 1], *name; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2112:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row.InterfaceLuid, &aa->Luid, sizeof(aa->Luid)); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2113:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row.Address, ua->Address.lpSockaddr, ua->Address.iSockaddrLength); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2120:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&row.Address, ua->Address.lpSockaddr, ua->Address.iSockaddrLength); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2281:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[32]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2299:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[32]; data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2333:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ipv4_address_tests[i].str, sizeof(ipv4_address_tests[i].str), data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:2359:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ipv4_service_tests[i].str, sizeof(ipv4_service_tests[i].str), data/wine-5.0/dlls/itss/chm_lib.c:116:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, (*pData), count); data/wine-5.0/dlls/itss/chm_lib.c:129:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, (*pData), count); data/wine-5.0/dlls/itss/chm_lib.c:240:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; /* 0 (ITSF) */ data/wine-5.0/dlls/itss/chm_lib.c:316:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; /* 0 (ITSP) */ data/wine-5.0/dlls/itss/chm_lib.c:370:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char _chm_pmgl_marker[4] = "PMGL"; data/wine-5.0/dlls/itss/chm_lib.c:374:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; /* 0 (PMGL) */ data/wine-5.0/dlls/itss/chm_lib.c:404:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char _chm_pmgi_marker[4] = "PMGI"; data/wine-5.0/dlls/itss/chm_lib.c:408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; /* 0 (PMGI) */ data/wine-5.0/dlls/itss/chm_lib.c:474:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; /* 4 (LZXC) */ data/wine-5.0/dlls/itss/chm_lib.c:680:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char sbuffer[256]; data/wine-5.0/dlls/itss/chm_lib.c:936:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD length = MultiByteToWideChar(CP_UTF8, 0, (char *)*pEntry, count, path, CHM_MAX_PATHLEN); data/wine-5.0/dlls/itss/chm_lib.c:1316:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, data/wine-5.0/dlls/itss/chm_lib.c:1336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ubuffer+nOffset, (unsigned int)nLen); data/wine-5.0/dlls/itss/lzx.c:728:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(window + window_posn, inpos, (size_t) this_run); data/wine-5.0/dlls/itss/lzx.c:740:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outpos, window + ((!window_posn) ? window_size : window_posn) - outlen, (size_t) outlen); data/wine-5.0/dlls/itss/lzx.c:790:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int w = atoi(v[1]); data/wine-5.0/dlls/itss/lzx.c:792:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(v[2], "wb"); data/wine-5.0/dlls/itss/lzx.c:795:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fin = fopen(v[i], "rb"); data/wine-5.0/dlls/itss/protocol.c:255:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_name, ptr, len*sizeof(WCHAR)); data/wine-5.0/dlls/itss/protocol.c:517:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, pwzBaseUrl, (base_end-pwzBaseUrl)*sizeof(WCHAR)); data/wine-5.0/dlls/itss/tests/protocol.c:110:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, bufs[i], 128); data/wine-5.0/dlls/jscript/array.c:301:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, sep, seplen*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/array.c:770:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmpbuf, sorttab+i, k*sizeof(jsval_t*)); data/wine-5.0/dlls/jscript/array.c:790:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sorttab+i+a+b, tmpbuf+a, (k-a)*sizeof(jsval_t*)); data/wine-5.0/dlls/jscript/decode.c:31:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pick_encoding[64] = { data/wine-5.0/dlls/jscript/error.c:392:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/function.c:642:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, native_prefixW, sizeof(native_prefixW)); data/wine-5.0/dlls/jscript/function.c:644:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, function->name, name_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/function.c:646:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, native_suffixW, sizeof(native_suffixW)); data/wine-5.0/dlls/jscript/function.c:848:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(call_args, function->args, function->argc * sizeof(*call_args)); data/wine-5.0/dlls/jscript/function.c:850:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(call_args + function->argc, argv, argc * sizeof(*call_args)); data/wine-5.0/dlls/jscript/function.c:958:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, function_anonymousW, sizeof(function_anonymousW)); data/wine-5.0/dlls/jscript/function.c:969:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, function_beginW, sizeof(function_beginW)); data/wine-5.0/dlls/jscript/function.c:973:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, function_endW, sizeof(function_endW)); data/wine-5.0/dlls/jscript/global.c:612:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4]; data/wine-5.0/dlls/jscript/global.c:679:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4]; data/wine-5.0/dlls/jscript/global.c:706:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). res = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, buf, i+1, &out, 1); data/wine-5.0/dlls/jscript/global.c:737:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). res = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, buf, i+1, ret, 1); data/wine-5.0/dlls/jscript/global.c:761:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4]; data/wine-5.0/dlls/jscript/global.c:845:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char octets[4]; data/wine-5.0/dlls/jscript/global.c:878:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, octets, data/wine-5.0/dlls/jscript/global.c:901:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char octets[4]; data/wine-5.0/dlls/jscript/global.c:914:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_UTF8, MB_ERR_INVALID_CHARS, octets, data/wine-5.0/dlls/jscript/jscript.h:81:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/jscript/json.c:90:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/json.c:390:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->buf + ctx->buf_len, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsstr.c:93:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, buf, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsstr.c:117:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, jsstr_as_inline(str)->buf+off, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsstr.c:120:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, jsstr_as_heap(str)->buf+off, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsstr.h:149:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, jsstr_as_inline(str)->buf, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsstr.h:151:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, jsstr_as_heap(str)->buf, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/jsutils.c:138:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, mem, size); data/wine-5.0/dlls/jscript/lex.c:333:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wstr, ptr, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/lex.c:364:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(unescape_str, ptr, len * sizeof(WCHAR)); data/wine-5.0/dlls/jscript/lex.c:841:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_v->name, name, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/regexp.c:1967:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result + 1, gData->stateStack, data/wine-5.0/dlls/jscript/regexp.c:1971:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(result + 1) + data/wine-5.0/dlls/jscript/regexp.c:3034:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(gData->stateStack, backTrackData + 1, data/wine-5.0/dlls/jscript/regexp.c:3039:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&x->parens[backTrackData->parenIndex], data/wine-5.0/dlls/jscript/string.c:180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tagname, tagname_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/string.c:189:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tagname, tagname_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/string.c:226:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tagname, tagname_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/string.c:229:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, attrname, attrname_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/string.c:240:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, tagname, tagname_len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/string.c:704:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->buf+buf->len, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/jscript/tests/jscript.c:1132:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"queryinterface"); data/wine-5.0/dlls/jscript/tests/jscript.c:1144:9: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"Math"); data/wine-5.0/dlls/jscript/tests/jscript.c:1183:9: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"Invoke"); data/wine-5.0/dlls/jscript/tests/jscript.c:1280:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"not_found"); data/wine-5.0/dlls/jscript/tests/jscript.c:1292:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"addRef"); data/wine-5.0/dlls/jscript/tests/jscript.c:1317:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"JScriptTypeInfo"); data/wine-5.0/dlls/jscript/tests/jscript.c:1333:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"IDispatch"); data/wine-5.0/dlls/jscript/tests/run.c:2111:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, file_map, size, NULL, 0); data/wine-5.0/dlls/jscript/tests/run.c:2113:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file_map, size, ret, len); data/wine-5.0/dlls/jscript/tests/run.c:2151:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, data, size, NULL, 0); data/wine-5.0/dlls/jscript/tests/run.c:2153:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data, size, str, len); data/wine-5.0/dlls/jsproxy/main.c:75:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int dst_len = MultiByteToWideChar( CP_ACP, 0, src, len, NULL, 0 ); data/wine-5.0/dlls/jsproxy/main.c:78:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, src, len, dst, dst_len ); data/wine-5.0/dlls/jsproxy/main.c:133:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, buffer, size, NULL, 0 ); data/wine-5.0/dlls/jsproxy/main.c:135:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buffer, size, script, len ); data/wine-5.0/dlls/jsproxy/main.c:147:74: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). BOOL WINAPI JSPROXY_InternetInitializeAutoProxyDll( DWORD version, LPSTR tmpfile, LPSTR mime, data/wine-5.0/dlls/jsproxy/main.c:153:56: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). TRACE( "%u, %s, %s, %p, %p\n", version, debugstr_a(tmpfile), debugstr_a(mime), callbacks, buffer ); data/wine-5.0/dlls/jsproxy/main.c:174:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if ((global_script->text = load_script( tmpfile ))) ret = TRUE; data/wine-5.0/dlls/jsproxy/main.c:486:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, data, size, NULL, 0 ); data/wine-5.0/dlls/jsproxy/main.c:488:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, data, size, ret, len ); data/wine-5.0/dlls/kerberos/krb5_ap.c:196:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(kerberos_name, MICROSOFT_KERBEROS_NAME_A, sizeof(MICROSOFT_KERBEROS_NAME_A)); data/wine-5.0/dlls/kerberos/krb5_ap.c:247:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, utf8, -1, NULL, 0); data/wine-5.0/dlls/kerberos/krb5_ap.c:250:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, utf8, -1, wstr, len); data/wine-5.0/dlls/kerberos/krb5_ap.c:1069:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output->pBuffers[idx].pvBuffer, output_token.value, output_token.length ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1139:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output->pBuffers[idx].pvBuffer, output_token.value, output_token.length ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Name, info->Name, size_name ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1195:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Comment, info->Comment, size_comment ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1368:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( message->pBuffers[token_idx].pvBuffer, token_buffer.value, token_buffer.length ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1447:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( message->pBuffers[token_idx].pvBuffer, iov[3].buffer.value, iov[3].buffer.length ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1480:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( message->pBuffers[data_idx].pvBuffer, output.value, len_data ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1481:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( message->pBuffers[token_idx].pvBuffer, (char *)output.value + len_data, output.length - len_data ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1566:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( input.value, message->pBuffers[data_idx].pvBuffer, len_data ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1567:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)input.value + len_data, message->pBuffers[token_idx].pvBuffer, len_token ); data/wine-5.0/dlls/kerberos/krb5_ap.c:1576:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( message->pBuffers[data_idx].pvBuffer, output.value, len_data ); data/wine-5.0/dlls/kernel32/actctx.c:60:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pActCtx->lpSource, -1, NULL, 0); data/wine-5.0/dlls/kernel32/actctx.c:63:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pActCtx->lpSource, -1, src, len); data/wine-5.0/dlls/kernel32/actctx.c:73:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pActCtx->lpAssemblyDirectory, -1, NULL, 0); data/wine-5.0/dlls/kernel32/actctx.c:76:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pActCtx->lpAssemblyDirectory, -1, assdir, len); data/wine-5.0/dlls/kernel32/actctx.c:83:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pActCtx->lpResourceName, -1, NULL, 0); data/wine-5.0/dlls/kernel32/actctx.c:86:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pActCtx->lpResourceName, -1, resname, len); data/wine-5.0/dlls/kernel32/actctx.c:93:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pActCtx->lpApplicationName, -1, NULL, 0); data/wine-5.0/dlls/kernel32/actctx.c:96:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pActCtx->lpApplicationName, -1, appname, len); data/wine-5.0/dlls/kernel32/actctx.c:134:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpSearchStr, -1, NULL, 0); data/wine-5.0/dlls/kernel32/actctx.c:136:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSearchStr, -1, search_str, len); data/wine-5.0/dlls/kernel32/atom.c:117:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, strlen(str), buffer, MAX_ATOM_LEN ); data/wine-5.0/dlls/kernel32/atom.c:152:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, buffer, MAX_ATOM_LEN + 1 ); data/wine-5.0/dlls/kernel32/atom.c:256:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, strlen(str), buffer, MAX_ATOM_LEN ); data/wine-5.0/dlls/kernel32/atom.c:283:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, buffer, MAX_ATOM_LEN + 1 ); data/wine-5.0/dlls/kernel32/atom.c:349:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_ATOM_LEN + 1]; data/wine-5.0/dlls/kernel32/atom.c:353:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, tmp, c); data/wine-5.0/dlls/kernel32/atom.c:385:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_ATOM_LEN + 1]; data/wine-5.0/dlls/kernel32/atom.c:389:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, tmp, c); data/wine-5.0/dlls/kernel32/atom.c:408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ptr[sizeof(ATOM_BASIC_INFORMATION) + MAX_ATOM_LEN * sizeof(WCHAR)]; data/wine-5.0/dlls/kernel32/atom.c:422:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, abi->Name, length * sizeof(WCHAR) ); data/wine-5.0/dlls/kernel32/atom.c:456:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (length) memcpy(buffer, tmp, length); data/wine-5.0/dlls/kernel32/comm.c:581:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpszDevice, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/comm.c:583:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpszDevice, -1, lpDeviceW, len ); data/wine-5.0/dlls/kernel32/comm.c:674:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpszDevice, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/comm.c:676:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpszDevice, -1, lpDeviceW, len ); data/wine-5.0/dlls/kernel32/computername.c:131:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[offsetof( KEY_VALUE_PARTIAL_INFORMATION, Data ) + (MAX_COMPUTERNAME_LENGTH + 1) * sizeof( WCHAR )]; data/wine-5.0/dlls/kernel32/computername.c:135:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hbuf[256]; data/wine-5.0/dlls/kernel32/computername.c:140:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, hbuf, -1, bufW, ARRAY_SIZE(bufW) ); data/wine-5.0/dlls/kernel32/computername.c:256:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, hostname, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/computername.c:258:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, hostname, -1, hostW, len ); data/wine-5.0/dlls/kernel32/console.c:349:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input[8]; data/wine-5.0/dlls/kernel32/console.c:407:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). idxw = MultiByteToWideChar(CP_UNIXCP, 0, input, idx, inputw, ARRAY_SIZE(inputw)); data/wine-5.0/dlls/kernel32/console.c:498:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( GetConsoleOutputCP(), 0, title, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/console.c:500:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( GetConsoleOutputCP(), 0, title, -1, titleW, len ); data/wine-5.0/dlls/kernel32/console.c:579:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/kernel32/console.c:655:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/kernel32/console.c:807:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(xbuf, &S_EditString[S_EditStrPos], charsread * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/console.c:1195:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar( cp, 0, buffer, length, NULL, 0 ); data/wine-5.0/dlls/kernel32/console.c:1197:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, buffer, length, strW, lenW ); data/wine-5.0/dlls/kernel32/console.c:1752:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fontinfo->FaceName, data.face_name, len ); data/wine-5.0/dlls/kernel32/debugger.c:115:25: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1]; data/wine-5.0/dlls/kernel32/debugger.c:120:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mon_buffer->buffer, str, str_len ); data/wine-5.0/dlls/kernel32/editline.c:325:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ctx->line[ctx->ofs], str, len * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/editline.c:355:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->yanked, &ctx->line[beg], len * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/editline.c:422:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->histCurr, ctx->line, (ctx->len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/editline.c:586:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, &ctx->line[ctx->ofs], len_r * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/editline.c:588:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ctx->line[left_ofs], tmp, len_r * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/file.c:376:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (((char *)buffer)[0] == 26 || ((char *)buffer)[0] == 4)) data/wine-5.0/dlls/kernel32/file.c:376:45: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (((char *)buffer)[0] == 26 || ((char *)buffer)[0] == 4)) data/wine-5.0/dlls/kernel32/file.c:1019:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, ptr, (result + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/format_msg.c:88:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, mre->Text, len ); data/wine-5.0/dlls/kernel32/format_msg.c:92:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, (const char *)mre->Text, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/format_msg.c:94:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (const char*)mre->Text, -1, buffer, len ); data/wine-5.0/dlls/kernel32/format_msg.c:161:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD length = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/format_msg.c:163:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, *result, length ); data/wine-5.0/dlls/kernel32/format_msg.c:212:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, (char *)arg, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/format_msg.c:214:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (char *)arg, -1, wstring, len ); data/wine-5.0/dlls/kernel32/format_msg.c:226:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, &ch, 1, wstring, 1 ); data/wine-5.0/dlls/kernel32/format_msg.c:500:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD length = MultiByteToWideChar(CP_ACP, 0, lpSource, -1, NULL, 0); data/wine-5.0/dlls/kernel32/format_msg.c:502:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSource, -1, from, length); data/wine-5.0/dlls/kernel32/lcformat.c:136:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, szBuff, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:688:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpStr + cchWritten, szAdd, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:691:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpStr + cchWritten, szAdd, (cchOut - cchWritten) * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:776:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat, -1, szFormat, ARRAY_SIZE(szFormat)); data/wine-5.0/dlls/kernel32/lcformat.c:1066:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat->lpDecimalSep, -1, szDec, ARRAY_SIZE(szDec)); data/wine-5.0/dlls/kernel32/lcformat.c:1071:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat->lpThousandSep, -1, szGrp, ARRAY_SIZE(szGrp)); data/wine-5.0/dlls/kernel32/lcformat.c:1077:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpszValue, -1, szIn, ARRAY_SIZE(szIn)); data/wine-5.0/dlls/kernel32/lcformat.c:1331:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNumberStr, szOut, iRet * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:1334:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNumberStr, szOut, cchOut * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:1430:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat->lpDecimalSep, -1, szDec, ARRAY_SIZE(szDec)); data/wine-5.0/dlls/kernel32/lcformat.c:1435:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat->lpThousandSep, -1, szGrp, ARRAY_SIZE(szGrp)); data/wine-5.0/dlls/kernel32/lcformat.c:1440:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpFormat->lpCurrencySymbol, -1, szCy, ARRAY_SIZE(szCy)); data/wine-5.0/dlls/kernel32/lcformat.c:1446:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, lpszValue, -1, szIn, ARRAY_SIZE(szIn)); data/wine-5.0/dlls/kernel32/lcformat.c:1743:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCurrencyStr, szOut, iRet * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/lcformat.c:1746:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCurrencyStr, szOut, cchOut * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/locale.c:257:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( codepage, 0, data, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/locale.c:263:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( codepage, 0, data, -1, strW, len ); data/wine-5.0/dlls/kernel32/locale.c:310:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpinfo, &cpinfoW, sizeof(CPINFOEXA)); data/wine-5.0/dlls/kernel32/locale.c:376:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). srclenW = MultiByteToWideChar(CP_ACP, 0, src, srclen, NULL, 0); data/wine-5.0/dlls/kernel32/locale.c:385:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, srclen, srcW, srclenW); data/wine-5.0/dlls/kernel32/locale.c:615:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpASCIICharStr+out, norm_str+label_start, b*sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/locale.c:629:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpASCIICharStr+out, prefixW, sizeof(prefixW)); data/wine-5.0/dlls/kernel32/locale.c:798:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNameprepCharStr+out, lpUnicodeCharStr+label_start, data/wine-5.0/dlls/kernel32/locale.c:869:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNameprepCharStr+out, norm_str, norm_len*sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/locale.c:984:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpUnicodeCharStr+out, lpASCIICharStr+label_start, data/wine-5.0/dlls/kernel32/locale.c:1001:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpUnicodeCharStr+out, lpASCIICharStr+label_start+4, data/wine-5.0/dlls/kernel32/lzexpand.c:144:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(head->magic,buf,LZ_MAGIC_LEN); data/wine-5.0/dlls/kernel32/lzexpand.c:145:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(head->compressiontype),buf+LZ_MAGIC_LEN,1); data/wine-5.0/dlls/kernel32/lzexpand.c:146:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(head->lastchar),buf+LZ_MAGIC_LEN+1,1); data/wine-5.0/dlls/kernel32/lzexpand.c:149:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(head->reallength),buf+LZ_MAGIC_LEN+2,4); data/wine-5.0/dlls/kernel32/lzexpand.c:318:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, xout, -1, out, strlenW(in)+4 ); data/wine-5.0/dlls/kernel32/lzexpand.c:525:10: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. else strcat( mfn, "._" ); /* append "._" */ data/wine-5.0/dlls/kernel32/path.c:200:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( Buffer + DataSize, source_name.Buffer, len1 ); data/wine-5.0/dlls/kernel32/path.c:207:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, dest_name.Buffer, len2 ); data/wine-5.0/dlls/kernel32/process.c:233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/process.c:249:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, params->lpCmdLine + 1, len ); data/wine-5.0/dlls/kernel32/process.c:626:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpExeName, device, devlen * sizeof(*device)); data/wine-5.0/dlls/kernel32/process.c:627:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpExeName + devlen, result->Buffer + 2, result->Length - 2 * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/process.c:640:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpExeName, result->Buffer, result->Length ); data/wine-5.0/dlls/kernel32/profile.c:96:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex[16] = "0123456789ABCDEF"; data/wine-5.0/dlls/kernel32/profile.c:346:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pBuffer, dwFileSize, NULL, 0); data/wine-5.0/dlls/kernel32/profile.c:353:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pBuffer, dwFileSize, szFile, len); data/wine-5.0/dlls/kernel32/profile.c:359:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, pBuffer, dwFileSize, NULL, 0); data/wine-5.0/dlls/kernel32/profile.c:366:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, pBuffer, dwFileSize, szFile, len); data/wine-5.0/dlls/kernel32/profile.c:435:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(section->name, szLineStart, len * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:467:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->name, szLineStart, len * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:473:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->value, szValueStart, len * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:937:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, section->name, (buflen-1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:944:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, section->name, tmplen * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:1111:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(defval_tmp, def_val, vlen * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/profile.c:1480:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_ACP, 0, string, lenA, NULL, 0); data/wine-5.0/dlls/kernel32/profile.c:1482:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, string, lenA, stringW, lenW); data/wine-5.0/dlls/kernel32/resource.c:267:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, str, len ); data/wine-5.0/dlls/kernel32/resource.c:341:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( resdata->lpData, lpData, cbData ); data/wine-5.0/dlls/kernel32/resource.c:532:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s, string->NameString, (string->Length + 1)*sizeof (WCHAR) ); data/wine-5.0/dlls/kernel32/resource.c:782:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &res_base[i*sizeof pad], pad, sizeof pad ); data/wine-5.0/dlls/kernel32/resource.c:783:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &res_base[i*sizeof pad], pad, size%sizeof pad ); data/wine-5.0/dlls/kernel32/resource.c:820:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &strings[1], types->id, len * sizeof (WCHAR) ); data/wine-5.0/dlls/kernel32/resource.c:856:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &strings[1], names->id, len * sizeof (WCHAR) ); data/wine-5.0/dlls/kernel32/resource.c:896:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &base[si->data_ofs], data->lpData, data->cbData ); data/wine-5.0/dlls/kernel32/resource.c:1050:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sec->Name, ".rsrc", 5 ); data/wine-5.0/dlls/kernel32/sync.c:203:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:238:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:256:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:298:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:336:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:410:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:428:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:470:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:488:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:515:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:534:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernel32/sync.c:656:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_UNIXCP, 0, username, -1, lpUsername, nUsernameMaxSize); data/wine-5.0/dlls/kernel32/sync.c:710:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpNamedPipeName, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/sync.c:712:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpNamedPipeName, -1, str, len ); data/wine-5.0/dlls/kernel32/sync.c:739:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpName, -1, NULL, 0 ); data/wine-5.0/dlls/kernel32/sync.c:741:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpName, -1, name, len ); data/wine-5.0/dlls/kernel32/term.c:374:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[64]; data/wine-5.0/dlls/kernel32/term.c:378:41: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (!TERM_AddKeyDescr(tigetstr((char *)TERM_dbkey_init[i].string_normal), &TERM_dbkey_init[i].descr)) data/wine-5.0/dlls/kernel32/tests/actctx.c:52:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[1024]; data/wine-5.0/dlls/kernel32/tests/actctx.c:568:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/kernel32/tests/actctx.c:574:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0) - 1; data/wine-5.0/dlls/kernel32/tests/actctx.c:584:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:600:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, depfile, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:619:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, manifest, -1, &wmanifest[1], (strlen(manifest)+1)); data/wine-5.0/dlls/kernel32/tests/actctx.c:1021:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, file, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:1052:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "bad.manifest", -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:1081:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "bad.manifest", -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:1101:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "nonexistent.manifest", -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/actctx.c:2549:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:2550:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:2559:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, ".manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:2658:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "main_wndcls.manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:2699:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(dll, "testdep1.dll"); data/wine-5.0/dlls/kernel32/tests/actctx.c:2738:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "assembly_dir"); data/wine-5.0/dlls/kernel32/tests/actctx.c:2740:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\testdir.manifest"); data/wine-5.0/dlls/kernel32/tests/actctx.c:2960:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(COMPATIBILITY_CONTEXT_ELEMENT) * 2 + sizeof(DWORD)]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3209:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3210:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3211:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_exe[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_dll[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3308:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3335:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll_local[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3336:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_application[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3338:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll_local[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3376:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_application[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3378:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3416:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll_local[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3417:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3454:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3457:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_msvcp[MAX_PATH], path_msvcr[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3541:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3542:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exe[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/actctx.c:3587:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int run = atoi(argv[3]); data/wine-5.0/dlls/kernel32/tests/atom.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/kernel32/tests/atom.c:142:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char in[257], out[257]; data/wine-5.0/dlls/kernel32/tests/atom.c:185:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char res[20]; data/wine-5.0/dlls/kernel32/tests/atom.c:187:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( res, "#%d", i ); data/wine-5.0/dlls/kernel32/tests/atom.c:303:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[260]; data/wine-5.0/dlls/kernel32/tests/atom.c:395:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10], in[257], out[257]; data/wine-5.0/dlls/kernel32/tests/atom.c:459:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char res[20]; data/wine-5.0/dlls/kernel32/tests/atom.c:461:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( res, "#%d", i ); data/wine-5.0/dlls/kernel32/tests/atom.c:569:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[260]; data/wine-5.0/dlls/kernel32/tests/change.c:93:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workdir[MAX_PATH], dirname1[MAX_PATH], dirname2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/change.c:94:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename1[MAX_PATH], filename2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/change.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2048]; data/wine-5.0/dlls/kernel32/tests/change.c:375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_PATH], path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/change.c:416:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/dlls/kernel32/tests/change.c:669:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/dlls/kernel32/tests/change.c:768:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/dlls/kernel32/tests/change.c:1068:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workdir[MAX_PATH], parentdir[MAX_PATH], childdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/change.c:1069:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/codepage.c:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/kernel32/tests/codepage.c:133:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, "foobar", -2002, bufW, 10); data/wine-5.0/dlls/kernel32/tests/codepage.c:139:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, "foobar", -1, bufW, 6); data/wine-5.0/dlls/kernel32/tests/codepage.c:149:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char bufA[LONGBUFLEN]; data/wine-5.0/dlls/kernel32/tests/codepage.c:151:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char originalA[LONGBUFLEN]; data/wine-5.0/dlls/kernel32/tests/codepage.c:163:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, foobarA, -1, bufW, -1); data/wine-5.0/dlls/kernel32/tests/codepage.c:176:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, foobarA, -1000, bufW, -1); data/wine-5.0/dlls/kernel32/tests/codepage.c:222:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0x10, c_string, -1, w_string, w_string_len); data/wine-5.0/dlls/kernel32/tests/codepage.c:232:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(0xdeadbeef, 0x10, c_string, c_string_len, w_string, w_string_len); data/wine-5.0/dlls/kernel32/tests/codepage.c:242:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0x10, NULL, -1, w_string, w_string_len); data/wine-5.0/dlls/kernel32/tests/codepage.c:252:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, c_string, 0, w_string, w_string_len); data/wine-5.0/dlls/kernel32/tests/codepage.c:262:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, c_string, c_string_len, NULL, w_string_len); data/wine-5.0/dlls/kernel32/tests/codepage.c:318:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/codepage.c:325:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + 1, strW, sizeof(strW)); data/wine-5.0/dlls/kernel32/tests/codepage.c:332:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + overlap_limit, strA, sizeof(strA)); data/wine-5.0/dlls/kernel32/tests/codepage.c:333:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, buf + overlap_limit, -1, (WCHAR *)buf, sizeof(buf) / sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/tests/codepage.c:342:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbs[15]; data/wine-5.0/dlls/kernel32/tests/codepage.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[16], expected[16]; data/wine-5.0/dlls/kernel32/tests/codepage.c:514:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected_dst[16]; data/wine-5.0/dlls/kernel32/tests/codepage.c:631:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(expected, " +- "); data/wine-5.0/dlls/kernel32/tests/codepage.c:637:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, " %c ", i); data/wine-5.0/dlls/kernel32/tests/codepage.c:643:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, " +%c%c%c- ", data/wine-5.0/dlls/kernel32/tests/codepage.c:674:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(expected, "+JnI-+-+JnI-"); data/wine-5.0/dlls/kernel32/tests/codepage.c:680:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, "+JnI-%c+JnI-", i); data/wine-5.0/dlls/kernel32/tests/codepage.c:686:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, "+Jn%c%c%c%cZy-", data/wine-5.0/dlls/kernel32/tests/codepage.c:731:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input[32]; data/wine-5.0/dlls/kernel32/tests/codepage.c:750:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src[32]; data/wine-5.0/dlls/kernel32/tests/codepage.c:881:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(input, "+%c+AAA", i); data/wine-5.0/dlls/kernel32/tests/codepage.c:886:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF7, 0, input, 7, output, ARRAY_SIZE(output) - 1); data/wine-5.0/dlls/kernel32/tests/codepage.c:923:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(input, "+B%c+AAA", i); data/wine-5.0/dlls/kernel32/tests/codepage.c:928:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF7, 0, input, 8, output, ARRAY_SIZE(output) - 1); data/wine-5.0/dlls/kernel32/tests/codepage.c:978:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF7, 0, tests[i].src, tests[i].srclen, data/wine-5.0/dlls/kernel32/tests/codepage.c:1033:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(testset[i].codepage, MB_ERR_INVALID_CHARS, data/wine-5.0/dlls/kernel32/tests/codepage.c:1046:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(testset[i].codepage, 0, data/wine-5.0/dlls/kernel32/tests/codepage.c:1146:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). num = MultiByteToWideChar(CP_ACP, 0, "foobar", -1, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1166:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). num = MultiByteToWideChar(CP_THREAD_ACP, 0, "foobar", -1, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1218:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 2, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1219:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count2 = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 2, wbuf, count); data/wine-5.0/dlls/kernel32/tests/codepage.c:1230:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 3, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1232:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count2 = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 3, wbuf, count); data/wine-5.0/dlls/kernel32/tests/codepage.c:1256:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 4, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1258:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count2 = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 4, wbuf, count); data/wine-5.0/dlls/kernel32/tests/codepage.c:1285:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 5, NULL, 0); data/wine-5.0/dlls/kernel32/tests/codepage.c:1287:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count2 = MultiByteToWideChar(936, flags[i], (char*)&buf[0], 5, wbuf, count); data/wine-5.0/dlls/kernel32/tests/comm.c:66:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[100]; data/wine-5.0/dlls/kernel32/tests/comm.c:583:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, string, -1, wide_string, ARRAY_SIZE(wide_string)); data/wine-5.0/dlls/kernel32/tests/comm.c:611:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, string, -1, wide_string, ARRAY_SIZE(wide_string)); data/wine-5.0/dlls/kernel32/tests/comm.c:659:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[sizeof(test[i].string)]; data/wine-5.0/dlls/kernel32/tests/comm.c:752:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rbuf[32]; data/wine-5.0/dlls/kernel32/tests/comm.c:1025:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rbuf[32]; data/wine-5.0/dlls/kernel32/tests/comm.c:2020:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/console.c:174:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char emptybuf[16]; data/wine-5.0/dlls/kernel32/tests/console.c:716:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str_buf[20]; data/wine-5.0/dlls/kernel32/tests/console.c:976:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], module[MAX_PATH], *p; data/wine-5.0/dlls/kernel32/tests/console.c:977:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char input_exe[MAX_PATH] = "winetest.exe"; data/wine-5.0/dlls/kernel32/tests/console.c:2588:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/kernel32/tests/console.c:3150:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/kernel32/tests/console.c:3215:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **argv, buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/console.c:3245:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char old_font[LF_FACESIZE]; data/wine-5.0/dlls/kernel32/tests/debugger.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/kernel32/tests/debugger.c:452:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096] = ""; data/wine-5.0/dlls/kernel32/tests/debugger.c:457:31: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). blackbox.pid=(argc >= 5 ? atol(argv[4]) : 0); data/wine-5.0/dlls/kernel32/tests/debugger.c:471:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "processing debug messages\n"); data/wine-5.0/dlls/kernel32/tests/debugger.c:475:47: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). debug_event=(argc >= 6 ? (HANDLE)(INT_PTR)atol(argv[5]) : NULL); data/wine-5.0/dlls/kernel32/tests/debugger.c:479:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "setting event\n"); data/wine-5.0/dlls/kernel32/tests/debugger.c:502:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "waiting for the start signal...\n"); data/wine-5.0/dlls/kernel32/tests/debugger.c:528:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "setting event\n"); data/wine-5.0/dlls/kernel32/tests/debugger.c:534:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "done debugging...\n"); data/wine-5.0/dlls/kernel32/tests/debugger.c:554:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dbglog[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:700:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_exe[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:709:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_exe, ".so"); data/wine-5.0/dlls/kernel32/tests/debugger.c:877:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char blackbox_file[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:950:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char event_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:966:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(event_name, "_init"); data/wine-5.0/dlls/kernel32/tests/debugger.c:975:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(event_name, "_attach"); data/wine-5.0/dlls/kernel32/tests/debugger.c:1007:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char blackbox_file[MAX_PATH], *p; data/wine-5.0/dlls/kernel32/tests/debugger.c:1008:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char event_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/debugger.c:1029:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(event_name, "_init"); data/wine-5.0/dlls/kernel32/tests/debugger.c:1036:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(event_name, "_attach"); data/wine-5.0/dlls/kernel32/tests/debugger.c:1288:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(proc_code, &loop_code, sizeof(loop_code)); data/wine-5.0/dlls/kernel32/tests/debugger.c:1322:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(proc_code, call_debug_service_code, sizeof(call_debug_service_code)); data/wine-5.0/dlls/kernel32/tests/debugger.c:1349:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(proc_code, &loop_code, sizeof(loop_code)); data/wine-5.0/dlls/kernel32/tests/directory.c:56:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/directory.c:120:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/directory.c:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/directory.c:449:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/directory.c:450:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/directory.c:548:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/environ.c:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Data[1024]; data/wine-5.0/dlls/kernel32/tests/environ.c:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Env[sizeof(Data)]; data/wine-5.0/dlls/kernel32/tests/environ.c:94:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/environ.c:288:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], buf1[256], buf2[0x8000]; data/wine-5.0/dlls/kernel32/tests/environ.c:298:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "%EnvVar%"); data/wine-5.0/dlls/kernel32/tests/environ.c:341:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "12345"); data/wine-5.0/dlls/kernel32/tests/environ.c:355:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "Indirect-%IndirectVar%-Indirect"); data/wine-5.0/dlls/kernel32/tests/environ.c:356:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf2, "Indirect-Foo%EnvVar%Bar-Indirect"); data/wine-5.0/dlls/kernel32/tests/file.c:67:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:168:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char checksum[1]; data/wine-5.0/dlls/kernel32/tests/file.c:297:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1]; data/wine-5.0/dlls/kernel32/tests/file.c:527:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:611:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10000]; data/wine-5.0/dlls/kernel32/tests/file.c:618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char checksum[1]; data/wine-5.0/dlls/kernel32/tests/file.c:696:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:697:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], dest[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:702:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/kernel32/tests/file.c:918:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/kernel32/tests/file.c:1149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1150:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], dest[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1208:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hex[49], *p; data/wine-5.0/dlls/kernel32/tests/file.c:1209:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char txt[17], *c; data/wine-5.0/dlls/kernel32/tests/file.c:1216:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "%02x ", mem[x]); data/wine-5.0/dlls/kernel32/tests/file.c:1227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], dirname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1228:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1231:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Volume_1[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1232:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[512]; data/wine-5.0/dlls/kernel32/tests/file.c:1493:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(filename, "c:\\"); data/wine-5.0/dlls/kernel32/tests/file.c:1754:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1755:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH + 10]; data/wine-5.0/dlls/kernel32/tests/file.c:1756:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdir[MAX_PATH + 10]; data/wine-5.0/dlls/kernel32/tests/file.c:1757:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdrive[3]; data/wine-5.0/dlls/kernel32/tests/file.c:1783:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expected, "abc2.tmp"); data/wine-5.0/dlls/kernel32/tests/file.c:1791:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], temp_file[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1897:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1898:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], dest[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:1984:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:2054:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], temp_fname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:2313:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sec->Name, ".rodata", sizeof(".rodata") ); data/wine-5.0/dlls/kernel32/tests/file.c:2543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:2553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5] = "C:\\"; data/wine-5.0/dlls/kernel32/tests/file.c:2554:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer2[100]; data/wine-5.0/dlls/kernel32/tests/file.c:2555:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nonexistent[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:2580:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "\\*"); data/wine-5.0/dlls/kernel32/tests/file.c:2595:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:2620:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "\\bar.txt"); data/wine-5.0/dlls/kernel32/tests/file.c:2629:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "\\*.*"); data/wine-5.0/dlls/kernel32/tests/file.c:2638:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "\\bar.txt"); data/wine-5.0/dlls/kernel32/tests/file.c:2647:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "nul"); data/wine-5.0/dlls/kernel32/tests/file.c:2667:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer2, "lpt1"); data/wine-5.0/dlls/kernel32/tests/file.c:2688:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "nul\\*"); data/wine-5.0/dlls/kernel32/tests/file.c:2697:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "nul*"); data/wine-5.0/dlls/kernel32/tests/file.c:2706:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "foo\\bar\\nul"); data/wine-5.0/dlls/kernel32/tests/file.c:2715:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer2, "foo\\nul\\bar"); data/wine-5.0/dlls/kernel32/tests/file.c:2727:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5] = "C:\\*"; data/wine-5.0/dlls/kernel32/tests/file.c:2894:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char correct[512]; data/wine-5.0/dlls/kernel32/tests/file.c:2895:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char incorrect[512]; data/wine-5.0/dlls/kernel32/tests/file.c:2896:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char missing[512]; data/wine-5.0/dlls/kernel32/tests/file.c:2904:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char quoted[16]; data/wine-5.0/dlls/kernel32/tests/file.c:2906:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( quoted, ", '%.10s'", find_data.cFileName ); data/wine-5.0/dlls/kernel32/tests/file.c:3025:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFile[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3036:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(szFile, "\\win.ini"); data/wine-5.0/dlls/kernel32/tests/file.c:3076:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3077:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3250:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff_long[4*MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3251:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filled_0xA5[OFS_MAXPATHNAME]; data/wine-5.0/dlls/kernel32/tests/file.c:3536:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char replaced[MAX_PATH], replacement[MAX_PATH], backup[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3908:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:3909:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4009:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempPath[MAX_PATH], tempFileName[MAX_PATH], buffer[1024], *strPtr; data/wine-5.0/dlls/kernel32/tests/file.c:4174:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempPath[MAX_PATH], tempFileName[MAX_PATH], buffer[256], tickCount[256]; data/wine-5.0/dlls/kernel32/tests/file.c:4198:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret2 = MultiByteToWideChar(CP_ACP, 0, tempFileName + strlen(tempPath), -1, tempFileNameW, ARRAY_SIZE(tempFileNameW)); data/wine-5.0/dlls/kernel32/tests/file.c:4205:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ret2 = sprintf(tickCount, "%u", GetTickCount()); data/wine-5.0/dlls/kernel32/tests/file.c:4281:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4415:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4670:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], fname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4671:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[16]; data/wine-5.0/dlls/kernel32/tests/file.c:4762:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], test_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4763:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char long_path[MAX_PATH], result_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4764:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dos_path[MAX_PATH + sizeof(dos_prefix)]; data/wine-5.0/dlls/kernel32/tests/file.c:4977:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempFileName[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:4978:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempPath[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:5221:63: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. DECLSPEC_ALIGN(TEST_OVERLAPPED_READ_SIZE) static unsigned char buffer[TEST_OVERLAPPED_READ_SIZE]; data/wine-5.0/dlls/kernel32/tests/file.c:5223:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:5224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/file.c:5415:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/format_msg.c:147:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:153:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:162:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:183:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:192:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:436:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:442:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:451:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:461:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:471:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:478:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:743:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1065:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(in, "first line%n"); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1066:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ref, "first line\r\n"); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1069:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(in, "123456789 "); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1070:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(ref, "123456789 "); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1122:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1132:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1142:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1164:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1176:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1187:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1561:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1580:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1590:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1600:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1613:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1620:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1627:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1645:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1664:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1674:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1684:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1697:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1704:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1711:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, init_buf, sizeof(init_buf)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1724:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outA[0x100]; data/wine-5.0/dlls/kernel32/tests/format_msg.c:1729:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char expected[32]; data/wine-5.0/dlls/kernel32/tests/format_msg.c:1741:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char expected[32]; data/wine-5.0/dlls/kernel32/tests/format_msg.c:1758:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, unsigned_tests[i].expected, -1, expW, ARRAY_SIZE(expW)); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1777:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, signed_tests[i].expected, -1, expW, ARRAY_SIZE(expW)); data/wine-5.0/dlls/kernel32/tests/heap.c:1067:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keyname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/heap.c:1068:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/heap.c:1145:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/kernel32/tests/loader.c:174:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char filler[0x1000]; data/wine-5.0/dlls/kernel32/tests/loader.c:175:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char section_data[0x10] = "section data"; data/wine-5.0/dlls/kernel32/tests/loader.c:204:66: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const IMAGE_NT_HEADERS *nt_header, char dll_name[MAX_PATH] ) data/wine-5.0/dlls/kernel32/tests/loader.c:206:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:277:40: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH] ) data/wine-5.0/dlls/kernel32/tests/loader.c:279:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:547:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, fallback_dll, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/loader.c:577:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:656:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, dll_name, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/loader.c:851:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:1461:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH], long_path[MAX_PATH], short_path[MAX_PATH], buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:1476:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( strrchr( long_path, '\\' ), "\\this-is-a-long-name.dll" ); data/wine-5.0/dlls/kernel32/tests/loader.c:1514:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( strrchr( dll_name, '\\' ), "\\this-is-another-name.dll" ); data/wine-5.0/dlls/kernel32/tests/loader.c:1873:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/loader.c:1878:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:1879:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:2050:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:2051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:2062:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[16]; data/wine-5.0/dlls/kernel32/tests/loader.c:2063:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. struct { WORD hint; char name[32]; } function; data/wine-5.0/dlls/kernel32/tests/loader.c:2065:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tls_data[16]; data/wine-5.0/dlls/kernel32/tests/loader.c:2096:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data.module, "kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/loader.c:2097:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data.function.name, "CreateEventA" ); data/wine-5.0/dlls/kernel32/tests/loader.c:2104:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( data.tls_data, "hello world" ); data/wine-5.0/dlls/kernel32/tests/loader.c:2114:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( section.Name, ".text", sizeof(".text") ); data/wine-5.0/dlls/kernel32/tests/loader.c:2985:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], dll_name[MAX_PATH], cmdline[MAX_PATH * 2]; data/wine-5.0/dlls/kernel32/tests/loader.c:2987:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **argv, buf[256]; data/wine-5.0/dlls/kernel32/tests/loader.c:3518:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:3519:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:3828:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/loader.c:3874:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/loader.c:3977:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). test_dll_phase = atoi(argv[4]); data/wine-5.0/dlls/kernel32/tests/loader.c:3978:32: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). child_process(argv[2], atol(argv[3])); data/wine-5.0/dlls/kernel32/tests/locale.c:149:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). #define STRINGSW(x,y) MultiByteToWideChar(CP_ACP,0,x,-1,input,ARRAY_SIZE(input)); \ data/wine-5.0/dlls/kernel32/tests/locale.c:150:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,y,-1,Expected,ARRAY_SIZE(Expected)); \ data/wine-5.0/dlls/kernel32/tests/locale.c:162:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:163:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:420:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE], input[BUFFER_SIZE], Expected[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:473:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(Expected, "8:56 AM"); data/wine-5.0/dlls/kernel32/tests/locale.c:552:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "text"); data/wine-5.0/dlls/kernel32/tests/locale.c:812:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE], input[BUFFER_SIZE], Expected[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:813:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Broken[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:814:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char short_day[10], month[10], genitive_month[10]; data/wine-5.0/dlls/kernel32/tests/locale.c:1154:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE], Expected[BUFFER_SIZE], input[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:1410:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE], Expected[BUFFER_SIZE], input[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/locale.c:1828:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char a[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:2236:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, e->locale, -1, locale, ARRAY_SIZE(locale)); data/wine-5.0/dlls/kernel32/tests/locale.c:2276:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], buf2[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:3061:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key1[256], key2[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:3070:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:3077:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, strings, sizeof(strings)); data/wine-5.0/dlls/kernel32/tests/locale.c:3085:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, strings, sizeof(strings)); data/wine-5.0/dlls/kernel32/tests/locale.c:3093:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, strings, sizeof(strings)); data/wine-5.0/dlls/kernel32/tests/locale.c:3106:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src[256], dst[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:3167:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[4]; data/wine-5.0/dlls/kernel32/tests/locale.c:3885:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char date_fmt_buf[1024]; data/wine-5.0/dlls/kernel32/tests/locale.c:3903:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buf[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:3983:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buf[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:4036:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/kernel32/tests/locale.c:4938:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[20]; data/wine-5.0/dlls/kernel32/tests/locale.c:5253:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFFER_SIZE]; data/wine-5.0/dlls/kernel32/tests/mailslot.c:35:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[16]; data/wine-5.0/dlls/kernel32/tests/module.c:49:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( AreFileApisANSI() ? CP_ACP : CP_OEMCP, 0, data/wine-5.0/dlls/kernel32/tests/module.c:141:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/module.c:195:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/module.c:238:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/module.c:251:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path1, "\\system\\"); data/wine-5.0/dlls/kernel32/tests/module.c:261:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path2, "\\system32\\"); data/wine-5.0/dlls/kernel32/tests/module.c:486:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, path[MAX_PATH], buf[MAX_PATH], curdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/module.c:501:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u", i ); data/wine-5.0/dlls/kernel32/tests/module.c:505:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u\\winetestdll.dll", i ); data/wine-5.0/dlls/kernel32/tests/module.c:519:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( path, "%c:1\\winetestdll.dll", buf[0] ); data/wine-5.0/dlls/kernel32/tests/module.c:537:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( p, "\\1" ); data/wine-5.0/dlls/kernel32/tests/module.c:546:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( path, "%c:winetestdll.dll", buf[0] ); data/wine-5.0/dlls/kernel32/tests/module.c:655:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u", tests[j].add_dirs[k] ); data/wine-5.0/dlls/kernel32/tests/module.c:656:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buf, -1, bufW, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/module.c:662:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u", tests[j].dll_dir ); data/wine-5.0/dlls/kernel32/tests/module.c:673:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u\\winetestdll.dll", tests[j].expect ); data/wine-5.0/dlls/kernel32/tests/module.c:690:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u\\winetestdll.dll", i ); data/wine-5.0/dlls/kernel32/tests/module.c:692:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "\\%u", i ); data/wine-5.0/dlls/kernel32/tests/path.c:364:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"pat%.4x.tmp",id & 0xffff); data/wine-5.0/dlls/kernel32/tests/path.c:365:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"pat%x.tmp",id & 0xffff); data/wine-5.0/dlls/kernel32/tests/path.c:376:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%.4x.tmp",id & 0xffff); data/wine-5.0/dlls/kernel32/tests/path.c:377:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"%x.tmp",id & 0xffff); data/wine-5.0/dlls/kernel32/tests/path.c:427:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%c:", *curDrive); data/wine-5.0/dlls/kernel32/tests/path.c:432:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%c:\\", *curDrive); data/wine-5.0/dlls/kernel32/tests/path.c:481:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foo" ); data/wine-5.0/dlls/kernel32/tests/path.c:486:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foo" ); data/wine-5.0/dlls/kernel32/tests/path.c:491:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foo" ); data/wine-5.0/dlls/kernel32/tests/path.c:496:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foo" ); data/wine-5.0/dlls/kernel32/tests/path.c:501:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foo" ); data/wine-5.0/dlls/kernel32/tests/path.c:550:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr, "%c:", newdir[0]); data/wine-5.0/dlls/kernel32/tests/path.c:553:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr, "%c:\\", newdir[0]); data/wine-5.0/dlls/kernel32/tests/path.c:581:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH], shortbuf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:632:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(dir,"%c:",curDrive); data/wine-5.0/dlls/kernel32/tests/path.c:786:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%c:",curdir[0]); data/wine-5.0/dlls/kernel32/tests/path.c:894:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-1",i); data/wine-5.0/dlls/kernel32/tests/path.c:895:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"file%c000.ext",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:897:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-2",i); data/wine-5.0/dlls/kernel32/tests/path.c:898:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"file000.e%ct",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:900:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-3",i); data/wine-5.0/dlls/kernel32/tests/path.c:901:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%cfile000.ext",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:903:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-4",i); data/wine-5.0/dlls/kernel32/tests/path.c:904:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"file000%c.ext",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:906:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-5",i); data/wine-5.0/dlls/kernel32/tests/path.c:907:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"Long %c File",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:909:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-6",i); data/wine-5.0/dlls/kernel32/tests/path.c:910:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"%c Long File",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:912:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr1,"check%d-7",i); data/wine-5.0/dlls/kernel32/tests/path.c:913:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmpstr,"Long File %c",funny_chars[i]); data/wine-5.0/dlls/kernel32/tests/path.c:943:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:999:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tmp_dir, -1, tmp_dirW, ARRAY_SIZE(tmp_dirW)); data/wine-5.0/dlls/kernel32/tests/path.c:1057:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp_var[64]; data/wine-5.0/dlls/kernel32/tests/path.c:1100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char save_TMP[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1101:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[MAX_PATH], *name; data/wine-5.0/dlls/kernel32/tests/path.c:1157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char longpath[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unc_prefix[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unc_short[MAX_PATH], unc_long[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1160:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH], temppath2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1172:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(name, "longfilename.longext"); data/wine-5.0/dlls/kernel32/tests/path.c:1628:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:1727:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/path.c:1753:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, path, MAX_PATH); data/wine-5.0/dlls/kernel32/tests/path.c:1808:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path2A, "testfile.ext.ext2"); data/wine-5.0/dlls/kernel32/tests/path.c:2026:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[MAX_PATH], *filepart; data/wine-5.0/dlls/kernel32/tests/path.c:2052:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(output, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:2200:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2204:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2209:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2213:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2218:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2222:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2227:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2231:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2237:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2241:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "deadbeef"); data/wine-5.0/dlls/kernel32/tests/path.c:2283:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char astr[64]; data/wine-5.0/dlls/kernel32/tests/path.c:2323:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char orig[MAX_PATH], buf[MAX_PATH], dir[MAX_PATH], expect[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/path.c:2366:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( expect, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/path.c:2377:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( expect, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/path.c:2388:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( expect, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/path.c:2418:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( expect, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/pipe.c:168:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ibuf[32], *pbuf; data/wine-5.0/dlls/kernel32/tests/pipe.c:772:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:851:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:903:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:987:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1113:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1278:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1355:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ibuf[32]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1456:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ibuf[32]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1530:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char readbuf[32]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/kernel32/tests/pipe.c:1943:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2279:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2411:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char userName[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2569:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buf[1024]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2570:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char write_buf[1024]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2724:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[12000]; data/wine-5.0/dlls/kernel32/tests/pipe.c:2929:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10000], read_buf[10000]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10000]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **argv, buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3199:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[60000]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3274:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10000], read_buf[10000]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3409:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **argv, buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/pipe.c:3896:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char readbuf[32768]; data/wine-5.0/dlls/kernel32/tests/pipe.c:4073:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8000]; data/wine-5.0/dlls/kernel32/tests/process.c:97:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char base[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:98:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char selfname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:100:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char resfile[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:114:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char memory[1024*256]; data/wine-5.0/dlls/kernel32/tests/process.c:143:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&ptr[i * 2], "%02x", (unsigned char)str[i]); data/wine-5.0/dlls/kernel32/tests/process.c:158:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&ptr[i * 4], "%04x", (unsigned int)(unsigned short)str[i]); data/wine-5.0/dlls/kernel32/tests/process.c:274:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:288:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024+4*MAX_LISTED_ENV_VAR]; data/wine-5.0/dlls/kernel32/tests/process.c:311:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:389:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char env_var[MAX_LISTED_ENV_VAR]; data/wine-5.0/dlls/kernel32/tests/process.c:484:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/kernel32/tests/process.c:505:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024+4*MAX_LISTED_ENV_VAR]; data/wine-5.0/dlls/kernel32/tests/process.c:517:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024+4*MAX_LISTED_ENV_VAR]; data/wine-5.0/dlls/kernel32/tests/process.c:570:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, expect, -1, NULL, 0); data/wine-5.0/dlls/kernel32/tests/process.c:572:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, expect, -1, expectW, len); data/wine-5.0/dlls/kernel32/tests/process.c:601:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:887:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], fullpath[MAX_PATH], *lpFilePart, *p; data/wine-5.0/dlls/kernel32/tests/process.c:888:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer2[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1068:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "doesnotexist.exe"); data/wine-5.0/dlls/kernel32/tests/process.c:1069:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer2, "does not exist.exe"); data/wine-5.0/dlls/kernel32/tests/process.c:1096:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1099:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[32]; data/wine-5.0/dlls/kernel32/tests/process.c:1270:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(key, "env%d", i); data/wine-5.0/dlls/kernel32/tests/process.c:1285:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(key, "env%d", i); data/wine-5.0/dlls/kernel32/tests/process.c:1309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1362:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, "PATH=C:\\WINDOWS;C:\\WINDOWS\\SYSTEM;C:\\MY\\OWN\\DIR"); data/wine-5.0/dlls/kernel32/tests/process.c:1364:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, "FOO=BAR"); data/wine-5.0/dlls/kernel32/tests/process.c:1366:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, "BAR=FOOBAR"); data/wine-5.0/dlls/kernel32/tests/process.c:1400:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1448:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:1703:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2300:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], file_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2418:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2542:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(JOBOBJECT_BASIC_PROCESS_ID_LIST) + sizeof(ULONG_PTR) * 4]; data/wine-5.0/dlls/kernel32/tests/process.c:2833:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2867:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2937:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:2965:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:3388:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], tempfile[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:3491:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/kernel32/tests/process.c:3820:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH + 64]; data/wine-5.0/dlls/kernel32/tests/process.c:4037:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/process.c:4057:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). test_parent_process_attribute(atoi(myARGV[3]), h); data/wine-5.0/dlls/kernel32/tests/profile.c:103:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/kernel32/tests/profile.c:166:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/kernel32/tests/profile.c:262:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/kernel32/tests/profile.c:374:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/profile.c:996:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\win1.tmp"); data/wine-5.0/dlls/kernel32/tests/resource.c:217:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sec + nt->FileHeader.NumberOfSections, sec_descr->sect_in[i], data/wine-5.0/dlls/kernel32/tests/resource.c:344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char foo[2*page_size] = "foobar"; data/wine-5.0/dlls/kernel32/tests/sync.c:680:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/sync.c:681:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/sync.c:2584:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/thread.c:114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/thread.c:325:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/kernel32/tests/thread.c:327:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "threadFunc_SetEvent %p", threadFunc_SetEvent); data/wine-5.0/dlls/kernel32/tests/thread.c:330:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "threadFunc_CloseHandle %p", threadFunc_CloseHandle); data/wine-5.0/dlls/kernel32/tests/thread.c:1837:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/kernel32/tests/thread.c:1850:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, path, MAX_PATH); data/wine-5.0/dlls/kernel32/tests/thread.c:2020:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/kernel32/tests/thread.c:2128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[128]; data/wine-5.0/dlls/kernel32/tests/time.c:238:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char std_name[32], dlt_name[32]; data/wine-5.0/dlls/kernel32/tests/time.c:673:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[20]; data/wine-5.0/dlls/kernel32/tests/time.c:699:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ok( atoi( bufferA ) == val1, "wrong value %s/%u\n", bufferA, val1 ); data/wine-5.0/dlls/kernel32/tests/time.c:706:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ok( atoi( bufferA ) == val1, "wrong value %s/%u\n", bufferA, val1 ); data/wine-5.0/dlls/kernel32/tests/toolhelp.c:31:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char selfname[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/toolhelp.c:76:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ev1 = (HANDLE)(INT_PTR)atoi(argv[2]); data/wine-5.0/dlls/kernel32/tests/toolhelp.c:77:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ev2 = (HANDLE)(INT_PTR)atoi(argv[3]); data/wine-5.0/dlls/kernel32/tests/toolhelp.c:286:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, module[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/toolhelp.c:287:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:1230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:1324:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( path, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/virtual.c:1367:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], filename[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:1468:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( path, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/virtual.c:1628:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], filename[MAX_PATH], *base; data/wine-5.0/dlls/kernel32/tests/virtual.c:2191:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( call_on_stack, code_call_on_stack, sizeof(code_call_on_stack) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2651:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl2, sizeof(code_atl2) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_jmp, sizeof(code_jmp) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2745:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl1, sizeof(code_atl1) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2815:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl2, sizeof(code_atl2) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2830:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl3, sizeof(code_atl3) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2845:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl4, sizeof(code_atl4) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2863:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl5, sizeof(code_atl5) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2883:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_jmp, sizeof(code_jmp) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2911:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_jmp, sizeof(code_jmp) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:2998:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_atl1, sizeof(code_atl1) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:3063:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, code_jmp, sizeof(code_jmp) ); data/wine-5.0/dlls/kernel32/tests/virtual.c:3418:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:3419:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:4077:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:4078:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:4111:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( file_name, "\\kernel32.dll" ); data/wine-5.0/dlls/kernel32/tests/virtual.c:4146:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/virtual.c:4188:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *buffer, buffer2[2000]; data/wine-5.0/dlls/kernel32/tests/volume.c:110:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drivestr[3]; data/wine-5.0/dlls/kernel32/tests/volume.c:111:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:144:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char volume[51]; data/wine-5.0/dlls/kernel32/tests/volume.c:179:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char volume[MAX_PATH], path[] = "c:\\"; data/wine-5.0/dlls/kernel32/tests/volume.c:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:361:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char volume[MAX_PATH+1]; data/wine-5.0/dlls/kernel32/tests/volume.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vol_name_buf[MAX_PATH+1], fs_name_buf[MAX_PATH+1]; data/wine-5.0/dlls/kernel32/tests/volume.c:364:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdir[MAX_PATH+10]; data/wine-5.0/dlls/kernel32/tests/volume.c:365:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char currentdir[MAX_PATH+1]; data/wine-5.0/dlls/kernel32/tests/volume.c:526:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Volume_1[MAX_PATH] = {0}; data/wine-5.0/dlls/kernel32/tests/volume.c:527:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Volume_2[MAX_PATH] = {0}; data/wine-5.0/dlls/kernel32/tests/volume.c:530:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsdir[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:640:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char volume_path[MAX_PATH], cwd[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:862:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/kernel32/tests/volume.c:934:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char volume[MAX_PATH], buffer[MAX_PATH]; data/wine-5.0/dlls/kernel32/toolhelp.c:56:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/kernel32/toolhelp.c:168:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mod->szModule, ldr_mod[i].BaseDllName.Buffer, l); data/wine-5.0/dlls/kernel32/toolhelp.c:171:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mod->szExePath, ldr_mod[i].FullDllName.Buffer, l); data/wine-5.0/dlls/kernel32/toolhelp.c:245:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pcs_entry->szExeFile, spi->ProcessName.Buffer, l); data/wine-5.0/dlls/kernel32/volume.c:85:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, "/dosdevices/" ); data/wine-5.0/dlls/kernel32/volume.c:201:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name.Buffer, device->Buffer, device->Length ); data/wine-5.0/dlls/kernel32/volume.c:202:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name.Buffer + device->Length / sizeof(WCHAR), labelW, sizeof(labelW) ); data/wine-5.0/dlls/kernel32/volume.c:206:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *p; data/wine-5.0/dlls/kernel32/volume.c:214:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_UNIXCP, 0, buffer, -1, label, len )) data/wine-5.0/dlls/kernel32/volume.c:241:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name.Buffer, device->Buffer, device->Length ); data/wine-5.0/dlls/kernel32/volume.c:242:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name.Buffer + device->Length / sizeof(WCHAR), serialW, sizeof(serialW) ); data/wine-5.0/dlls/kernel32/volume.c:246:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/kernel32/volume.c:935:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/kernel32/volume.c:1110:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( volume, p, o1->SymbolicLinkNameLength ); data/wine-5.0/dlls/kernel32/volume.c:1169:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, devname + HIWORD(dosdev)/sizeof(WCHAR), LOWORD(dosdev) ); data/wine-5.0/dlls/kernel32/volume.c:1243:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, devname + HIWORD(dosdev)/sizeof(WCHAR), LOWORD(dosdev) ); data/wine-5.0/dlls/kernel32/volume.c:1253:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, dosdevW, sizeof(dosdevW) ); data/wine-5.0/dlls/kernel32/volume.c:1279:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1024]; data/wine-5.0/dlls/kernel32/volume.c:1291:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, info->ObjectName.Buffer, info->ObjectName.Length ); data/wine-5.0/dlls/kernel32/volume.c:1356:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1024]; data/wine-5.0/dlls/kernel32/volume.c:1765:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(volumepathname, filename, last_pos * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/volume.c:1868:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, volumename, size - sizeof(*spec) ); data/wine-5.0/dlls/kernel32/volume.c:1896:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)spec + spec->DeviceNameOffset, device, device_len ); data/wine-5.0/dlls/kernel32/volume.c:1910:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)spec + spec->UniqueIdOffset, id, id_len ); data/wine-5.0/dlls/kernel32/volume.c:2054:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( volume, link, size ); data/wine-5.0/dlls/kernelbase/console.c:90:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, &buffer[i].Event.KeyEvent.uChar.AsciiChar, 1, &ch, 1 ); data/wine-5.0/dlls/kernelbase/console.c:117:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, &buffer->Char.AsciiChar, 1, &ch, 1 ); data/wine-5.0/dlls/kernelbase/console.c:283:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( GetConsoleOutputCP(), 0, &ch, 1, &wch, 1 ); data/wine-5.0/dlls/kernelbase/console.c:831:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( GetConsoleOutputCP(), 0, &fill->Char.AsciiChar, 1, &ciW.Char.UnicodeChar, 1 ); data/wine-5.0/dlls/kernelbase/console.c:1076:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, input_exe, ARRAY_SIZE(input_exe) ); data/wine-5.0/dlls/kernelbase/console.c:1273:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( recW, buffer, count * sizeof(*recW) ); data/wine-5.0/dlls/kernelbase/console.c:1341:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ciW[y * new_size.X], &buffer[(y + coord.Y) * size.X + coord.X], data/wine-5.0/dlls/kernelbase/console.c:1447:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar( GetConsoleOutputCP(), 0, str, length, NULL, 0 ); data/wine-5.0/dlls/kernelbase/console.c:1454:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( GetConsoleOutputCP(), 0, str, length, strW, lenW ); data/wine-5.0/dlls/kernelbase/debug.c:259:25: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1]; data/wine-5.0/dlls/kernelbase/debug.c:264:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mon_buffer->buffer, str, str_len ); data/wine-5.0/dlls/kernelbase/debug.c:314:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( record.ExceptionInformation, args, count * sizeof(*args) ); data/wine-5.0/dlls/kernelbase/debug.c:520:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/kernelbase/debug.c:557:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( format, info->Data, info->DataLength ); data/wine-5.0/dlls/kernelbase/debug.c:578:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (info->Type == REG_DWORD) memcpy( &autostart, info->Data, sizeof(DWORD) ); data/wine-5.0/dlls/kernelbase/file.c:202:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, info->lpAssemblyManifestPath, dirlen * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/file.c:218:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, winsxsW, sizeof(winsxsW) ); data/wine-5.0/dlls/kernelbase/file.c:220:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, info->lpAssemblyDirectoryName, info->ulAssemblyDirectoryNameLength ); data/wine-5.0/dlls/kernelbase/file.c:843:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir, filename, HIWORD(device) ); data/wine-5.0/dlls/kernelbase/file.c:918:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( wfd->cFileName, filename + HIWORD(device)/sizeof(WCHAR), LOWORD(device) ); data/wine-5.0/dlls/kernelbase/file.c:1069:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data->cFileName, dir_info->FileName, dir_info->FileNameLength ); data/wine-5.0/dlls/kernelbase/file.c:1074:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data->cAlternateFileName, dir_info->ShortName, dir_info->ShortNameLength ); data/wine-5.0/dlls/kernelbase/file.c:1548:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( tmpshortpath, longpath, 4 * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/loader.c:312:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( filename, win16_tib->exe_name->Buffer, len * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/loader.c:323:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( filename, pldr->FullDllName.Buffer, len * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/loader.c:859:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, str->NameString, str->Length * sizeof (WCHAR)); data/wine-5.0/dlls/kernelbase/loader.c:982:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(type, str->NameString, str->Length * sizeof (WCHAR)); data/wine-5.0/dlls/kernelbase/locale.c:744:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( registry_cache[index], buffer, size ); data/wine-5.0/dlls/kernelbase/locale.c:856:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst + pos, expand, len * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/locale.c:1815:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *key_ptr[4]; data/wine-5.0/dlls/kernelbase/locale.c:2506:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[10]; data/wine-5.0/dlls/kernelbase/locale.c:2538:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[10]; data/wine-5.0/dlls/kernelbase/locale.c:2595:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[10], descrA[80]; data/wine-5.0/dlls/kernelbase/locale.c:2682:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[10]; data/wine-5.0/dlls/kernelbase/locale.c:2767:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (len1 <= 130) len1W = MultiByteToWideChar( locale_cp, 0, str1, len1, buf1W, 130 ); data/wine-5.0/dlls/kernelbase/locale.c:2771:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len1W = MultiByteToWideChar( locale_cp, 0, str1, len1, NULL, 0 ); data/wine-5.0/dlls/kernelbase/locale.c:2778:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( locale_cp, 0, str1, len1, str1W, len1W ); data/wine-5.0/dlls/kernelbase/locale.c:2789:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (len2 <= 130) len2W = MultiByteToWideChar( locale_cp, 0, str2, len2, buf2W, 130 ); data/wine-5.0/dlls/kernelbase/locale.c:2793:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len2W = MultiByteToWideChar( locale_cp, 0, str2, len2, NULL, 0 ); data/wine-5.0/dlls/kernelbase/locale.c:2801:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( locale_cp, 0, str2, len2, str2W, len2W ); data/wine-5.0/dlls/kernelbase/locale.c:3058:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[10]; data/wine-5.0/dlls/kernelbase/locale.c:3752:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, str, min(len, count) * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/locale.c:3855:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &number, sizeof(number) ); data/wine-5.0/dlls/kernelbase/locale.c:3906:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( tmp, p + 1, *p * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/locale.c:3910:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &number, sizeof(number) ); data/wine-5.0/dlls/kernelbase/locale.c:3923:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, p + 1, ret * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/locale.c:3989:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). countW = MultiByteToWideChar(cp, 0, src, count, NULL, 0); data/wine-5.0/dlls/kernelbase/locale.c:3992:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, src, count, srcW, countW); data/wine-5.0/dlls/kernelbase/locale.c:4132:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &tzinfo, sizeof(*info) ); data/wine-5.0/dlls/kernelbase/locale.c:4719:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, len * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/locale.c:4754:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). srclenW = MultiByteToWideChar( locale_cp, 0, src, srclen, bufW, 260 ); data/wine-5.0/dlls/kernelbase/locale.c:4758:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). srclenW = MultiByteToWideChar( locale_cp, 0, src, srclen, NULL, 0 ); data/wine-5.0/dlls/kernelbase/locale.c:4765:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( locale_cp, 0, src, srclen, srcW, srclenW ); data/wine-5.0/dlls/kernelbase/locale.c:4831:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT WINAPI DECLSPEC_HOTPATCH MultiByteToWideChar( UINT codepage, DWORD flags, const char *src, INT srclen, data/wine-5.0/dlls/kernelbase/main.c:363:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(langbuf, mystr, min(*buflen, len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/memory.c:761:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, hmem, size ); data/wine-5.0/dlls/kernelbase/memory.c:1216:30: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer_size <= size) memcpy( buffer, info->TableBuffer, buffer_size ); data/wine-5.0/dlls/kernelbase/path.c:46:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char hashdata_lookup[256] = data/wine-5.0/dlls/kernelbase/path.c:98:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/kernelbase/path.c:100:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/kernelbase/path.c:251:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, (root_end - buffer + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:554:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (SUCCEEDED(hr)) memcpy(path1, result, size * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:596:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, buffer, (length + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:643:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, buffer, (length + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:1448:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/path.c:1531:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (dir && !MultiByteToWideChar(CP_ACP, 0, dir, -1, dirW, ARRAY_SIZE(dirW))) data/wine-5.0/dlls/kernelbase/path.c:1534:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (file && !MultiByteToWideChar(CP_ACP, 0, file, -1, fileW, ARRAY_SIZE(fileW))) data/wine-5.0/dlls/kernelbase/path.c:1622:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, file1, len); data/wine-5.0/dlls/kernelbase/path.c:1672:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, file1, len * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:2380:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, from, -1, fromW, ARRAY_SIZE(fromW)); data/wine-5.0/dlls/kernelbase/path.c:2381:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, to, -1, toW, ARRAY_SIZE(toW)); data/wine-5.0/dlls/kernelbase/path.c:2827:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, url, ptr - url, scheme, ARRAY_SIZE(scheme)); data/wine-5.0/dlls/kernelbase/path.c:2891:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[3]; data/wine-5.0/dlls/kernelbase/path.c:2892:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, src + 1, 2); data/wine-5.0/dlls/kernelbase/path.c:2957:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + 2, src + 1, 2*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3434:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char utf[16]; data/wine-5.0/dlls/kernelbase/path.c:3478:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, next, len*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3487:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(escaped, dst_ptr, (needed+1)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3612:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wk2, wszFilePrefix, sizeof(wszFilePrefix)); data/wine-5.0/dlls/kernelbase/path.c:3707:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wk2, wk1, (nWkLen + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3775:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wk2, wk1, (nWkLen + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3783:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wk2, wk1, nLen * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3865:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(canonicalized, url_copy, (nLen + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:3897:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url, -1, inW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/kernelbase/path.c:3932:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data/wine-5.0/dlls/kernelbase/path.c:4189:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url, -1, inW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/kernelbase/path.c:4508:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, schaddr, schsize*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4510:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out + schsize+1, addr, size*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4521:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, addr, size*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4712:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, base, -1, baseW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/kernelbase/path.c:4713:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, relative, -1, relativeW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/kernelbase/path.c:4918:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(preliminary, base.pszProtocol, (work-base.pszProtocol)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4980:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(preliminary, base.pszProtocol, (base.cchProtocol + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4987:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(preliminary, base.pszProtocol, (base.cchProtocol+1+sizeloc)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:4996:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(preliminary, base.pszProtocol, (base.cchProtocol + 1 + base.cchSuffix)*sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/path.c:5067:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char urlA[MAX_PATH]; data/wine-5.0/dlls/kernelbase/process.c:91:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, cmdline + 1, len * sizeof(WCHAR) ); data/wine-5.0/dlls/kernelbase/process.c:159:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar( CP_ACP, 0, env, e - (char *)env, NULL, 0 ); data/wine-5.0/dlls/kernelbase/process.c:161:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, env, e - (char *)env, envW, lenW ); data/wine-5.0/dlls/kernelbase/process.c:1224:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, NtCurrentTeb()->Peb->ProcessParameters->Environment, len ); data/wine-5.0/dlls/kernelbase/registry.c:671:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:707:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, info->Name, info->NameLength ); data/wine-5.0/dlls/kernelbase/registry.c:714:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( class, buf_ptr + info->ClassOffset, info->ClassLength ); data/wine-5.0/dlls/kernelbase/registry.c:735:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:829:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:862:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( class, buf_ptr + info->ClassOffset, info->ClassLength ); data/wine-5.0/dlls/kernelbase/registry.c:919:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:1208:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/kernelbase/registry.c:1245:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(provider->linkage, buf, len); data/wine-5.0/dlls/kernelbase/registry.c:1262:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(provider->objects, buf, len); data/wine-5.0/dlls/kernelbase/registry.c:1470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:1513:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, buf_ptr + info_size, total_size - info_size ); data/wine-5.0/dlls/kernelbase/registry.c:1565:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:1640:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( data, buf_ptr + info_size, total_size - info_size ); data/wine-5.0/dlls/kernelbase/registry.c:1778:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvBuf, pvData, cbData); data/wine-5.0/dlls/kernelbase/registry.c:1798:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvData, pvBuf, *pcbData); data/wine-5.0/dlls/kernelbase/registry.c:1874:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvBuf, pvData, cbData); data/wine-5.0/dlls/kernelbase/registry.c:1894:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvData, pvBuf, *pcbData); data/wine-5.0/dlls/kernelbase/registry.c:1939:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:1975:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( value, info->Name, info->NameLength ); data/wine-5.0/dlls/kernelbase/registry.c:1986:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, buf_ptr + info->DataOffset, total_size - info->DataOffset ); data/wine-5.0/dlls/kernelbase/registry.c:2016:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *buf_ptr = buffer; data/wine-5.0/dlls/kernelbase/registry.c:2072:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( data, buf_ptr + info->DataOffset, total_size - info->DataOffset ); data/wine-5.0/dlls/kernelbase/registry.c:2634:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ent->text, buffer, size * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/registry.c:2714:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, string, max_chars * sizeof(WCHAR)); data/wine-5.0/dlls/kernelbase/registry.c:3195:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/kernelbase/registry.c:3198:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, len ); data/wine-5.0/dlls/kernelbase/registry.c:3220:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/kernelbase/registry.c:3223:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, len ); data/wine-5.0/dlls/kernelbase/registry.c:3315:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/kernelbase/registry.c:3319:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, pathW, len); data/wine-5.0/dlls/kernelbase/registry.c:3520:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/registry.c:3587:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, value, -1, valueW, ARRAY_SIZE(valueW)); data/wine-5.0/dlls/kernelbase/registry.c:3880:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[10]; data/wine-5.0/dlls/kernelbase/security.c:158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ace->SidStart, &world_sid, sizeof(world_sid) ); data/wine-5.0/dlls/kernelbase/security.c:477:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(sid, &WellKnownSids[i].Sid.Revision, length); data/wine-5.0/dlls/kernelbase/security.c:508:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(sid, domain, domain_sid_length); data/wine-5.0/dlls/kernelbase/security.c:947:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer + offset, &world_sid, sizeof(world_sid) ); data/wine-5.0/dlls/kernelbase/security.c:951:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer + offset, &world_sid, sizeof(world_sid) ); data/wine-5.0/dlls/kernelbase/string.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[3], str2[3]; data/wine-5.0/dlls/kernelbase/string.c:309:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len); data/wine-5.0/dlls/kernelbase/string.c:330:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len); data/wine-5.0/dlls/kernelbase/string.c:1077:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_ACP, 0, str, len, NULL, 0); data/wine-5.0/dlls/kernelbase/string.c:1083:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, len, strW, lenW); data/wine-5.0/dlls/kernelbase/string.c:1190:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_ACP, 0, str, len, NULL, 0); data/wine-5.0/dlls/kernelbase/string.c:1196:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, len, strW, lenW); data/wine-5.0/dlls/kernelbase/string.c:1260:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, p + 1, i * sizeof (WCHAR)); data/wine-5.0/dlls/kernelbase/sync.c:333:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernelbase/sync.c:387:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/kernelbase/sync.c:1258:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (out_buffer) memcpy( out_buffer, buffer->Data, count ); data/wine-5.0/dlls/kernelbase/sync.c:1390:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pipe_wait->Name, nt_name.Buffer + ARRAY_SIZE( leadin ), pipe_wait->NameLength ); data/wine-5.0/dlls/kernelbase/tests/path.c:374:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:393:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:411:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path_in, -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:512:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\a", -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:519:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\b", -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:533:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path1, -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:534:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path2, -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:597:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].path1, -1, p1, ARRAY_SIZE(p1)); data/wine-5.0/dlls/kernelbase/tests/path.c:598:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].path2, -1, p2, ARRAY_SIZE(p2)); data/wine-5.0/dlls/kernelbase/tests/path.c:599:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].result, -1, expected, ARRAY_SIZE(expected)); data/wine-5.0/dlls/kernelbase/tests/path.c:665:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].path1, -1, p1, MAX_PATH); data/wine-5.0/dlls/kernelbase/tests/path.c:666:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].path2, -1, p2, MAX_PATH); data/wine-5.0/dlls/kernelbase/tests/path.c:667:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, combine_tests[i].result, -1, expected, MAX_PATH); data/wine-5.0/dlls/kernelbase/tests/path.c:732:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernelbase/tests/path.c:734:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:779:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/kernelbase/tests/path.c:781:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:790:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:940:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\a", -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:941:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\b", -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:960:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path1, -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:961:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path2, -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:987:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\a", -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:988:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\b", -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:1012:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path1, -1, path1W, ARRAY_SIZE(path1W)); data/wine-5.0/dlls/kernelbase/tests/path.c:1013:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path2, -1, path2W, ARRAY_SIZE(path2W)); data/wine-5.0/dlls/kernelbase/tests/path.c:1040:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1041:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ".exe", -1, extensionW, ARRAY_SIZE(extensionW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1065:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1066:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->extension, -1, extensionW, ARRAY_SIZE(extensionW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1137:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path_in, -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1150:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1161:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1171:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:a", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1256:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1277:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path_in, -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1290:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1301:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1311:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:a", -1, path_inW, ARRAY_SIZE(path_inW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1397:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\1.exe", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1430:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1499:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1574:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\a\\", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1587:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). path_size = MultiByteToWideChar(CP_ACP, 0, t->path_in, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1621:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). path_size = MultiByteToWideChar(CP_ACP, 0, "C:\\a\\", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1642:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\a", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1649:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). path_size = MultiByteToWideChar(CP_ACP, 0, t->path_in, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1727:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\1.exe", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1735:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1857:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1908:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\1.txt", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1909:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ".exe", -1, extensionW, ARRAY_SIZE(extensionW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1933:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:1934:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->extension, -1, extensionW, ARRAY_SIZE(extensionW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2055:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2062:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2133:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2252:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\a", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2259:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2320:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "C:\\", -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/tests/path.c:2328:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, t->path, -1, pathW, ARRAY_SIZE(pathW)); data/wine-5.0/dlls/kernelbase/thread.c:442:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*description, info->Description.Buffer, info->Description.Length); data/wine-5.0/dlls/kernelbase/version.c:710:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char signature[4] = "FE2X"; data/wine-5.0/dlls/kernelbase/version.c:743:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, LockResource( hMem ), len ); data/wine-5.0/dlls/kernelbase/version.c:775:30: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (datasize >= len) memcpy( (char*)data + vvis->wLength, signature, sizeof(signature) ); data/wine-5.0/dlls/kernelbase/version.c:983:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpSubBlock, -1, NULL, 0); data/wine-5.0/dlls/kernelbase/version.c:989:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpSubBlock, -1, lpSubBlockW, len); data/wine-5.0/dlls/kernelbase/version.c:1062:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, *lplpBuffer, -1, data/wine-5.0/dlls/kernelbase/version.c:1080:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/kernelbase/version.c:1137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char winDir[MAX_PATH], systemDir[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/atom.c:202:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_ATOM_LEN+1]; data/wine-5.0/dlls/krnl386.exe16/atom.c:244:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( entryPtr->str, buffer, len); data/wine-5.0/dlls/krnl386.exe16/atom.c:334:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[8]; data/wine-5.0/dlls/krnl386.exe16/atom.c:341:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( text, "#%d", atom ); data/wine-5.0/dlls/krnl386.exe16/atom.c:354:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, strPtr, len ); data/wine-5.0/dlls/krnl386.exe16/dma.c:117:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*)DMA_CurrentBaseAddress[channel],dmabuf,ret*size); data/wine-5.0/dlls/krnl386.exe16/dma.c:128:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dmabuf,(void*)DMA_CurrentBaseAddress[channel],ret*size); data/wine-5.0/dlls/krnl386.exe16/dosexe.h:214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[8]; data/wine-5.0/dlls/krnl386.exe16/dosmem.c:232:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBiosSys+0xfff5, bios_date, sizeof bios_date); data/wine-5.0/dlls/krnl386.exe16/dosmem.c:664:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( DOSMEM_dosmem, DOSMEM_sysmem, 0x400 + 0x100 ); data/wine-5.0/dlls/krnl386.exe16/dosvm.c:233:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, relay, sizeof(relay) ); data/wine-5.0/dlls/krnl386.exe16/error.c:202:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[80]; data/wine-5.0/dlls/krnl386.exe16/error.c:210:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%x", uErr); data/wine-5.0/dlls/krnl386.exe16/error.c:219:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[80]; data/wine-5.0/dlls/krnl386.exe16/error.c:222:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "ERR_WARNING | "); data/wine-5.0/dlls/krnl386.exe16/error.c:238:2: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer + strlen(buffer), "%x", uErr); data/wine-5.0/dlls/krnl386.exe16/file.c:185:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ret, *p, module[OFS_MAXPATHNAME]; data/wine-5.0/dlls/krnl386.exe16/file.c:200:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( ret, ".;" ); data/wine-5.0/dlls/krnl386.exe16/file.c:478:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/file.c:490:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d[3]; data/wine-5.0/dlls/krnl386.exe16/file.c:503:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(temppath,"%c:", drive & ~TF_FORCEDRIVE ); data/wine-5.0/dlls/krnl386.exe16/file.c:585:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, src, p - src ); data/wine-5.0/dlls/krnl386.exe16/file.c:593:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, src, len ); data/wine-5.0/dlls/krnl386.exe16/file.c:642:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windir[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/file.c:792:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fulldir[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/file.c:801:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char env_var[4] = "=A:"; data/wine-5.0/dlls/krnl386.exe16/global.c:354:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( newptr, ptr, oldsize ); data/wine-5.0/dlls/krnl386.exe16/int21.c:177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask[11]; /* 01 search template */ data/wine-5.0/dlls/krnl386.exe16/int21.c:186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[13]; /* 1e file name + extension */ data/wine-5.0/dlls/krnl386.exe16/int21.c:193:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[11]; /* 01 filename 8+3 format */ data/wine-5.0/dlls/krnl386.exe16/int21.c:201:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[11]; /* 00 filename 8+3 format */ data/wine-5.0/dlls/krnl386.exe16/int21.c:483:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( heap->filename_illegal_table, terminators, heap->filename_illegal_size ); data/wine-5.0/dlls/krnl386.exe16/int21.c:641:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathA[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/int21.c:770:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, dirA, -1, dirW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:808:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, dir, -1, NULL, 0 ); data/wine-5.0/dlls/krnl386.exe16/int21.c:816:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( nameW.Buffer, prefixW, sizeof(prefixW) ); data/wine-5.0/dlls/krnl386.exe16/int21.c:817:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, dir, -1, nameW.Buffer + ARRAY_SIZE(prefixW), len ); data/wine-5.0/dlls/krnl386.exe16/int21.c:1034:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, pathA, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_path[16]; data/wine-5.0/dlls/krnl386.exe16/int21.c:1152:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, fcb->file_name, 8); data/wine-5.0/dlls/krnl386.exe16/int21.c:1158:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, fcb->file_extension, 3); data/wine-5.0/dlls/krnl386.exe16/int21.c:1446:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&record_number, fcb->random_access_record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1519:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&record_number, fcb->random_access_record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1597:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&record_number, fcb->random_access_record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1636:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fcb->random_access_record_number, &record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1688:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&record_number, fcb->random_access_record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fcb->random_access_record_number, &record_number, 4); data/wine-5.0/dlls/krnl386.exe16/int21.c:1746:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, dirA, -1, dirW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1927:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1949:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1957:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1975:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:1999:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2026:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2050:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2076:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2103:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2503:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dataptr+2,&serial,4); data/wine-5.0/dlls/krnl386.exe16/int21.c:2874:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, dirA, -1, dirW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2958:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, pathA, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2971:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, pathA, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:2996:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, pathA, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3062:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, CTX_SEG_OFF_TO_LIN(context, context->SegDs, context->Esi), -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3075:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, CTX_SEG_OFF_TO_LIN(context, context->SegDs, context->Esi), -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3111:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, pathA, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3247:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fromA, -1, fromW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3248:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, toA, -1, toW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3311:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dataptr + 2, &serial, sizeof(DWORD)); data/wine-5.0/dlls/krnl386.exe16/int21.c:3313:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dataptr + 17, "FAT16 ", 8); data/wine-5.0/dlls/krnl386.exe16/int21.c:3563:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "wine%04x.%03d", (int)getpid(), counter ); data/wine-5.0/dlls/krnl386.exe16/int21.c:3695:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, path, -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:3720:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dta->fullPath, pathW, (p - pathW) * sizeof(WCHAR) ); data/wine-5.0/dlls/krnl386.exe16/int21.c:3721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dta->fullPath + (p - pathW), wildcardW, sizeof(wildcardW) ); data/wine-5.0/dlls/krnl386.exe16/int21.c:3742:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, maskA, 11, mask, 11); data/wine-5.0/dlls/krnl386.exe16/int21.c:3970:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). buffer_len = MultiByteToWideChar(CP_OEMCP, 0, filename, len, NULL, 0); data/wine-5.0/dlls/krnl386.exe16/int21.c:3972:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_OEMCP, 0, filename, len, buffer, buffer_len); data/wine-5.0/dlls/krnl386.exe16/int21.c:4537:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, dirA, -1, dirW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:4633:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, fileA, -1, fileW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int21.c:4942:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_OEMCP, 0, CTX_SEG_OFF_TO_LIN(context, context->SegDs, context->Esi), -1, pathW, MAX_PATH); data/wine-5.0/dlls/krnl386.exe16/int31.c:140:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( newptr, ptr, mbi.RegionSize ); data/wine-5.0/dlls/krnl386.exe16/int67.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[8]; /* handle name */ data/wine-5.0/dlls/krnl386.exe16/int67.c:155:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, EMS_record->handle[hindex].name, 8); data/wine-5.0/dlls/krnl386.exe16/int67.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(EMS_record->handle[hindex].name, ptr, 8); data/wine-5.0/dlls/krnl386.exe16/int67.c:193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, physical_address, EMS_PAGE_SIZE); data/wine-5.0/dlls/krnl386.exe16/int67.c:207:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physical_address, ptr, EMS_PAGE_SIZE); data/wine-5.0/dlls/krnl386.exe16/interrupts.c:462:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[20]; data/wine-5.0/dlls/krnl386.exe16/interrupts.c:465:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( file, "\\\\.\\COM%d", x+1 ); data/wine-5.0/dlls/krnl386.exe16/interrupts.c:473:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( file, "\\\\.\\LPT%d", x+1 ); data/wine-5.0/dlls/krnl386.exe16/ioports.c:181:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char port_permissions[0x10000]; data/wine-5.0/dlls/krnl386.exe16/ioports.c:394:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/dlls/krnl386.exe16/ioports.c:470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[80]; data/wine-5.0/dlls/krnl386.exe16/ioports.c:471:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/krnl386.exe16/ioports.c:502:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[256]; data/wine-5.0/dlls/krnl386.exe16/ioports.c:525:5: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd=open(buffer,O_RDWR); data/wine-5.0/dlls/krnl386.exe16/kernel.c:400:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, count ); data/wine-5.0/dlls/krnl386.exe16/kernel.c:886:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char caller[101]; data/wine-5.0/dlls/krnl386.exe16/kernel.c:890:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( caller, "%04X:%04X", CURRENT_STACK16->cs, CURRENT_STACK16->ip ); data/wine-5.0/dlls/krnl386.exe16/kernel16_private.h:171:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (memcpy( buffer, (const char *)pModule->mapping + (offset), (size) ), TRUE) : FALSE) data/wine-5.0/dlls/krnl386.exe16/local.c:685:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, p + offset, offset ); data/wine-5.0/dlls/krnl386.exe16/local.c:689:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (size) memcpy( p, p + offset, size ); data/wine-5.0/dlls/krnl386.exe16/local.c:818:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pFinalArena + ARENA_HEADER_SIZE, data/wine-5.0/dlls/krnl386.exe16/local.c:1398:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, ptr + arena + ARENA_HEADER_SIZE, oldsize ); data/wine-5.0/dlls/krnl386.exe16/local.c:1411:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + hmem, buffer, oldsize ); data/wine-5.0/dlls/krnl386.exe16/local.c:1416:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + hmem, ptr + (arena + ARENA_HEADER_SIZE), oldsize ); data/wine-5.0/dlls/krnl386.exe16/local.c:1817:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, oldBase, segSize ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:220:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[10]; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:321:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256], *p; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:333:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (name[0] == '#') return atoi( name + 1 ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:416:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &offset, &entry->offs, sizeof(WORD) ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:468:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &entry->offs, &offset, sizeof(WORD) ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:608:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pModule, ne_header, sizeof(*ne_header) ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:632:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pData, pSeg, sizeof(*pSeg) ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:751:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[260], *p; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:753:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, pstr + 1, *pstr ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:945:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[32]; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:967:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( q, "16" ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpstr[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1494:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, p + 1, count - 1 ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1591:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, name_beg, name_end - name_beg ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1626:78: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (strlen( buffer ) < sizeof(buffer) - 4 && !strchr( buffer, '.' )) strcat( buffer, ".exe" ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1648:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cmdline + 1, lpCmdLine, arglen ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1754:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpstr[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1864:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:144:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:203:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, func_name+1, *func_name ); data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:264:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[10]; data/wine-5.0/dlls/krnl386.exe16/ne_segment.c:428:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mem, curr, len ); data/wine-5.0/dlls/krnl386.exe16/relay.c:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/krnl386.exe16/relay.c:190:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ord_str[10]; data/wine-5.0/dlls/krnl386.exe16/relay.c:192:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( ord_str, "%d", ordinal ); data/wine-5.0/dlls/krnl386.exe16/relay.c:285:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( module, p + 1, *p ); data/wine-5.0/dlls/krnl386.exe16/relay.c:293:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( func, p + 1, *p ); data/wine-5.0/dlls/krnl386.exe16/relay.c:441:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[10], func[64]; data/wine-5.0/dlls/krnl386.exe16/resource.c:153:66: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (HIWORD(name) && name[0] == '#') name = MAKEINTRESOURCEA( atoi( name + 1 ) ); data/wine-5.0/dlls/krnl386.exe16/resource.c:567:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dialog16, dialog32, data ); data/wine-5.0/dlls/krnl386.exe16/resource.c:704:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( menu16, menu32, headersize ); data/wine-5.0/dlls/krnl386.exe16/resource.c:857:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( GlobalLock16( handle ), bits, size ); data/wine-5.0/dlls/krnl386.exe16/snoop.c:59:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/krnl386.exe16/snoop.c:170:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[200]; data/wine-5.0/dlls/krnl386.exe16/snoop.c:196:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name,"%.*s",*cpnt,cpnt+1); data/wine-5.0/dlls/krnl386.exe16/snoop.c:207:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name,"%.*s",*cpnt,cpnt+1); data/wine-5.0/dlls/krnl386.exe16/snoop.c:303:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->args,(LPBYTE)((char *) MapSL( MAKESEGPTR(context->SegSs,LOWORD(context->Esp)) )+8),sizeof(WORD)*16); data/wine-5.0/dlls/krnl386.exe16/soundblaster.c:101:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpbuf1,dma_buffer,dwbyteswritten1); data/wine-5.0/dlls/krnl386.exe16/soundblaster.c:104:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpbuf2,dma_buffer+dwbyteswritten1,dwbyteswritten2); data/wine-5.0/dlls/krnl386.exe16/task.c:259:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/krnl386.exe16/task.c:292:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[sizeof(pTask->module_name)+1]; data/wine-5.0/dlls/krnl386.exe16/task.c:310:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &pTask->pdb.dispatcher[1], &proc, sizeof(proc) ); data/wine-5.0/dlls/krnl386.exe16/task.c:336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pTask->pdb.cmdLine + 1, cmdline, len ); data/wine-5.0/dlls/krnl386.exe16/task.c:441:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, NE_MODULE_NAME(pModule), -1, path, MAX_PATH ); data/wine-5.0/dlls/krnl386.exe16/task.c:455:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( tib->curdir_buffer, curdir->Buffer, tib->curdir.DosPath.Length ); data/wine-5.0/dlls/krnl386.exe16/task.c:1248:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)GlobalLock16(CURRENT_DS) + buffer, ptr + buffer, len ); data/wine-5.0/dlls/krnl386.exe16/task.c:1539:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( env16, env, p - env ); data/wine-5.0/dlls/krnl386.exe16/task.c:1540:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( env16 + (p - env), &one, sizeof(one)); data/wine-5.0/dlls/krnl386.exe16/task.c:1541:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( env16 + (p - env) + sizeof(WORD), ENV_program_name, sizeof(ENV_program_name)); data/wine-5.0/dlls/krnl386.exe16/thunk.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[4]; /* 00 */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:64:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lateBinding[4]; /* 0C */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lateBinding[4]; /* 1C */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lateBinding[4]; /* 10 */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pszDll16[256]; /* 20 */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:116:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pszDll32[256]; /*120 */ data/wine-5.0/dlls/krnl386.exe16/thunk.c:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pszDll16[256]; data/wine-5.0/dlls/krnl386.exe16/thunk.c:130:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pszDll32[256]; data/wine-5.0/dlls/krnl386.exe16/thunk.c:570:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( newstack, oldstack, argsize ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:590:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( oldstack, newstack, argsize ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:787:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (LPBYTE)context->Esp, data/wine-5.0/dlls/krnl386.exe16/thunk.c:1255:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stack32, stack16, argSize); data/wine-5.0/dlls/krnl386.exe16/thunk.c:1323:8: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(strPtr, "WINESTUB.FIX"); data/wine-5.0/dlls/krnl386.exe16/thunk.c:2183:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, s, len, bufW, len ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:2208:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_OEMCP, 0, s, len, bufW, len ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:2380:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+4]; data/wine-5.0/dlls/krnl386.exe16/thunk.c:2382:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, ".dll" ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:123:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, dir, -1, NULL, 0 ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:131:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( nameW.Buffer, prefixW, sizeof(prefixW) ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:132:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, dir, -1, nameW.Buffer + ARRAY_SIZE(prefixW), len ); data/wine-5.0/dlls/krnl386.exe16/vxd.c:1368:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[128]; data/wine-5.0/dlls/krnl386.exe16/vxd.c:1416:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[128]; data/wine-5.0/dlls/krnl386.exe16/wowthunk.c:409:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( stack, pArgs, cbArgs ); data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:691:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "MPEG Layer-3 Codec", -1, data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:693:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Wine MPEG3 decoder", -1, data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:695:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/l3codeca.acm/mpegl3.c:697:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/loadperf/loadperf_main.c:55:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/loadperf/loadperf_main.c:57:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/localspl/localmon.c:679:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOutputData, dllnameuiW, sizeof(dllnameuiW)); data/wine-5.0/dlls/localspl/provider.c:200:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy(ret, p, len); data/wine-5.0/dlls/localspl/provider.c:281:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target, server, serverlen * sizeof(WCHAR)); data/wine-5.0/dlls/localspl/provider.c:1458:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&di, pDriverInfo, di_sizeof[level]); data/wine-5.0/dlls/localspl/provider.c:1484:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(apd.dst, apd.src, len); data/wine-5.0/dlls/localspl/provider.c:1548:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( reg_ptr, file, len * sizeof(WCHAR) ); data/wine-5.0/dlls/localspl/provider.c:2685:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPrintProvidor, pprovider, data/wine-5.0/dlls/localspl/tests/localmon.c:276:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&nameW, pi[id].pName, PORTNAME_PREFIX * sizeof(WCHAR)); data/wine-5.0/dlls/localspl/tests/localmon.c:280:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&have_com, pi[id].pName, (res+1) * sizeof(WCHAR)); data/wine-5.0/dlls/localspl/tests/localmon.c:284:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&have_lpt, pi[id].pName, (res+1) * sizeof(WCHAR)); data/wine-5.0/dlls/localspl/tests/localmon.c:288:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&have_file, pi[id].pName, (res+1) * sizeof(WCHAR)); data/wine-5.0/dlls/localui/localui.c:118:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(shortname, pPortName, (len -1) * sizeof(WCHAR)); data/wine-5.0/dlls/localui/tests/localui.c:313:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, bufferA, -1, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/localui/tests/localui.c:324:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, bufferA, -1, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:74:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shortname[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:85:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(shortname, dst, MAX_PATH); data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:122:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:123:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char short_expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:124:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filled_0xA5[OFS_MAXPATHNAME]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:213:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:214:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filled_0xA5[OFS_MAXPATHNAME]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:304:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:305:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char short_expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:528:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:613:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:614:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filled_0xA5[OFS_MAXPATHNAME]; data/wine-5.0/dlls/lz32/tests/lzexpand_main.c:704:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/mapi32/prop.c:90:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.lpszA, lpSrc->Value.lpszA, ulLen); data/wine-5.0/dlls/mapi32/prop.c:96:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.lpszW, lpSrc->Value.lpszW, ulLen); data/wine-5.0/dlls/mapi32/prop.c:101:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.bin.lpb, lpSrc->Value.bin.lpb, lpSrc->Value.bin.cb); data/wine-5.0/dlls/mapi32/prop.c:146:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNextStr, lpSrc->Value.MVszA.lppszA[i], ulStrLen); data/wine-5.0/dlls/mapi32/prop.c:161:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNextStr, lpSrc->Value.MVszW.lppszW[i], ulStrLen * sizeof(WCHAR)); data/wine-5.0/dlls/mapi32/prop.c:175:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNext, lpSrc->Value.MVbin.lpbin[i].lpb, lpDest->Value.MVbin.lpbin[i].cb); data/wine-5.0/dlls/mapi32/prop.c:182:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.MVi.lpi, lpSrc->Value.MVi.lpi, ulLen); data/wine-5.0/dlls/mapi32/prop.c:812:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDst, lpProps, cValues * sizeof(SPropValue)); data/wine-5.0/dlls/mapi32/prop.c:826:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.lpszA, lpProps->Value.lpszA, ulLen); data/wine-5.0/dlls/mapi32/prop.c:832:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.lpszW, lpProps->Value.lpszW, ulLen); data/wine-5.0/dlls/mapi32/prop.c:837:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.bin.lpb, lpProps->Value.bin.lpb, lpProps->Value.bin.cb); data/wine-5.0/dlls/mapi32/prop.c:858:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDataDest, lpProps->Value.MVszA.lppszA[i], ulStrLen); data/wine-5.0/dlls/mapi32/prop.c:872:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDataDest, lpProps->Value.MVszW.lppszW[i], ulStrLen); data/wine-5.0/dlls/mapi32/prop.c:885:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDataDest, lpProps->Value.MVbin.lpbin[i].lpb, lpDest->Value.MVbin.lpbin[i].cb); data/wine-5.0/dlls/mapi32/prop.c:893:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest->Value.MVi.lpi, lpProps->Value.MVi.lpi, ulLen); data/wine-5.0/dlls/mapi32/sendmail.c:74:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mapi32/sendmail.c:76:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, wstr, len); data/wine-5.0/dlls/mapi32/tests/prop.c:440:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lbuffa[2], rbuffa[2]; data/wine-5.0/dlls/mapi32/tests/prop.c:570:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lbuffa[2], rbuffa[2]; data/wine-5.0/dlls/mapi32/tests/prop.c:852:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512], buffer2[512], *lppszA[1]; data/wine-5.0/dlls/mapi32/tests/prop.c:883:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer2, buffer, sizeof(buffer)); data/wine-5.0/dlls/mapi32/tests/util.c:171:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[129]; data/wine-5.0/dlls/mapi32/util.c:446:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, lpszSrc, len); data/wine-5.0/dlls/mapi32/util.c:743:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR)lpszPath, -1, szBuff, MAX_PATH); data/wine-5.0/dlls/mapi32/util.c:902:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lcid_ver[20]; data/wine-5.0/dlls/mcicda/mcicda.c:1241:47: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static DWORD MCICDA_SetDoor(UINT wDevID, BOOL open) data/wine-5.0/dlls/mcicda/mcicda.c:1246:38: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). TRACE("(%04x, %s) !\n", wDevID, (open) ? "OPEN" : "CLOSE"); data/wine-5.0/dlls/mcicda/mcicda.c:1251:27: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). (open) ? IOCTL_STORAGE_EJECT_MEDIA : IOCTL_STORAGE_LOAD_MEDIA, data/wine-5.0/dlls/mciseq/mcimidi.c:342:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/mciseq/mcimidi.c:363:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, buf, -1, NULL, 0 ); data/wine-5.0/dlls/mciseq/mcimidi.c:365:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buf, -1, wmm->lpstrCopyright, len ); data/wine-5.0/dlls/mciseq/mcimidi.c:372:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, buf, -1, NULL, 0 ); data/wine-5.0/dlls/mciseq/mcimidi.c:374:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buf, -1, wmm->lpstrName, len ); data/wine-5.0/dlls/mciseq/mcimidi.c:953:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/mciwave/mciwave.c:117:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPVOID)sca->dwParam2, (LPVOID)dwParam2, size); data/wine-5.0/dlls/mf/main.c:709:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/mfplat/main.c:607:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, width); data/wine-5.0/dlls/mfplat/main.c:1417:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, attribute->value.u.pwszVal, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/mfplat/main.c:2209:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(context->ptr, value, size); data/wine-5.0/dlls/mfplat/main.c:2228:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(context->buffer + item->u.subheader.offset, value, item->u.subheader.size); data/wine-5.0/dlls/mfplat/main.c:2314:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(context.buffer, &header, sizeof(header)); data/wine-5.0/dlls/mfplat/main.c:2326:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, context->ptr, size); data/wine-5.0/dlls/mfplat/main.c:5269:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(scheme, url, len * sizeof(WCHAR)); data/wine-5.0/dlls/mfplat/main.c:7281:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*dest, str, size); data/wine-5.0/dlls/midimap/midimap.c:481:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpMidiCaps, &mappercaps, min(size, sizeof(*lpMidiCaps))); data/wine-5.0/dlls/mlang/mlang.c:844:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,sjis_string,rc,output,out_count); data/wine-5.0/dlls/mlang/mlang.c:846:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,sjis_string,rc,0,0); data/wine-5.0/dlls/mlang/mlang.c:865:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_ACP,0,input,count,output,out_count); data/wine-5.0/dlls/mlang/mlang.c:867:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_ACP,0,input,count,0,0); data/wine-5.0/dlls/mlang/mlang.c:872:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,input,count,output,out_count); data/wine-5.0/dlls/mlang/mlang.c:874:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,input,count,0,0); data/wine-5.0/dlls/mlang/mlang.c:879:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(20932,0,input,count,output,out_count); data/wine-5.0/dlls/mlang/mlang.c:881:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(20932,0,input,count,0,0); data/wine-5.0/dlls/mlang/mlang.c:891:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,sjis_string,rc,output,out_count); data/wine-5.0/dlls/mlang/mlang.c:893:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(932,0,sjis_string,rc,0,0); data/wine-5.0/dlls/mlang/mlang.c:1006:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *pcDstSize = MultiByteToWideChar(dwEncoding, 0, pSrcStr, *pcSrcSize, pDstStr, *pcDstSize); data/wine-5.0/dlls/mlang/mlang.c:1008:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *pcDstSize = MultiByteToWideChar(dwEncoding, 0, pSrcStr, *pcSrcSize, NULL, 0); data/wine-5.0/dlls/mlang/mlang.c:1326:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, rfc1766A, -1, rfc1766W, MAX_RFC1766_NAME); data/wine-5.0/dlls/mlang/mlang.c:1695:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt, This->cpinfo + This->pos, celt * sizeof(MIMECPINFO)); data/wine-5.0/dlls/mlang/mlang.c:1886:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt, This->script_info + This->pos, celt * sizeof(SCRIPTINFO)); data/wine-5.0/dlls/mlang/mlang.c:1952:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].description, -1, data/wine-5.0/dlls/mlang/mlang.c:1954:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].fixed_font, -1, data/wine-5.0/dlls/mlang/mlang.c:1956:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].proportional_font, -1, data/wine-5.0/dlls/mlang/mlang.c:2354:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt, This->info + This->pos, celt * sizeof(RFC1766INFO)); data/wine-5.0/dlls/mlang/mlang.c:2669:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->mime_cp_info[index].description, -1, data/wine-5.0/dlls/mlang/mlang.c:2671:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->mime_cp_info[index].web_charset, -1, data/wine-5.0/dlls/mlang/mlang.c:2673:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->mime_cp_info[index].header_charset, -1, data/wine-5.0/dlls/mlang/mlang.c:2675:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->mime_cp_info[index].body_charset, -1, data/wine-5.0/dlls/mlang/mlang.c:2678:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->fixed_font, -1, data/wine-5.0/dlls/mlang/mlang.c:2680:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ml_data->proportional_font, -1, data/wine-5.0/dlls/mlang/mlang.c:2760:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].mime_cp_info[n].web_charset, -1, csetW, MAX_MIMECSET_NAME); data/wine-5.0/dlls/mlang/mlang.c:2789:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].mime_cp_info[n].header_charset, -1, csetW, MAX_MIMECSET_NAME); data/wine-5.0/dlls/mlang/mlang.c:3127:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data/wine-5.0/dlls/mlang/mlang.c:3571:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].fixed_font, -1, data/wine-5.0/dlls/mlang/mlang.c:3576:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mlang_data[i].proportional_font, -1, data/wine-5.0/dlls/mlang/tests/mlang.c:571:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[256]; data/wine-5.0/dlls/mlang/tests/mlang.c:626:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). expected_len = MultiByteToWideChar(1252, 0, stringA, lenA, NULL, 0); data/wine-5.0/dlls/mlang/tests/mlang.c:635:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). expected_len = MultiByteToWideChar(1252, 0, stringA, lenA, NULL, 0); data/wine-5.0/dlls/mlang/tests/mlang.c:644:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). expected_len = MultiByteToWideChar(1252, 0, stringA, lenA, NULL, 0); data/wine-5.0/dlls/mlang/tests/mlang.c:716:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[1024]; data/wine-5.0/dlls/mlang/tests/mlang.c:720:37: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_MAILNEWS) strcat(buf, " MIMECONTF_MAILNEWS"); data/wine-5.0/dlls/mlang/tests/mlang.c:721:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_BROWSER) strcat(buf, " MIMECONTF_BROWSER"); data/wine-5.0/dlls/mlang/tests/mlang.c:722:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_MINIMAL) strcat(buf, " MIMECONTF_MINIMAL"); data/wine-5.0/dlls/mlang/tests/mlang.c:723:35: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_IMPORT) strcat(buf, " MIMECONTF_IMPORT"); data/wine-5.0/dlls/mlang/tests/mlang.c:724:45: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_SAVABLE_MAILNEWS) strcat(buf, " MIMECONTF_SAVABLE_MAILNEWS"); data/wine-5.0/dlls/mlang/tests/mlang.c:725:44: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_SAVABLE_BROWSER) strcat(buf, " MIMECONTF_SAVABLE_BROWSER"); data/wine-5.0/dlls/mlang/tests/mlang.c:726:35: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_EXPORT) strcat(buf, " MIMECONTF_EXPORT"); data/wine-5.0/dlls/mlang/tests/mlang.c:727:42: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_PRIVCONVERTER) strcat(buf, " MIMECONTF_PRIVCONVERTER"); data/wine-5.0/dlls/mlang/tests/mlang.c:728:34: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_VALID) strcat(buf, " MIMECONTF_VALID"); data/wine-5.0/dlls/mlang/tests/mlang.c:729:38: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_VALID_NLS) strcat(buf, " MIMECONTF_VALID_NLS"); data/wine-5.0/dlls/mlang/tests/mlang.c:730:37: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_MIME_IE4) strcat(buf, " MIMECONTF_MIME_IE4"); data/wine-5.0/dlls/mlang/tests/mlang.c:731:40: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_MIME_LATEST) strcat(buf, " MIMECONTF_MIME_LATEST"); data/wine-5.0/dlls/mlang/tests/mlang.c:732:42: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MIMECONTF_MIME_REGISTRY) strcat(buf, " MIMECONTF_MIME_REGISTRY"); data/wine-5.0/dlls/mlang/tests/mlang.c:751:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch[10]; data/wine-5.0/dlls/mlang/tests/mlang.c:1361:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lcid_table[i].rfc1766, -1, rfc1766W, MAX_RFC1766_NAME); data/wine-5.0/dlls/mlang/tests/mlang.c:2355:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, stream_data + stream_pos, size); data/wine-5.0/dlls/mmdevapi/devenum.c:450:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, pv.u.pwszVal, size_bytes); data/wine-5.0/dlls/mmdevapi/devenum.c:1160:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(old_val, new_val, sizeof(new_val)); data/wine-5.0/dlls/mmdevapi/devenum.c:1579:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv->u.pwszVal, drvs.module_name, size); data/wine-5.0/dlls/mmdevapi/tests/mmdevenum.c:98:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[128]; data/wine-5.0/dlls/mmdevapi/tests/propstore.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[128]; data/wine-5.0/dlls/mmdevapi/tests/propstore.c:108:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[128]; data/wine-5.0/dlls/mmsystem.dll16/driver.c:253:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drvName[128]; data/wine-5.0/dlls/mmsystem.dll16/mci16.c:46:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[100]; data/wine-5.0/dlls/mmsystem.dll16/mci16.c:112:2: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "MCI_<<%04X>>", wMsg); data/wine-5.0/dlls/mmsystem.dll16/mci16.c:123:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/mmsystem.dll16/mci16.c:125:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ret) MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/mmsystem.dll16/mci16.c:317:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mop32w + 1, mop16 + 1, sizeof(MCI_ANIM_OPEN_PARMS16) - sizeof(MCI_OPEN_PARMS16)); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:104:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(mmt16->u), &(mmt32->u), sizeof(mmt16->u)); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:225:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &tc16, min(wSize, sizeof(tc16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:374:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &mic16, min(uSize, sizeof(mic16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:500:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpmc16[i].Bounds, &mlcA.pamxctrl[i].Bounds, data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:503:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpmc16[i].Metrics, &mlcA.pamxctrl[i].Metrics, data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:628:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &ac16, min(uSize, sizeof(ac16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:709:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &moc16, min(uSize, sizeof(moc16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:921:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &mic16, min(uSize, sizeof(mic16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:1204:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &woc16, min(uSize, sizeof(woc16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:1492:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &wic16, min(uSize, sizeof(wic16))); data/wine-5.0/dlls/mmsystem.dll16/mmsystem.c:1704:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[16]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[128]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:166:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar( CP_UNIXCP, 0, str, 36, buffer + 1, 36 )) data/wine-5.0/dlls/mountmgr.sys/dbus.c:188:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[128]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:719:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ident[40]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:751:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ident[40]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:1024:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char iface[IF_NAMESIZE]; data/wine-5.0/dlls/mountmgr.sys/dbus.c:1200:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, value, len ); data/wine-5.0/dlls/mountmgr.sys/device.c:127:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( path, "/dosdevices/a::" ); data/wine-5.0/dlls/mountmgr.sys/device.c:568:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char in_use[26]; data/wine-5.0/dlls/mountmgr.sys/device.c:1137:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( irp->AssociatedIrp.SystemBuffer, &info, len ); data/wine-5.0/dlls/mountmgr.sys/device.c:1157:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( irp->AssociatedIrp.SystemBuffer, &info, len ); data/wine-5.0/dlls/mountmgr.sys/device.c:1166:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( irp->AssociatedIrp.SystemBuffer, &dev->devnum, len ); data/wine-5.0/dlls/mountmgr.sys/device.c:1322:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unix_path[256]; data/wine-5.0/dlls/mountmgr.sys/device.c:1379:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%u", n ); data/wine-5.0/dlls/mountmgr.sys/device.c:1394:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%u", n ); data/wine-5.0/dlls/mountmgr.sys/diskarb.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device[64]; data/wine-5.0/dlls/mountmgr.sys/diskarb.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mount_point[PATH_MAX]; data/wine-5.0/dlls/mountmgr.sys/diskarb.c:68:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model[64]; data/wine-5.0/dlls/mountmgr.sys/diskarb.c:88:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( device, "/dev/r" ); data/wine-5.0/dlls/mountmgr.sys/diskarb.c:153:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( device, O_RDONLY )) >= 0) data/wine-5.0/dlls/mountmgr.sys/diskarb.c:184:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device[100]; data/wine-5.0/dlls/mountmgr.sys/diskarb.c:190:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( device, "/dev/r" ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:56:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mount->id, id, id_len ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:75:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, device_name->Buffer, device_name->Length ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:196:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( input, buff, insize ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:207:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)buff + pos, mount->name.Buffer, mount->name.Length ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:212:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)buff + pos, mount->link.Buffer, mount->link.Length ); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:217:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)buff + pos, mount->id, mount->id_len ); data/wine-5.0/dlls/mp3dmod/tests/mp3dmod.c:168:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(inbuf.data + 96 * i, mp3hdr, 4); data/wine-5.0/dlls/mpr/pwcache.c:61:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( name, "X-%02X-", nType ); data/wine-5.0/dlls/mpr/pwcache.c:261:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(prefix, "X-%02X-", nType ); data/wine-5.0/dlls/mpr/pwcache.c:303:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( entry->abResource, val, val_sz ); data/wine-5.0/dlls/mpr/tests/mpr.c:30:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/mpr/tests/mpr.c:95:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/mpr/tests/mpr.c:215:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resource_buf[32]; data/wine-5.0/dlls/mpr/tests/mpr.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char password_buf[32]; data/wine-5.0/dlls/mpr/tests/mpr.c:217:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix_buf[32]; data/wine-5.0/dlls/mpr/tests/mpr.c:239:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(password_buf, "------"); data/wine-5.0/dlls/mpr/tests/mpr.c:266:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outBuf[4], drive[] = "J:", letter; data/wine-5.0/dlls/mpr/tests/mpr.c:284:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(netRes->lpRemoteName, "\\\\127.0.0.1\\c$"); data/wine-5.0/dlls/mpr/wnet.c:322:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(providerTable->entireNetwork, stringresource, entireNetworkLen*sizeof(WCHAR)); data/wine-5.0/dlls/mpr/wnet.c:556:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNetOut, lpNetIn, sizeof(NETRESOURCEA)); data/wine-5.0/dlls/mpr/wnet.c:621:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). totalBytes += MultiByteToWideChar(CP_ACP, 0, lpNet->lpLocalName, data/wine-5.0/dlls/mpr/wnet.c:624:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). totalBytes += MultiByteToWideChar(CP_ACP, 0, lpNet->lpRemoteName, data/wine-5.0/dlls/mpr/wnet.c:627:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). totalBytes += MultiByteToWideChar(CP_ACP, 0, lpNet->lpComment, data/wine-5.0/dlls/mpr/wnet.c:630:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). totalBytes += MultiByteToWideChar(CP_ACP, 0, lpNet->lpProvider, data/wine-5.0/dlls/mpr/wnet.c:641:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNetOut, lpNetIn, sizeof(NETRESOURCEW)); data/wine-5.0/dlls/mpr/wnet.c:648:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strNext += MultiByteToWideChar(CP_ACP, 0, lpNetIn->lpLocalName, data/wine-5.0/dlls/mpr/wnet.c:654:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strNext += MultiByteToWideChar(CP_ACP, 0, lpNetIn->lpRemoteName, data/wine-5.0/dlls/mpr/wnet.c:660:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strNext += MultiByteToWideChar(CP_ACP, 0, lpNetIn->lpComment, data/wine-5.0/dlls/mpr/wnet.c:666:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). strNext += MultiByteToWideChar(CP_ACP, 0, lpNetIn->lpProvider, data/wine-5.0/dlls/mpr/wnet.c:1282:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(local, source, len); data/wine-5.0/dlls/mpr/wnet.c:1350:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(curr, &buffer[i], sizeof(NETRESOURCEW)); data/wine-5.0/dlls/mpr/wnet.c:2173:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/mpr/wnet.c:2175:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ret) MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/mpr/wnet.c:2358:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, lpLocalName, -1, NULL, 0); data/wine-5.0/dlls/mpr/wnet.c:2369:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpLocalName, -1, wideLocalName, len); data/wine-5.0/dlls/mpr/wnet.c:2436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/mpr/wnet.c:2463:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, mount_point, -1, NULL, 0 ); data/wine-5.0/dlls/mpr/wnet.c:2471:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *size = MultiByteToWideChar( CP_UNIXCP, 0, mount_point, -1, remote, *size); data/wine-5.0/dlls/mpr/wnet.c:2852:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpProvider, -1, NULL, 0); data/wine-5.0/dlls/mpr/wnet.c:2859:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpProvider, -1, wideProvider, data/wine-5.0/dlls/msacm.dll16/wineacm16.h:76:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFilterTag[ACMFILTERTAGDETAILS_FILTERTAG_CHARS]; data/wine-5.0/dlls/msacm.dll16/wineacm16.h:77:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFilter[ACMFILTERDETAILS_FILTER_CHARS]; data/wine-5.0/dlls/msacm32.drv/wavemap.c:524:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpWaveCaps, &woc, min(dwParam2, sizeof(woc))); data/wine-5.0/dlls/msacm32.drv/wavemap.c:1079:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpWaveCaps, &wic, min(dwParam2, sizeof(wic))); data/wine-5.0/dlls/msacm32/driver.c:80:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, (LPSTR)lParam, -1, NULL, 0); data/wine-5.0/dlls/msacm32/driver.c:83:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPSTR)lParam, -1, driverW, len); data/wine-5.0/dlls/msacm32/driver.c:266:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(padd, &padda, padda.cbStruct); data/wine-5.0/dlls/msacm32/driver.c:304:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(padd, &paddw, paddw.cbStruct); data/wine-5.0/dlls/msacm32/driver.c:547:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Drivers32", -1, section_name, len); data/wine-5.0/dlls/msacm32/filter.c:364:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "PCM", -1, paftd->szFilterTag, data/wine-5.0/dlls/msacm32/format.c:316:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, pafmtc->pszTitle, -1, NULL, 0); data/wine-5.0/dlls/msacm32/format.c:322:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pafmtc->pszTitle, -1, title, sz); data/wine-5.0/dlls/msacm32/format.c:327:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, pafmtc->pszName, -1, NULL, 0); data/wine-5.0/dlls/msacm32/format.c:333:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pafmtc->pszName, -1, name, sz); data/wine-5.0/dlls/msacm32/format.c:342:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar(CP_ACP, 0, pafmtc->pszTemplateName, -1, NULL, 0); data/wine-5.0/dlls/msacm32/format.c:348:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pafmtc->pszTemplateName, -1, templ, sz); data/wine-5.0/dlls/msacm32/format.c:505:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (pafd->pwfx->nChannels == 1) ? "; Mono" : "; Stereo", -1, data/wine-5.0/dlls/msacm32/format.c:774:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwfxDst, pwfxSrc, sizeof(PCMWAVEFORMAT)); data/wine-5.0/dlls/msacm32/format.c:931:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "PCM", -1, paftd->szFormatTag, data/wine-5.0/dlls/msacm32/format.c:1038:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "PCM", -1, paftd->szFormatTag, data/wine-5.0/dlls/msacm32/format.c:1064:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "PCM", -1, paftd->szFormatTag, data/wine-5.0/dlls/msacm32/pcmconverter.c:294:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ns); data/wine-5.0/dlls/msacm32/pcmconverter.c:300:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ns * 2); data/wine-5.0/dlls/msacm32/pcmconverter.c:306:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ns * 2); data/wine-5.0/dlls/msacm32/pcmconverter.c:312:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ns * 4); data/wine-5.0/dlls/msacm32/pcmconverter.c:986:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "MS-PCM", -1, add->szShortName, ARRAY_SIZE(add->szShortName)); data/wine-5.0/dlls/msacm32/pcmconverter.c:987:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Wine PCM converter", -1, data/wine-5.0/dlls/msacm32/pcmconverter.c:989:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/msacm32/pcmconverter.c:991:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/msacm32/stream.c:167:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wfxSrc, pwfxSrc, sizeof(PCMWAVEFORMAT)); data/wine-5.0/dlls/msacm32/stream.c:174:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wfxDst, pwfxDst, sizeof(PCMWAVEFORMAT)); data/wine-5.0/dlls/msacm32/stream.c:212:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(was->drvInst.pwfxSrc, pwfxSrc, wfxSrcSize); data/wine-5.0/dlls/msacm32/stream.c:214:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(was->drvInst.pwfxDst, pwfxDst, wfxDstSize); data/wine-5.0/dlls/msacm32/stream.c:217:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(was->drvInst.pwfltr, pwfltr, sizeof(WAVEFILTER)); data/wine-5.0/dlls/msacm32/tests/msacm.c:1365:25: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int load, free, open, close, enable, disable, install, data/wine-5.0/dlls/msacm32/tests/msacm.c:1374:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open, close, size, convert, prepare, unprepare, reset; data/wine-5.0/dlls/msacm32/tests/msacm.c:1429:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->szShortName, "TEST-CODEC"); data/wine-5.0/dlls/msacm32/tests/msacm.c:1430:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->szLongName, "Wine Test Codec"); data/wine-5.0/dlls/msacm32/tests/msacm.c:1431:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->szCopyright, "Brought to you by the Wine team..."); data/wine-5.0/dlls/msacm32/tests/msacm.c:1432:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr->szLicensing, "Refer to LICENSE file"); data/wine-5.0/dlls/msacm32/tests/msacm.c:1506:83: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ok(driver_calls.driver.open == 1, "Expected 1, got %d\n", driver_calls.driver.open); data/wine-5.0/dlls/msacm32/tests/msacm.c:1517:83: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ok(driver_calls.driver.open == 1, "Expected 1, got %d\n", driver_calls.driver.open); data/wine-5.0/dlls/msado15/stream.c:428:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, stream->buf + stream->pos, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msado15/stream.c:460:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( stream->buf + stream->pos, data, size ); data/wine-5.0/dlls/msadp32.acm/msadp32.c:174:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(awfx->aCoef, MSADPCM_CoeffSet, 7 * sizeof(ADPCMCOEFSET)); data/wine-5.0/dlls/msadp32.acm/msadp32.c:388:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "MS-ADPCM", -1, data/wine-5.0/dlls/msadp32.acm/msadp32.c:390:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Wine MS ADPCM converter", -1, data/wine-5.0/dlls/msadp32.acm/msadp32.c:392:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/msadp32.acm/msadp32.c:394:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/mscms/icc.c:47:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( header, profile->data, sizeof(PROFILEHEADER) ); data/wine-5.0/dlls/mscms/icc.c:58:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( profile->data, header, sizeof(PROFILEHEADER) ); data/wine-5.0/dlls/mscms/icc.c:103:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, profile->data + tag.offset + offset, tag.size - offset ); data/wine-5.0/dlls/mscms/icc.c:116:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( profile->data + tag.offset + offset, buffer, *len ); data/wine-5.0/dlls/mscms/profile.c:51:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:53:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/mscms/profile.c:88:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, profile, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:91:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, profile, -1, profileW, len ); data/wine-5.0/dlls/mscms/profile.c:93:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, device, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:96:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, device, -1, deviceW, len ); data/wine-5.0/dlls/mscms/profile.c:196:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, profile, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:199:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, profile, -1, profileW, len ); data/wine-5.0/dlls/mscms/profile.c:201:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, device, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:204:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, device, -1, deviceW, len ); data/wine-5.0/dlls/mscms/profile.c:458:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, profile->data, profile->size ); data/wine-5.0/dlls/mscms/profile.c:810:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char colordir[MAX_PATH], glob[MAX_PATH], **profiles = NULL; data/wine-5.0/dlls/mscms/profile.c:840:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &recordW, record, sizeof(ENUMTYPEA) ); data/wine-5.0/dlls/mscms/profile.c:1084:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, profile, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:1089:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, profile, -1, profileW, len ); data/wine-5.0/dlls/mscms/profile.c:1298:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, profile, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:1303:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, profile, -1, profileW, len ); data/wine-5.0/dlls/mscms/profile.c:1342:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, in->pProfileData, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/profile.c:1345:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, in->pProfileData, -1, out->pProfileData, len ); data/wine-5.0/dlls/mscms/profile.c:1413:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, profile->pProfileData, profile->cbDataSize ); data/wine-5.0/dlls/mscms/tests/profile.c:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/mscms/tests/profile.c:239:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[51]; data/wine-5.0/dlls/mscms/tests/profile.c:1023:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[51]; data/wine-5.0/dlls/mscms/tests/profile.c:1208:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char destA[MAX_PATH]; data/wine-5.0/dlls/mscms/tests/profile.c:1246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char profile[MAX_PATH], basename[MAX_PATH]; data/wine-5.0/dlls/mscms/tests/profile.c:1323:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char glob[MAX_PATH + sizeof("\\*.icm")]; data/wine-5.0/dlls/mscms/tests/profile.c:1372:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], file[MAX_PATH], profilefile1[MAX_PATH], profilefile2[MAX_PATH]; data/wine-5.0/dlls/mscms/tests/profile.c:1400:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, profilefile1, -1, profilefile1W, MAX_PATH); data/wine-5.0/dlls/mscms/tests/profile.c:1436:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, testprofile, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/tests/profile.c:1437:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, testprofile, -1, fileW, len ); data/wine-5.0/dlls/mscms/transform.c:104:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &spaceW, space, FIELD_OFFSET(LOGCOLORSPACEA, lcsFilename) ); data/wine-5.0/dlls/mscms/transform.c:107:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, space->lcsFilename, -1, NULL, 0 ); data/wine-5.0/dlls/mscms/transform.c:108:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, space->lcsFilename, -1, spaceW.lcsFilename, len ); data/wine-5.0/dlls/mscoree/assembly.c:138:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(assembly->metadatahdr, metadatahdr, size); data/wine-5.0/dlls/mscoree/assembly.c:145:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, ptr, sizeof(METADATAHDR) - ofs); data/wine-5.0/dlls/mscoree/corruntimehost.c:1390:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tokens, vtable, sizeof(*tokens) * vtable_fixup->count); data/wine-5.0/dlls/mscoree/corruntimehost.c:1493:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(priv_path[i], config_file, config_file_dir_size * sizeof(WCHAR)); data/wine-5.0/dlls/mscoree/corruntimehost.c:1717:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, ptr_path_start, (char*)ptr_path_end - (char*)ptr_path_start); data/wine-5.0/dlls/mscoree/metahost.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mono_lib_path_a[MAX_PATH], mono_etc_path_a[MAX_PATH]; data/wine-5.0/dlls/mscoree/metahost.c:160:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char trace_setting[256]; data/wine-5.0/dlls/mscoree/metahost.c:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char verbose_setting[256]; data/wine-5.0/dlls/mscoree/metahost.c:425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[11]; data/wine-5.0/dlls/mscoree/metahost.c:434:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *pcchBuffer = MultiByteToWideChar(CP_UTF8, 0, version, -1, NULL, 0); data/wine-5.0/dlls/mscoree/metahost.c:439:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, version, -1, pwzBuffer, buffer_size); data/wine-5.0/dlls/mscoree/metahost.c:1086:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *pcchBuffer = MultiByteToWideChar(CP_UTF8, 0, version, -1, NULL, 0); data/wine-5.0/dlls/mscoree/metahost.c:1091:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, version, -1, pwzBuffer, buffer_size); data/wine-5.0/dlls/mscoree/metahost.c:1426:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->name, entry_start, basename_end - entry_start); data/wine-5.0/dlls/mscoree/metahost.c:1445:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/mscoree/metahost.c:1546:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(name_end, ".*"); data/wine-5.0/dlls/mscoree/metahost.c:1634:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). stringnameW_size = MultiByteToWideChar(CP_UTF8, 0, assemblyname, -1, NULL, 0); data/wine-5.0/dlls/mscoree/metahost.c:1638:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, assemblyname, -1, stringnameW, stringnameW_size); data/wine-5.0/dlls/mscoree/metahost.c:1668:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). stringnameW_size = MultiByteToWideChar(CP_UTF8, 0, stringname, -1, NULL, 0); data/wine-5.0/dlls/mscoree/metahost.c:1673:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, stringname, -1, stringnameW, stringnameW_size); data/wine-5.0/dlls/mscoree/mscoree_main.c:659:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). parts[0] = atoi(version); data/wine-5.0/dlls/mscoree/mscoree_main.c:667:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). parts[1] = atoi(minor_start); data/wine-5.0/dlls/mscoree/mscoree_main.c:671:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). parts[2] = atoi(build_start+1); data/wine-5.0/dlls/mscoree/mscoree_main.c:703:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(app+len, controlW, sizeof(controlW)); data/wine-5.0/dlls/mscoree/mscoree_main.c:709:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(args, app, len*sizeof(WCHAR) + sizeof(controlW)); data/wine-5.0/dlls/mscoree/mscoree_main.c:710:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(args + len + ARRAY_SIZE(controlW) - 1, argsW, sizeof(argsW)); data/wine-5.0/dlls/mscoree/mscoree_main.c:734:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char versionstringbuf[15]; data/wine-5.0/dlls/mscoree/mscoree_main.c:782:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char versionstringbuf[15]; data/wine-5.0/dlls/mscoree/mscoree_main.c:783:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char productcodebuf[39]; data/wine-5.0/dlls/mscoree/mscoree_main.c:948:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (BYTE *)dst + offset, src, size ); data/wine-5.0/dlls/mscoree/mscoree_main.c:953:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, (const BYTE *)src + offset, size ); data/wine-5.0/dlls/mscoree/tests/comtest.c:74:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:75:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_temp[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:179:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp_manifest[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:180:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll_source[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:182:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_dll[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_exe[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:280:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_dll[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:300:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exe[MAX_PATH]; data/wine-5.0/dlls/mscoree/tests/comtest.c:345:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). run_type run = atoi(argv[3]); data/wine-5.0/dlls/mscoree/tests/mscoree.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH + sizeof(cmdline_format)]; data/wine-5.0/dlls/mscoree/tests/mscoree.c:439:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256] = {0}; data/wine-5.0/dlls/msctf/threadmgr.c:886:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newkey->description, pchDesc, cchDesc*sizeof(WCHAR)); data/wine-5.0/dlls/msdaps/row_server.c:195:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&V_I1(&out_data[i].v), cols[i].pData, cols[i].cbDataLen); data/wine-5.0/dlls/msdaps/row_server.c:286:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cols[i].pData, &V_I1(&in_data[i].v), db_type_size(in_data[i].type, in_data[i].max_len)); data/wine-5.0/dlls/msdaps/row_server.c:712:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgColumns[i].pData, &V_I1(&out_data[i].v), out_data[i].data_len); data/wine-5.0/dlls/msdaps/row_server.c:793:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&V_I1(&in_data[i].v), rgColumns[i].pData, db_type_size(rgColumns[i].wType, rgColumns[i].cbDataLen)); data/wine-5.0/dlls/msdaps/row_server.c:1000:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*prghRows, rows, *pcRowObtained * sizeof(rows[0])); data/wine-5.0/dlls/msdaps/row_server.c:1069:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*prghRows, rows, *pcRowsObtained * sizeof(rows[0])); data/wine-5.0/dlls/msdmo/dmoreg.c:384:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ret, types, count*sizeof(*types)); data/wine-5.0/dlls/msdmo/dmort.c:186:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdst->pbFormat, psrc->pbFormat, psrc->cbFormat); data/wine-5.0/dlls/msdmo/tests/msdmo.c:33:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[50]; data/wine-5.0/dlls/msdmo/tests/msdmo.c:34:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x", data/wine-5.0/dlls/msdmo/tests/msdmo.c:43:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[200]; data/wine-5.0/dlls/msg711.acm/msg711.c:211:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char _u2a[128] = { /* u- to A-law conversions */ data/wine-5.0/dlls/msg711.acm/msg711.c:232:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char _a2u[128] = { /* A- to u-law conversions */ data/wine-5.0/dlls/msg711.acm/msg711.c:659:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Microsoft CCITT G.711", -1, data/wine-5.0/dlls/msg711.acm/msg711.c:661:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Wine G711 converter", -1, data/wine-5.0/dlls/msg711.acm/msg711.c:663:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/msg711.acm/msg711.c:665:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:72:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[128]; data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:127:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Microsoft GSM 6.10", -1, data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:129:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Wine GSM 6.10 libgsm codec", -1, data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:131:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Brought to you by the Wine team...", -1, data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:133:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "Refer to LICENSE file", -1, data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:531:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char emptiness[320]; data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:541:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(emptiness, src+nsrc, todo); data/wine-5.0/dlls/msgsm32.acm/msgsm32.c:548:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(emptiness, src+nsrc, todo); data/wine-5.0/dlls/mshtml/dispex.c:838:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, func_prefixW, sizeof(func_prefixW)); data/wine-5.0/dlls/mshtml/dispex.c:841:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, This->info->name, name_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/dispex.c:844:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, func_suffixW, sizeof(func_suffixW)); data/wine-5.0/dlls/mshtml/dispex.c:908:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_dp.rgvarg+1, dp->rgvarg, dp->cArgs*sizeof(VARIANTARG)); data/wine-5.0/dlls/mshtml/editor.c:374:106: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void handle_arrow_key(HTMLDocumentNode *doc, nsIDOMEvent *event, nsIDOMKeyEvent *key_event, const char * const cmds[4]) data/wine-5.0/dlls/mshtml/editor.c:550:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, stra, -1, NULL, 0); data/wine-5.0/dlls/mshtml/editor.c:552:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, strw, len); data/wine-5.0/dlls/mshtml/editor.c:569:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char color_str[10]; data/wine-5.0/dlls/mshtml/editor.c:571:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(color_str, "#%02x%02x%02x", data/wine-5.0/dlls/mshtml/editor.c:1049:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url, type, (lstrlenW(type) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/editor.c:1051:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url + lstrlenW(type), wszSlashSlash, sizeof(wszSlashSlash)); data/wine-5.0/dlls/mshtml/htmlevent.c:281:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(container->type, type, (type_len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlevent.c:2543:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_listeners, listeners, listeners_cnt * sizeof(*listeners)); data/wine-5.0/dlls/mshtml/htmlevent.c:2705:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_chain, target_chain, chain_buf_size * sizeof(*new_chain)); data/wine-5.0/dlls/mshtml/htmllocation.c:208:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url_path + 1, url.lpszUrlPath, url.dwUrlPathLength * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmllocation.c:361:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, url.lpszHostName, url.dwHostNameLength * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmllocation.c:363:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + url.dwHostNameLength + 1, portW, port_len * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlstyle.c:882:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, val, (ptr-val)*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlstyle.c:5274:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos_val, val, val_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlstyle.c:5276:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos_val+val_len, posy, posy_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlstyle.c:5372:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos_val, pos, posx_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlstyle.c:5374:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos_val+posx_len, val, val_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/htmlwindow.c:640:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg, message, MAX_MESSAGE_LEN*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/loadopts.c:137:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuffer, iter->buffer, iter->size); data/wine-5.0/dlls/mshtml/loadopts.c:175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(iter->buffer, pBuffer, iter->size); data/wine-5.0/dlls/mshtml/main.c:196:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_entry->host, key_name, name_size * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/main.c:640:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pse[i].pszValue, "{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}", data/wine-5.0/dlls/mshtml/mshtml_private.h:1246:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/mshtml/mshtml_private.h:1260:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/mshtml_private.h:1278:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/mshtml/mshtml_private.h:1291:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/mshtml_private.h:1294:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/mshtml_private.h:1321:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/mshtml_private.h:1324:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/mutation.c:168:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, (end-ptr)*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/mutation.c:459:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/mshtml/mutation.c:470:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "X-UA-Compatible"); data/wine-5.0/dlls/mshtml/navigate.c:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/mshtml/navigate.c:140:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(aBuf, This->buf, read); data/wine-5.0/dlls/mshtml/navigate.c:483:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pszAdditionalHeaders, This->request_data.headers, size); data/wine-5.0/dlls/mshtml/navigate.c:930:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, data, ptr-data, NULL, 0); data/wine-5.0/dlls/mshtml/navigate.c:933:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data, ptr-data, headers, size); data/wine-5.0/dlls/mshtml/navigate.c:960:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_data, post_data, data_len); data/wine-5.0/dlls/mshtml/navigate.c:1776:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, iter->header, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/navigate.c:1783:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, iter->data, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/navigate.c:1839:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->bsc.request_data.post_data, post_data, post_data_size); data/wine-5.0/dlls/mshtml/nsembed.c:426:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(app+len, controlW, sizeof(controlW)); data/wine-5.0/dlls/mshtml/nsembed.c:432:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(args, app, len*sizeof(WCHAR) + sizeof(controlW)); data/wine-5.0/dlls/mshtml/nsembed.c:433:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(args + len + ARRAY_SIZE(controlW)-1, argsW, sizeof(argsW)); data/wine-5.0/dlls/mshtml/nsembed.c:527:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char langs[100]; data/wine-5.0/dlls/mshtml/nsembed.c:634:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(gecko_path + len, L"\\xul.dll"); data/wine-5.0/dlls/mshtml/nsembed.c:677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[128]; data/wine-5.0/dlls/mshtml/nsembed.c:696:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(file_name + len, L"\\VERSION"); data/wine-5.0/dlls/mshtml/nsembed.c:749:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str1, len1 * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/nsembed.c:750:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret + len1, str2, len2 * sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/nsio.c:2745:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, scheme, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/mshtml/nsio.c:3759:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, aOriginCharset, -1, NULL, 0); data/wine-5.0/dlls/mshtml/nsio.c:3763:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, aOriginCharset, -1, charset, len); data/wine-5.0/dlls/mshtml/nsio.c:3770:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, spec, -1, new_spec, ARRAY_SIZE(new_spec)); data/wine-5.0/dlls/mshtml/nsservice.c:287:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*aText, title, size); data/wine-5.0/dlls/mshtml/omnavigator.c:1170:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char user_agent[512]; data/wine-5.0/dlls/mshtml/omnavigator.c:1187:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, user_agent + skip_prefix, -1, NULL, 0); data/wine-5.0/dlls/mshtml/omnavigator.c:1192:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, user_agent + skip_prefix, -1, *p, size); data/wine-5.0/dlls/mshtml/omnavigator.c:1199:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char user_agent[512]; data/wine-5.0/dlls/mshtml/omnavigator.c:1210:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, user_agent, -1, NULL, 0); data/wine-5.0/dlls/mshtml/omnavigator.c:1215:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, user_agent, -1, *p, size); data/wine-5.0/dlls/mshtml/pluginhost.c:2282:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+1, ptr, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/protocol.c:276:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, This->data+This->cur, *pcbRead); data/wine-5.0/dlls/mshtml/protocol.c:387:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, html_begin, sizeof(html_begin)); data/wine-5.0/dlls/mshtml/protocol.c:443:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, pwzUrl, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/protocol.c:633:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, LoadResource(hdll, src), This->data_len); data/wine-5.0/dlls/mshtml/protocol.c:706:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_part, pwzUrl + ARRAY_SIZE(wszRes), len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/protocol.c:733:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, wszFile, sizeof(wszFile)); data/wine-5.0/dlls/mshtml/protocol.c:734:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult + ARRAY_SIZE(wszFile), full_path, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/range.c:390:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->buf+buf->len, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/script.c:847:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text, bsc->buf, bsc->bsc.read); data/wine-5.0/dlls/mshtml/script.c:858:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cp, 0, bsc->buf, bsc->bsc.read, NULL, 0); data/wine-5.0/dlls/mshtml/script.c:863:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, bsc->buf, bsc->bsc.read, text, len); data/wine-5.0/dlls/mshtml/script.c:1324:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(language, text, (ptr-text)*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/tests/activex.c:210:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/activex.c:212:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/activex.c:2256:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, len); data/wine-5.0/dlls/mshtml/tests/dom.c:569:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size_t wlen = MultiByteToWideChar(CP_ACP, 0, stra, len, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/mshtml/tests/dom.c:600:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/dom.c:602:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/dom.c:2255:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/mshtml/tests/dom.c:2269:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", wdth); data/wine-5.0/dlls/mshtml/tests/dom.c:2278:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", hght); data/wine-5.0/dlls/mshtml/tests/dom.c:6285:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/mshtml/tests/dom.c:6553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/mshtml/tests/dom.c:6592:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "ms__id%u", num); data/wine-5.0/dlls/mshtml/tests/dom.c:10878:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, len); data/wine-5.0/dlls/mshtml/tests/events.c:150:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/events.c:152:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/events.c:3269:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, len); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:317:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:319:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:714:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data, data_len); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:1076:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, html_page, sizeof(html_page)-1); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:1613:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszDisplayName, doc_url, sizeof(doc_url)); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:2031:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcPosRect, &rect, sizeof(RECT)); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:2034:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcClipRect, &rect, sizeof(RECT)); data/wine-5.0/dlls/mshtml/tests/htmllocation.c:306:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->url, -1, url, ARRAY_SIZE(url)); data/wine-5.0/dlls/mshtml/tests/protocol.c:273:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url, res_url_base, res_url_base_len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/tests/protocol.c:274:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url_suffix, -1, url+res_url_base_len, ARRAY_SIZE(url)-res_url_base_len); data/wine-5.0/dlls/mshtml/tests/script.c:190:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/script.c:192:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/script.c:1271:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, len); data/wine-5.0/dlls/mshtml/tests/script.c:2878:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->name, name, len*sizeof(WCHAR)); data/wine-5.0/dlls/mshtml/tests/script.c:2953:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char index_html_data[4096]; data/wine-5.0/dlls/mshtml/tests/script.c:3061:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, This->ptr, read); data/wine-5.0/dlls/mshtml/tests/script.c:3396:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_name, -1, ptr, url + ARRAY_SIZE(url) - ptr); data/wine-5.0/dlls/mshtml/tests/script.c:3407:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[255] = "http://winetest.example.org"; data/wine-5.0/dlls/mshtml/tests/style.c:77:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/style.c:79:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/style.c:3631:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, len); data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:36:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:38:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char all[4096], buf[512]; data/wine-5.0/dlls/mshtml/tests/xmlhttprequest.c:451:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, ": "); data/wine-5.0/dlls/mshtml/xmlhttprequest.c:82:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, str, -1, NULL, 0); data/wine-5.0/dlls/mshtml/xmlhttprequest.c:88:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, str, -1, *p, len); data/wine-5.0/dlls/msi/action.c:348:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( prop, ptr, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/action.c:3849:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( filename + len, szlnk, sizeof(szlnk) ); data/wine-5.0/dlls/msi/action.c:4074:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/msi/action.c:5853:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( q, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/action.c:7298:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( newval, value, len_value * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/action.c:7310:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, value, (len_value + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/custom.c:250:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). WCHAR *tmpfile; data/wine-5.0/dlls/msi/custom.c:259:25: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). file = CreateFileW( tmpfile, GENERIC_WRITE, 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL ); data/wine-5.0/dlls/msi/custom.c:278:23: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). binary->tmpfile = tmpfile; data/wine-5.0/dlls/msi/custom.c:286:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileW( tmpfile ); data/wine-5.0/dlls/msi/custom.c:287:15: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). msi_free( tmpfile ); data/wine-5.0/dlls/msi/custom.c:462:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char val[MAX_PATH]; data/wine-5.0/dlls/msi/custom.c:463:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[100]; data/wine-5.0/dlls/msi/custom.c:792:83: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). TRACE("Calling function %s from %s\n", debugstr_w(target), debugstr_w(binary->tmpfile)); data/wine-5.0/dlls/msi/custom.c:794:64: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). info = do_msidbCustomActionTypeDll( package, type, binary->tmpfile, target, action ); data/wine-5.0/dlls/msi/custom.c:836:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, exe, len_exe * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/custom.c:849:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, arg, len_arg * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/custom.c:877:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). TRACE("exe %s arg %s\n", debugstr_w(binary->tmpfile), debugstr_w(arg)); data/wine-5.0/dlls/msi/custom.c:879:39: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). handle = execute_command( binary->tmpfile, arg, szCRoot ); data/wine-5.0/dlls/msi/custom.c:977:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( arg, paramsW, sizeof(paramsW) ); data/wine-5.0/dlls/msi/custom.c:979:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( arg + len, dir, len_dir * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/custom.c:982:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( arg + len, source, len_src * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/database.c:368:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar( CP_ACP, 0, data, size, NULL, 0 ); data/wine-5.0/dlls/msi/database.c:371:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, data, size, wdata, *len ); data/wine-5.0/dlls/msi/database.c:963:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/msi/database.c:1057:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[sizeof(fmt) + 10]; data/wine-5.0/dlls/msi/dialog.c:301:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, p, len*sizeof(WCHAR) ); data/wine-5.0/dlls/msi/dialog.c:1269:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, &info->string[ info->offset ], count ); data/wine-5.0/dlls/msi/files.c:185:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, ptr, size ); data/wine-5.0/dlls/msi/files.c:717:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (!tmpfile) return ERROR_INSTALL_FAILURE; data/wine-5.0/dlls/msi/files.c:718:77: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (msi_apply_filepatch( package, patch->path, patch->File->TargetPath, tmpfile )) data/wine-5.0/dlls/msi/files.c:721:33: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). msi_move_file( package, tmpfile, patch->File->TargetPath, 0 ); data/wine-5.0/dlls/msi/files.c:729:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileW( tmpfile ); data/wine-5.0/dlls/msi/files.c:730:15: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). msi_free( tmpfile ); data/wine-5.0/dlls/msi/font.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTag[4]; /* table name */ data/wine-5.0/dlls/msi/format.c:150:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, get_formstr_data(format, str), str->len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/format.c:509:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, format->deformatted, format->n * sizeof(WCHAR)); data/wine-5.0/dlls/msi/format.c:517:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str + n, replace, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/format.c:524:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[n], ptr, (lstrlenW(ptr) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/msi/format.c:877:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer,deformated,len*sizeof(WCHAR)); data/wine-5.0/dlls/msi/format.c:885:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer,deformated,(*size)*sizeof(WCHAR)); data/wine-5.0/dlls/msi/install.c:172:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( awbuf->str.w, str, min(len + 1, *sz) * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/install.c:223:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, str, min(len + 1, *sz) * sizeof(WCHAR)); data/wine-5.0/dlls/msi/msi.c:500:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(patch, beg, len * sizeof(WCHAR)); data/wine-5.0/dlls/msi/msi.c:2445:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpBuffer, p+1, len * sizeof(WCHAR)); data/wine-5.0/dlls/msi/msi.c:2477:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szProduct[GUID_SIZE]; data/wine-5.0/dlls/msi/msi.c:2635:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hash, signer->psSigner->EncryptedHash.pbData, len ); data/wine-5.0/dlls/msi/msi.c:4101:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/msi/msi.c:4102:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/msi/msipriv.h:217:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). WCHAR *tmpfile; data/wine-5.0/dlls/msi/msipriv.h:1293:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/msi/msipriv.h:1296:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/msi/package.c:293:35: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (!DeleteFileW( binary->tmpfile )) data/wine-5.0/dlls/msi/package.c:294:66: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ERR("failed to delete %s (%u)\n", debugstr_w(binary->tmpfile), GetLastError()); data/wine-5.0/dlls/msi/package.c:296:27: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). msi_free( binary->tmpfile ); data/wine-5.0/dlls/msi/package.c:1189:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + len + offset, suffix, (lstrlenW( suffix ) + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:78:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->product_code_from, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:85:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->version_from, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:94:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->product_code_to, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:101:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->version_to, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:110:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->upgrade_code, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:1016:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( transform, package->PackagePath, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/patch.c:1017:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( transform + len, xforms[i], (lstrlenW( xforms[i] ) + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/record.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, value, len * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/record.c:468:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( szValue, rec->fields[iField].u.szwVal, min(len + 1, *pcchValue) * sizeof(WCHAR) ); data/wine-5.0/dlls/msi/registry.c:255:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char table_dec85[0x80] = { data/wine-5.0/dlls/msi/registry.c:1090:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( szFeature, &szDescriptor[20], len*sizeof(WCHAR) ); data/wine-5.0/dlls/msi/streams.c:563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/msi/string.c:247:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!(sz = MultiByteToWideChar( st->codepage, 0, buffer, -1, NULL, 0 ))) data/wine-5.0/dlls/msi/string.c:252:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( st->codepage, 0, buffer, -1, str, sz ); data/wine-5.0/dlls/msi/string.c:294:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sz = MultiByteToWideChar( st->codepage, 0, data, len, NULL, 0 ); data/wine-5.0/dlls/msi/string.c:298:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( st->codepage, 0, data, len, str, sz ); data/wine-5.0/dlls/msi/string.c:337:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, data, len*sizeof(WCHAR) ); data/wine-5.0/dlls/msi/suminfo.c:214:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, propdata->u.str.str, propdata->u.str.len ); data/wine-5.0/dlls/msi/suminfo.c:293:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, §ion_hdr, SECT_HDR_SIZE ); data/wine-5.0/dlls/msi/suminfo.c:331:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &data[ofs + 4], str, len ); data/wine-5.0/dlls/msi/suminfo.c:412:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &data[sz], §ion_hdr, sizeof section_hdr ); data/wine-5.0/dlls/msi/suminfo.c:415:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &data[sz], idofs, section_hdr.cProperties * sizeof idofs[0] ); data/wine-5.0/dlls/msi/suminfo.c:658:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, prop->u.pszVal, -1, NULL, 0 ) - 1; data/wine-5.0/dlls/msi/suminfo.c:659:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, prop->u.pszVal, -1, str->str.w, *pcchValueBuf ); data/wine-5.0/dlls/msi/suminfo.c:1102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[36]; /* largest string: YYYY/MM/DD hh:mm:ss */ data/wine-5.0/dlls/msi/table.c:1787:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tv->table->data[i - 1], tv->table->data[i], tv->row_size); data/wine-5.0/dlls/msi/tests/action.c:2507:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char val[MAX_PATH]; data/wine-5.0/dlls/msi/tests/action.c:2535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char val[MAX_PATH]; data/wine-5.0/dlls/msi/tests/action.c:2648:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char date[MAX_PATH], temp[MAX_PATH], keypath[MAX_PATH], path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/action.c:3691:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char date[MAX_PATH], temp[MAX_PATH], prodcode[] = "{7DF88A48-996F-4EC8-A022-BF956F9B2CBB}"; data/wine-5.0/dlls/msi/tests/action.c:4626:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char props[MAX_PATH]; data/wine-5.0/dlls/msi/tests/action.c:4813:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/msi/tests/action.c:4980:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/msi/tests/action.c:5076:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "MSITESTVAR%i", i); data/wine-5.0/dlls/msi/tests/action.c:5569:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1000], *p; data/wine-5.0/dlls/msi/tests/action.c:5929:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inifile[MAX_PATH], buf[0x10]; data/wine-5.0/dlls/msi/tests/action.c:6535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH], log_file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/automation.c:317:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/automation.c:319:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, len ); data/wine-5.0/dlls/msi/tests/automation.c:354:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED, data/wine-5.0/dlls/msi/tests/automation.c:369:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char PROG_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/automation.c:517:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/automation.c:521:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, str, len ); data/wine-5.0/dlls/msi/tests/automation.c:863:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szName, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/automation.c:866:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szName, -1, name, len ); data/wine-5.0/dlls/msi/tests/automation.c:2030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/msi/tests/automation.c:2749:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/custom.c:39:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[2000]; data/wine-5.0/dlls/msi/tests/custom.c:83:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[300], *p; data/wine-5.0/dlls/msi/tests/custom.c:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10] = "x"; data/wine-5.0/dlls/msi/tests/custom.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/msi/tests/custom.c:285:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/msi/tests/custom.c:573:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msi/tests/custom.c:876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/msi/tests/custom.c:986:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/msi/tests/custom.c:1117:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], package_name[20]; data/wine-5.0/dlls/msi/tests/custom.c:1157:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package_name, "#%u", db); data/wine-5.0/dlls/msi/tests/custom.c:1167:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5]; data/wine-5.0/dlls/msi/tests/custom.c:1301:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prop[10]; data/wine-5.0/dlls/msi/tests/custom.c:1323:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prop[300]; data/wine-5.0/dlls/msi/tests/custom.c:1339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prop[300]; data/wine-5.0/dlls/msi/tests/custom.c:1390:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char env[2] = {0}; data/wine-5.0/dlls/msi/tests/custom.c:1421:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/custom.c:1571:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1000], *p; data/wine-5.0/dlls/msi/tests/custom.c:1594:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1000], *p; data/wine-5.0/dlls/msi/tests/custom.c:1630:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[300]; data/wine-5.0/dlls/msi/tests/custom.c:1684:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expect[MAX_PATH]; data/wine-5.0/dlls/msi/tests/custom.c:1693:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expect, "\\msitest\\maximus"); data/wine-5.0/dlls/msi/tests/custom.c:2100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buf[10]; data/wine-5.0/dlls/msi/tests/custom.c:2105:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\msitest\\test.ini"); data/wine-5.0/dlls/msi/tests/custom.c:2115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buf[10]; data/wine-5.0/dlls/msi/tests/custom.c:2120:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\msitest\\test.ini"); data/wine-5.0/dlls/msi/tests/db.c:52:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200] = "x"; data/wine-5.0/dlls/msi/tests/db.c:340:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; data/wine-5.0/dlls/msi/tests/db.c:496:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prod[MAX_FEATURE_CHARS+1], comp[MAX_FEATURE_CHARS+1], feature[MAX_FEATURE_CHARS+1]; data/wine-5.0/dlls/msi/tests/db.c:854:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/msi/tests/db.c:1239:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char query[0x100]; data/wine-5.0/dlls/msi/tests/db.c:1359:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:1362:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/msi/tests/db.c:1514:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:1515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:1837:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:1838:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:2233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str_value[50]; data/wine-5.0/dlls/msi/tests/db.c:2493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:2494:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:2495:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:2740:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char szQueryBuf[256] = "SELECT * from `_Tables`"; data/wine-5.0/dlls/msi/tests/db.c:2950:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mstfile, -1, name, 0x20); data/wine-5.0/dlls/msi/tests/db.c:3054:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(szPackage, "#%u", hdb); data/wine-5.0/dlls/msi/tests/db.c:3076:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:4702:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msi/tests/db.c:5486:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:5618:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, msifile, -1, name, 0x20); data/wine-5.0/dlls/msi/tests/db.c:6710:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:6995:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, MAX_PATH); data/wine-5.0/dlls/msi/tests/db.c:7022:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:7023:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/msi/tests/db.c:7107:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, msifile, -1, name, MAX_PATH); data/wine-5.0/dlls/msi/tests/db.c:7113:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "stgname", -1, name, MAX_PATH); data/wine-5.0/dlls/msi/tests/db.c:7119:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "storage.bin", -1, name, MAX_PATH); data/wine-5.0/dlls/msi/tests/db.c:7154:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package, "#%u", hdb); data/wine-5.0/dlls/msi/tests/db.c:7214:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package, "#%u", hdb); data/wine-5.0/dlls/msi/tests/db.c:8391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x20]; data/wine-5.0/dlls/msi/tests/db.c:8492:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msi/tests/db.c:8687:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5]; data/wine-5.0/dlls/msi/tests/db.c:9088:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5]; data/wine-5.0/dlls/msi/tests/format.c:38:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(szPackage, "#%u", hdb); data/wine-5.0/dlls/msi/tests/format.c:63:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, szName, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/format.c:66:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, szName, -1, nameW, len ); data/wine-5.0/dlls/msi/tests/format.c:146:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msi/tests/format.c:1717:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msi/tests/install.c:65:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:66:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PROG_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:67:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PROG_FILES_DIR_NATIVE[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:68:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char COMMON_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:69:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char APP_DATA_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:70:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char WINDOWS_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2308:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2507:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *buffer, path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2596:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2621:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[200]; data/wine-5.0/dlls/msi/tests/install.c:2622:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[2000]; data/wine-5.0/dlls/msi/tests/install.c:2669:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/install.c:2671:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, len ); data/wine-5.0/dlls/msi/tests/install.c:2916:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2964:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:2976:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, path, -1, pathW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/install.c:3738:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mstfile, -1, name, 0x20); data/wine-5.0/dlls/msi/tests/install.c:3963:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/msi/tests/install.c:5280:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/msi/tests/install.c:5299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:5358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:5803:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[MAX_PATH]; data/wine-5.0/dlls/msi/tests/install.c:6028:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1]; data/wine-5.0/dlls/msi/tests/install.c:6103:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/msi/tests/install.c:6115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[200], file[200], buffer[200]; data/wine-5.0/dlls/msi/tests/install.c:6234:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH], log_file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:129:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, db, -1, dbW, MAX_PATH); data/wine-5.0/dlls/msi/tests/msi.c:134:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cabinet, -1, cabinetW, MAX_PATH); data/wine-5.0/dlls/msi/tests/msi.c:146:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/msi/tests/msi.c:1030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/msi/tests/msi.c:3056:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prod[MAX_PATH], prod_squashed[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:3057:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp[MAX_PATH], comp_base85[MAX_PATH], comp_squashed[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:3058:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], path_key[MAX_PATH], *usersid; data/wine-5.0/dlls/msi/tests/msi.c:3391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[0x100]; data/wine-5.0/dlls/msi/tests/msi.c:3478:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp[39], comp_squashed[33], comp2[39], comp2_base85[21], comp2_squashed[33]; data/wine-5.0/dlls/msi/tests/msi.c:3479:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prod[39], prod_base85[21], prod_squashed[33]; data/wine-5.0/dlls/msi/tests/msi.c:3480:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char desc[MAX_PATH], buf[MAX_PATH], keypath[MAX_PATH], path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:3507:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc + lstrlenA(desc), "feature<\0", sizeof("feature<\0") ); data/wine-5.0/dlls/msi/tests/msi.c:4103:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(*vercheck, "%d.%d.%d.%d", HIWORD(ffi->dwFileVersionMS), data/wine-5.0/dlls/msi/tests/msi.c:4110:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(*langcheck, "%d", *lang); data/wine-5.0/dlls/msi/tests/msi.c:4120:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:4121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lang[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:4122:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:11824:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, prodcode, -1, prodcodeW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/msi.c:11825:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "apple", -1, patchW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/msi.c:11826:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "banana", -1, transformsW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/msi.c:11840:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "apple", -1, patchW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/msi.c:11841:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "banana", -1, transformsW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/msi.c:12915:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prod_code[MAX_PATH], prod_squashed[MAX_PATH], val[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:12916:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char patch_code[MAX_PATH], patch_squashed[MAX_PATH], keypath[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:12926:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, patch_code, -1, patch_codeW, MAX_PATH); data/wine-5.0/dlls/msi/tests/msi.c:13110:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char product1[39], product2[39], product3[39], guid[39]; data/wine-5.0/dlls/msi/tests/msi.c:13111:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char product_squashed1[33], product_squashed2[33], product_squashed3[33]; data/wine-5.0/dlls/msi/tests/msi.c:13112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keypath1[MAX_PATH], keypath2[MAX_PATH], keypath3[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:13131:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(keypath2, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\"); data/wine-5.0/dlls/msi/tests/msi.c:13133:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(keypath2, "\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13145:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(keypath1, "Software\\Classes\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13157:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(keypath3, "Software\\Microsoft\\Installer\\Products\\"); data/wine-5.0/dlls/msi/tests/msi.c:13248:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char product0[39], product1[39], product2[39], product3[39], guid[39], sid[128]; data/wine-5.0/dlls/msi/tests/msi.c:13249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char product_squashed1[33], product_squashed2[33], product_squashed3[33]; data/wine-5.0/dlls/msi/tests/msi.c:13250:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keypath1[MAX_PATH], keypath2[MAX_PATH], keypath3[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:13269:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath2, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\Managed\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13271:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath2, "\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13282:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath1, "Software\\Classes\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13294:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath3, "\\Software\\Microsoft\\Installer\\Products\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp1[39], comp2[39], guid[39]; data/wine-5.0/dlls/msi/tests/msi.c:13426:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp_squashed1[33], comp_squashed2[33]; data/wine-5.0/dlls/msi/tests/msi.c:13427:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keypath1[MAX_PATH], keypath2[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:13443:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath1, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13444:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath1, "S-1-5-18\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13455:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath2, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13457:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath2, "\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp1[39], comp2[39], guid[39], sid[128]; data/wine-5.0/dlls/msi/tests/msi.c:13500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp_squashed1[33], comp_squashed2[33]; data/wine-5.0/dlls/msi/tests/msi.c:13501:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keypath1[MAX_PATH], keypath2[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:13522:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath1, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13523:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath1, "S-1-5-18\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13534:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( keypath2, "Software\\Microsoft\\Windows\\CurrentVersion\\Installer\\UserData\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13536:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( keypath2, "\\Components\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13887:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:13969:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[32], help[32], path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:14146:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[MAX_PATH], path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/msi.c:14598:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:282:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, guid, -1, guidW, MAX_PATH); data/wine-5.0/dlls/msi/tests/package.c:345:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, guid, -1, guidW, MAX_PATH); data/wine-5.0/dlls/msi/tests/package.c:379:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, comppath, -1, substrW, MAX_PATH); data/wine-5.0/dlls/msi/tests/package.c:382:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, prodpath, -1, substrW, MAX_PATH); data/wine-5.0/dlls/msi/tests/package.c:960:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(szPackage, "#%u", hdb); data/wine-5.0/dlls/msi/tests/package.c:1142:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x80]; data/wine-5.0/dlls/msi/tests/package.c:1226:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempdir[MAX_PATH+8], buffer[MAX_PATH], file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:2151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH] = "x"; data/wine-5.0/dlls/msi/tests/package.c:2170:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/msi/tests/package.c:2386:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], package[10]; data/wine-5.0/dlls/msi/tests/package.c:2435:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package, "#%i", hdb); data/wine-5.0/dlls/msi/tests/package.c:2579:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[10]; data/wine-5.0/dlls/msi/tests/package.c:2617:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "#%d", hdb); data/wine-5.0/dlls/msi/tests/package.c:2635:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "#%d", hdb); data/wine-5.0/dlls/msi/tests/package.c:2647:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "#%d", hdb); data/wine-5.0/dlls/msi/tests/package.c:2672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/msi/tests/package.c:3083:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msi_cache_file[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:3090:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:4145:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], expected[MAX_PATH], prop[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:4394:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], expected[MAX_PATH], prop[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:4976:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], expected[MAX_PATH], prop[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:5213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], expected[MAX_PATH], prop[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:5281:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "'NewSignature7', 'NewSignature1', 'one\\two\\three', 1"); data/wine-5.0/dlls/msi/tests/package.c:5297:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "'NewSignature11', '', '', 0"); data/wine-5.0/dlls/msi/tests/package.c:5306:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "'NewSignature13', 'NewSignature12', '', 0"); data/wine-5.0/dlls/msi/tests/package.c:5398:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "c:\\"); data/wine-5.0/dlls/msi/tests/package.c:5722:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "%d", langid); data/wine-5.0/dlls/msi/tests/package.c:5735:8: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ok(atol(buf) == res, "Expected %d, got %s\n", res, buf); data/wine-5.0/dlls/msi/tests/package.c:5742:8: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ok(atol(buf) == res, "Expected %d, got %s\n", res, buf); data/wine-5.0/dlls/msi/tests/package.c:5753:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", si.wProcessorLevel); data/wine-5.0/dlls/msi/tests/package.c:5757:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", LOBYTE(LOWORD(GetVersion())) * 100 + HIBYTE(LOWORD(GetVersion()))); data/wine-5.0/dlls/msi/tests/package.c:5790:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", si.wProcessorLevel); data/wine-5.0/dlls/msi/tests/package.c:7313:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package, "#%u", hdb); data/wine-5.0/dlls/msi/tests/package.c:7446:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(package, "#%i", hdb); data/wine-5.0/dlls/msi/tests/package.c:7987:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, prodcode, -1, prodcodeW, MAX_PATH); data/wine-5.0/dlls/msi/tests/package.c:8462:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char package[12], drive[3]; data/wine-5.0/dlls/msi/tests/package.c:8502:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( package, "#%u", hdb ); data/wine-5.0/dlls/msi/tests/package.c:8666:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32], package[12]; data/wine-5.0/dlls/msi/tests/package.c:8674:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( package, "#%u", hdb ); data/wine-5.0/dlls/msi/tests/package.c:8807:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char field[4][100]; data/wine-5.0/dlls/msi/tests/package.c:9077:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/msi/tests/package.c:9096:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg.field[i], buffer, min(100, length+1)); data/wine-5.0/dlls/msi/tests/package.c:9555:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msifile_absolute[MAX_PATH]; data/wine-5.0/dlls/msi/tests/package.c:9643:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:47:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:48:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char PROG_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:49:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char COMMON_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:225:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:239:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:314:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, filename, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/patch.c:316:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, filenameW, len ); data/wine-5.0/dlls/msi/tests/patch.c:672:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, filename, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/patch.c:674:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, filenameW, len ); data/wine-5.0/dlls/msi/tests/patch.c:711:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], install_source[MAX_PATH], buffer[32]; data/wine-5.0/dlls/msi/tests/patch.c:862:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, path, -1, pathW, MAX_PATH ); data/wine-5.0/dlls/msi/tests/patch.c:945:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char query[0x100]; data/wine-5.0/dlls/msi/tests/patch.c:1018:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ret[MAX_PATH]; data/wine-5.0/dlls/msi/tests/patch.c:1244:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], patch_code[39]; data/wine-5.0/dlls/msi/tests/patch.c:1346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/msi/tests/record.c:34:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[26], i; data/wine-5.0/dlls/msi/tests/record.c:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/msi/tests/record.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/msi/tests/source.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char val[MAX_PATH]; data/wine-5.0/dlls/msi/tests/source.c:190:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/msi/tests/source.c:192:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/msi/tests/source.c:198:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prodcode[MAX_PATH], prod_squashed[MAX_PATH], keypath[MAX_PATH * 2], value[MAX_PATH], *usersid; data/wine-5.0/dlls/msi/tests/suminfo.c:77:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[0x10]; data/wine-5.0/dlls/msi/tests/suminfo.c:405:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sval[20]; data/wine-5.0/dlls/msi/tests/utils.h:19:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PROG_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/utils.h:20:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PROG_FILES_DIR_NATIVE[MAX_PATH]; data/wine-5.0/dlls/msi/tests/utils.h:21:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char COMMON_FILES_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/utils.h:22:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char APP_DATA_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/utils.h:23:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char WINDOWS_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/tests/utils.h:24:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/msi/where.c:149:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new->values, vals, wv->table_count * sizeof(UINT)); data/wine-5.0/dlls/msisip/main.c:191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, hdr, sizeof(hdr)); data/wine-5.0/dlls/msisip/main.c:195:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, len, lenBytes); data/wine-5.0/dlls/mspatcha/lzxd_dec.c:411:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(base + index, dec->src, to_copy); data/wine-5.0/dlls/mspatcha/mspatcha_main.c:68:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/mspatcha/mspatcha_main.c:70:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, dst, len); data/wine-5.0/dlls/mspatcha/pa19.c:596:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_file_buf + fi->retain_table[i].OffsetInNewFile, data/wine-5.0/dlls/mspatcha/pa19.c:717:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(decode_buf, old_file_view, file_info->input_size); data/wine-5.0/dlls/mspatcha/pa19.c:732:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(decode_buf + file_info->input_size, decode_buf, ph.patched_size); data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:293:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char old_two_files_ranges_0_tmp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:294:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char patch_two_files_ranges_tmp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:295:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char patch_header_only_tmp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:296:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char old_blocktype2_no_timestamp_tmp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:297:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char patch_null_input_uncompressed_tmp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:299:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output_file_temp[MAX_PATH]; data/wine-5.0/dlls/mspatcha/tests/apply_patch.c:346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH]; data/wine-5.0/dlls/msrle32/msrle32.c:1283:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)lpbiOut + lpbiOut->biSize, data/wine-5.0/dlls/msrle32/msrle32.c:1587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpbiOut, lpbiIn, size); data/wine-5.0/dlls/msrle32/msrle32.c:1708:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pi->palette_map, rgbIn, colors * sizeof(RGBQUAD)); data/wine-5.0/dlls/msrle32/msrle32.c:1746:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pic->lpOutput, pic->lpInput, pic->lpbiOutput->biSizeImage); data/wine-5.0/dlls/msrle32/msrle32.c:1802:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)lpbiOut + lpbiOut->biSize, (const BYTE*)lpbiIn + lpbiIn->biSize, size * sizeof(RGBQUAD)); data/wine-5.0/dlls/msrle32/tests/msrle.c:29:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/dlls/msrle32/tests/msrle.c:38:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ptr += sprintf(ptr, "%x ", output[i]); data/wine-5.0/dlls/msrle32/tests/msrle.c:41:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ptr += sprintf(ptr, "%x ", expect[i]); data/wine-5.0/dlls/msscript.ocx/tests/msscript.c:1558:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msscript.ocx/tests/msscript.c:1560:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/mstask/mstask_private.h:41:34: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((dst = heap_alloc(len))) memcpy(dst, src, len); data/wine-5.0/dlls/mstask/task.c:835:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data, data, count); data/wine-5.0/dlls/mstask/task.c:865:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*data, This->data, This->data_count); data/wine-5.0/dlls/msvcirt/msvcirt.c:783:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer+copied, this->gptr, chunk); data/wine-5.0/dlls/msvcirt/msvcirt.c:810:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->pptr, data+copied, chunk); data/wine-5.0/dlls/msvcirt/msvcirt.c:1434:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_buffer, this->base.base, prev_size); data/wine-5.0/dlls/msvcirt/msvcirt.c:1489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *base[3]; data/wine-5.0/dlls/msvcirt/msvcirt.c:2669:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix_str[3] = {0}, number_str[12], sprintf_fmt[4] = {'%','d',0}; data/wine-5.0/dlls/msvcirt/msvcirt.c:2708:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix_str[2] = {0}, number_str[24], sprintf_fmt[6] = {'%','.','*','f',0}; data/wine-5.0/dlls/msvcirt/msvcirt.c:2755:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char c_str[2] = {c, 0}; data/wine-5.0/dlls/msvcirt/msvcirt.c:2843:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix_str[3] = {'0','x',0}, pointer_str[17]; data/wine-5.0/dlls/msvcirt/msvcirt.c:2851:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (sprintf(pointer_str, "%p", ptr) > 0) data/wine-5.0/dlls/msvcirt/msvcirt.c:3767:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/msvcirt/msvcirt.c:3792:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/msvcirt/msvcirt.c:3884:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:964:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char test_get_buffer[24]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:1029:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reserve[16]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:1062:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(test_get_buffer, "CompuGlobalHyperMegaNet"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:1226:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sb2.eback, "WorstTestEver"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:1359:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sb.eback, "Test"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:1578:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buffer[16]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2054:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64], *pbuffer; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2095:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Test"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2189:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ssb2.base.base, "Check"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2480:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2485:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file1 = fopen(filename1, "w"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2488:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file1 = fopen(filename1, "r"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2490:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file2 = fopen(filename2, "w+"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2591:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer + 16, "and desert you"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2652:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(stb2.base.gptr, "a\nc"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2760:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(stb1.base.eback, "pbackfail"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:4085:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:4180:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Test"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:4376:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32], c; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:4626:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fb1.base.eback, "Never \t gonna "); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:4724:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fb1.base.base, " give \n you 11 ! up\t. "); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5034:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fb1.base.base, " Never gonna \nlet you \r down?"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5631:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ssb.base.base, tests[i].stream_content, len); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5653:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5743:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ssb.base.base, tests[i].stream_content, len); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5770:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c, st[8], char_out[] = {-85, ' ', 'a', -50}; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5946:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ssb.base.base, tests[i].stream_content, len); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:6261:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:6333:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Test"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:6728:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:6899:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Test"); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:7067:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(filename, "w+"); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:372:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1279:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH], origin_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1308:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH], origin_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1455:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1578:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char current_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1744:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *file_name, first_file_name[MAX_PATH], dest[MAX_PATH], longer_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1762:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(longer_path, "\\tr2_test_dir\\"); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1840:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1978:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], current_path[MAX_PATH]; data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:2508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->data + idx, src, sizeof(char)); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:2523:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->data + idx, src, sizeof(char)); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:2538:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src->data + idx, sizeof(char)); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:2656:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, n*sizeof(int)); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:2662:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, n*sizeof(int)); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:567:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[MAX_PATH + 4] = "ABC\0XXXXXXX"; data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:568:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char compare[MAX_PATH + 4] = "ABC\0XXXXXXX"; data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:617:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char longstr[MAX_PATH + 3]; data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:630:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). expected = MultiByteToWideChar(CP_ACP, 0, tests[i], -1, compare, ARRAY_SIZE(compare)); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:645:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). expected = MultiByteToWideChar(CP_ACP, 0, longstr, -1, compare, MAX_PATH); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:1306:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], buf_fm[256]; data/wine-5.0/dlls/msvcp60/ios.c:1400:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, IOS_LOCALE(this), sizeof(locale)); data/wine-5.0/dlls/msvcp60/ios.c:1732:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*this->pwpos, ptr+copied, chunk); data/wine-5.0/dlls/msvcp60/ios.c:2303:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, IOS_LOCALE(this), sizeof(locale)); data/wine-5.0/dlls/msvcp60/ios.c:2679:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*this->pwpos, ptr+copied, chunk*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp60/ios.c:2888:15: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t str[4]; data/wine-5.0/dlls/msvcp60/ios.c:2889:15: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t str_bin[4]; data/wine-5.0/dlls/msvcp60/ios.c:2942:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp60/ios.c:2996:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp60/ios.c:3545:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp60/ios.c:3559:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp60/ios.c:3926:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, str, count); data/wine-5.0/dlls/msvcp60/ios.c:4075:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, oldsize); data/wine-5.0/dlls/msvcp60/ios.c:4303:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, str, count*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp60/ios.c:4488:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, oldsize*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp60/ios.c:13261:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, old_size); data/wine-5.0/dlls/msvcp60/string.c:92:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(dest, src, count); data/wine-5.0/dlls/msvcp60/string.c:172:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(dest, src, count * sizeof(wchar_t)); data/wine-5.0/dlls/msvcp60/string.c:1484:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr+off, str, str_len*sizeof(char)); data/wine-5.0/dlls/msvcp60/string.c:3021:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr+off, str, str_len*sizeof(char)); data/wine-5.0/dlls/msvcp60/tests/ios.c:811:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:929:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1050:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1127:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1197:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1261:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1327:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1384:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/ios.c:1469:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(testfile, "wt"); data/wine-5.0/dlls/msvcp60/tests/ios.c:1531:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp60/tests/string.c:446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char atmp1[32], atmp2[32]; data/wine-5.0/dlls/msvcp60/tests/string.c:449:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp1, "qwerty"); data/wine-5.0/dlls/msvcp60/tests/string.c:458:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp1, "qwerty12345678901234567890"); data/wine-5.0/dlls/msvcp60/tests/string.c:459:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp2, "asd"); data/wine-5.0/dlls/msvcp60/tests/string.c:736:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wtmp1[32], wtmp2[32]; data/wine-5.0/dlls/msvcp90/cxx.h:322:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[128]; /* Variable length, but we declare it large enough for static RTTI */ data/wine-5.0/dlls/msvcp90/exception.c:106:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->name, EXCEPTION_STR(name), name_len); data/wine-5.0/dlls/msvcp90/ios.c:1651:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, IOS_LOCALE(this), sizeof(locale)); data/wine-5.0/dlls/msvcp90/ios.c:1989:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*this->pwpos, ptr+copied, chunk); data/wine-5.0/dlls/msvcp90/ios.c:2575:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, IOS_LOCALE(this), sizeof(locale)); data/wine-5.0/dlls/msvcp90/ios.c:2957:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*this->pwpos, ptr+copied, chunk*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/ios.c:3089:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/msvcp90/ios.c:3218:15: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t str[4]; data/wine-5.0/dlls/msvcp90/ios.c:3219:15: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t str_bin[4]; data/wine-5.0/dlls/msvcp90/ios.c:3276:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp90/ios.c:3330:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp90/ios.c:3363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8], *dyn_buf; data/wine-5.0/dlls/msvcp90/ios.c:3452:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch, buf[128], *to_next; data/wine-5.0/dlls/msvcp90/ios.c:3709:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/msvcp90/ios.c:3940:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp90/ios.c:3954:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t nameW[FILENAME_MAX]; data/wine-5.0/dlls/msvcp90/ios.c:3997:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8], *dyn_buf, *to_next; data/wine-5.0/dlls/msvcp90/ios.c:4096:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/msvcp90/ios.c:4132:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ch, buf, sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/ios.c:4354:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, str, count); data/wine-5.0/dlls/msvcp90/ios.c:4503:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, oldsize); data/wine-5.0/dlls/msvcp90/ios.c:4731:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, str, count*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/ios.c:4916:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, oldsize*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/ios.c:14307:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ptr, old_size); data/wine-5.0/dlls/msvcp90/ios.c:14974:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t temppath[MAX_PATH]; data/wine-5.0/dlls/msvcp90/ios.c:15018:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t target_w[MAX_PATH]; data/wine-5.0/dlls/msvcp90/ios.c:15019:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t dest_w[MAX_PATH]; data/wine-5.0/dlls/msvcp90/ios.c:15023:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (dest && !MultiByteToWideChar(CP_ACP, 0, dest, -1, dest_w, MAX_PATH)) data/wine-5.0/dlls/msvcp90/ios.c:15067:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t target_w[MAX_PATH]; data/wine-5.0/dlls/msvcp90/locale.c:718:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->name, name, size*sizeof(*name)); data/wine-5.0/dlls/msvcp90/locale.c:726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(table, __pctype_func(), sizeof(short[256])); data/wine-5.0/dlls/msvcp90/locale.c:780:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, &ull, sizeof(ull)); data/wine-5.0/dlls/msvcp90/locale.c:784:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, &cvtvec, sizeof(cvtvec)); data/wine-5.0/dlls/msvcp90/locale.c:1786:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, last-first); data/wine-5.0/dlls/msvcp90/locale.c:1865:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, last-first); data/wine-5.0/dlls/msvcp90/locale.c:1990:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2]; data/wine-5.0/dlls/msvcp90/locale.c:2002:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(cp, MB_ERR_INVALID_CHARS, str, size, &wide, 1)) data/wine-5.0/dlls/msvcp90/locale.c:2086:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2]; data/wine-5.0/dlls/msvcp90/locale.c:2098:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(cp, MB_ERR_INVALID_CHARS, str, size, &wide, 1)) data/wine-5.0/dlls/msvcp90/locale.c:2421:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:2557:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(cp, MB_ERR_INVALID_CHARS, (char*)&MBSTATET_TO_INT(state), 2, out, out ? 1 : 0)) { data/wine-5.0/dlls/msvcp90/locale.c:2584:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(cp, MB_ERR_INVALID_CHARS, in, 2, out, out ? 1 : 0)) { data/wine-5.0/dlls/msvcp90/locale.c:2591:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(cp, MB_ERR_INVALID_CHARS, in, 1, out, out ? 1 : 0)) { data/wine-5.0/dlls/msvcp90/locale.c:3906:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:4046:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->false_name, _Locinfo__Getfalse(locinfo), len); data/wine-5.0/dlls/msvcp90/locale.c:4051:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->true_name, _Locinfo__Gettrue(locinfo), len); data/wine-5.0/dlls/msvcp90/locale.c:4066:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->grouping, lc->grouping, len); data/wine-5.0/dlls/msvcp90/locale.c:4383:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cvt.page, 0, to_convert, -1, NULL, 0); data/wine-5.0/dlls/msvcp90/locale.c:4386:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cvt.page, 0, to_convert, -1, data/wine-5.0/dlls/msvcp90/locale.c:4390:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cvt.page, 0, to_convert, -1, NULL, 0); data/wine-5.0/dlls/msvcp90/locale.c:4393:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cvt.page, 0, to_convert, -1, data/wine-5.0/dlls/msvcp90/locale.c:4409:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->grouping, lc->grouping, len); data/wine-5.0/dlls/msvcp90/locale.c:5337:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t digits[23], *digits_pos, sep = 0; data/wine-5.0/dlls/msvcp90/locale.c:5515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:5583:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[32], *end; data/wine-5.0/dlls/msvcp90/locale.c:5670:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[32], *end; data/wine-5.0/dlls/msvcp90/locale.c:5736:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:5802:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:5868:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:5934:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *beg, *end; data/wine-5.0/dlls/msvcp90/locale.c:6146:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6159:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, &first, sizeof(first)); data/wine-5.0/dlls/msvcp90/locale.c:6673:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6728:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[32], *end; data/wine-5.0/dlls/msvcp90/locale.c:6782:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[32], *end; data/wine-5.0/dlls/msvcp90/locale.c:6826:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6871:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6916:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:6961:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:7035:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *beg, *end; data/wine-5.0/dlls/msvcp90/locale.c:7129:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[25], *end; data/wine-5.0/dlls/msvcp90/locale.c:7142:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, &first, sizeof(first)); data/wine-5.0/dlls/msvcp90/locale.c:7564:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7565:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7607:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7665:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[8]; /* strlen("%+#.*lg")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7733:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[17]; /* 8(16^8==2^64)*2(separators between every digit) + 1 */ data/wine-5.0/dlls/msvcp90/locale.c:7737:65: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. return num_put_char__Iput(this, ret, dest, base, fill, tmp, sprintf(tmp, "%p", v)); data/wine-5.0/dlls/msvcp90/locale.c:7773:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7774:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7815:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:7816:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8479:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8480:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8498:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8542:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8561:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8562:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8614:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[8]; /* strlen("%+#.*lg")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8649:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[8]; /* strlen("%+#.*lg")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8722:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[17]; /* 8(16^8==2^64)*2(separators between every digit) + 1 */ data/wine-5.0/dlls/msvcp90/locale.c:8726:66: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. return num_put_wchar__Iput(this, ret, dest, base, fill, tmp, sprintf(tmp, "%p", v)); data/wine-5.0/dlls/msvcp90/locale.c:8739:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[17]; /* 8(16^8==2^64)*2(separators between every digit) + 1 */ data/wine-5.0/dlls/msvcp90/locale.c:8743:66: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. return num_put_short__Iput(this, ret, dest, base, fill, tmp, sprintf(tmp, "%p", v)); data/wine-5.0/dlls/msvcp90/locale.c:8781:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8782:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8800:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8801:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8844:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8845:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8863:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[48]; /* 22(8^22>2^64)*2(separators between every digit) + 3(strlen("+0x"))+1 */ data/wine-5.0/dlls/msvcp90/locale.c:8864:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[7]; /* strlen("%+#lld")+1 */ data/wine-5.0/dlls/msvcp90/locale.c:9151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], fmt[4], *p = fmt; data/wine-5.0/dlls/msvcp90/locale.c:9233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], fmt[4], *p = fmt; data/wine-5.0/dlls/msvcp90/locale.c:9577:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], fmt[4], *p = fmt; data/wine-5.0/dlls/msvcp90/locale.c:9637:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:9689:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], fmt[4], *p = fmt; data/wine-5.0/dlls/msvcp90/locale.c:9730:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:9789:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->days, days, len); data/wine-5.0/dlls/msvcp90/locale.c:9801:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)this->months, months, len); data/wine-5.0/dlls/msvcp90/locale.c:9959:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/msvcp90/locale.c:10032:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/msvcp90/locale.c:10654:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/locale.c:10665:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cvt.page, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msvcp90/locale.c:10668:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cvt.page, 0, str, -1, ret, len); data/wine-5.0/dlls/msvcp90/locale.c:10860:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/msvcp90/locale.c:10933:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[64]; data/wine-5.0/dlls/msvcp90/locale.c:11577:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this, copy, sizeof(locale__Locimp)); data/wine-5.0/dlls/msvcp90/locale.c:11711:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_facetvec, locimp->facetvec, sizeof(locale_facet*)*locimp->facet_cnt); data/wine-5.0/dlls/msvcp90/locale.c:12621:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ret[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:12637:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MB_LEN_MAX]; data/wine-5.0/dlls/msvcp90/locale.c:12647:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst + ret, buffer, len ); data/wine-5.0/dlls/msvcp90/locale.c:12665:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(CP_ACP, 0, src, -1, dst, MAX_PATH); data/wine-5.0/dlls/msvcp90/locale.c:12691:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, src_len); data/wine-5.0/dlls/msvcp90/locale.c:12695:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cv.page, MB_ERR_INVALID_CHARS, src, src_len, NULL, 0); data/wine-5.0/dlls/msvcp90/locale.c:12699:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cv.page, MB_ERR_INVALID_CHARS, src, src_len, buf, len); data/wine-5.0/dlls/msvcp90/misc.c:1476:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/msvcp90/misc.c:2067:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_segment, this->storage, STORAGE_SIZE * sizeof(*new_segment)); data/wine-5.0/dlls/msvcp90/misc.c:2124:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(b->blocks, this->segment, data/wine-5.0/dlls/msvcp90/misc.c:2134:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(b->blocks, this->segment, data/wine-5.0/dlls/msvcp90/msvcp90.h:94:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUF_SIZE_CHAR]; data/wine-5.0/dlls/msvcp90/msvcp90.h:124:9: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[BUF_SIZE_WCHAR]; data/wine-5.0/dlls/msvcp90/msvcp90.h:651:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, count ); data/wine-5.0/dlls/msvcp90/string.c:1015:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(this->data)]; data/wine-5.0/dlls/msvcp90/string.c:1019:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, this->data.buf, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:1020:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->data.buf, str->data.buf, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:1021:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->data.buf, tmp, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:1655:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->str, str, (len+1)*sizeof(char)); data/wine-5.0/dlls/msvcp90/string.c:1775:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->str, str, (len+1)*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/string.c:2081:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr+off, str, str_len*sizeof(char)); data/wine-5.0/dlls/msvcp90/string.c:2850:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(this->data)]; data/wine-5.0/dlls/msvcp90/string.c:2854:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, this->data.buf, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:2855:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->data.buf, str->data.buf, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:2856:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->data.buf, tmp, sizeof(this->data)); data/wine-5.0/dlls/msvcp90/string.c:3792:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr+off, str, str_len*sizeof(wchar_t)); data/wine-5.0/dlls/msvcp90/tests/ios.c:407:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUF_SIZE_CHAR]; data/wine-5.0/dlls/msvcp90/tests/ios.c:419:9: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[BUF_SIZE_WCHAR]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1148:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1284:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1424:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1545:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1625:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1695:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1759:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1825:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1882:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:1971:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(testfile, "wt"); data/wine-5.0/dlls/msvcp90/tests/ios.c:2033:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wide[64]; data/wine-5.0/dlls/msvcp90/tests/ios.c:2361:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char next[100]; data/wine-5.0/dlls/msvcp90/tests/misc.c:57:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUF_SIZE_CHAR]; data/wine-5.0/dlls/msvcp90/tests/misc.c:458:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out[4]; data/wine-5.0/dlls/msvcp90/tests/misc.c:511:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[32], *ret; data/wine-5.0/dlls/msvcp90/tests/misc.c:720:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char this[512]; data/wine-5.0/dlls/msvcp90/tests/misc.c:1098:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out[64]; data/wine-5.0/dlls/msvcp90/tests/string.c:32:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUF_SIZE_CHAR]; data/wine-5.0/dlls/msvcp90/tests/string.c:45:9: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[BUF_SIZE_WCHAR]; data/wine-5.0/dlls/msvcp90/tests/string.c:406:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char atmp1[32], atmp2[32]; data/wine-5.0/dlls/msvcp90/tests/string.c:409:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp1, "qwerty"); data/wine-5.0/dlls/msvcp90/tests/string.c:418:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp1, "qwerty12345678901234567890"); data/wine-5.0/dlls/msvcp90/tests/string.c:419:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(atmp2, "asd"); data/wine-5.0/dlls/msvcp90/tests/string.c:691:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wtmp1[32], wtmp2[32]; data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pad[64]; data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:376:12: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static wchar_t dest[8], buf[32]; data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:457:12: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static wchar_t dest[8]; data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:551:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:555:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen(test_file, "w"); data/wine-5.0/dlls/msvcr100/tests/msvcr100.c:734:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rw_lock[100]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:357:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbs[256]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:528:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *str[43]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:530:9: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t *wstr[43]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:532:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:551:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str[i], strlen(str[i])+1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:936:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:940:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "10"); data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:149:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[16]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:605:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:692:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t dst[4]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:693:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t src[4]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:695:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, abcW, sizeof(abcW)); data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, abcW, sizeof(abcW)); data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:770:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char carr[5] = { 42, 23, 4, 8, 16 }; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:771:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *strarr[7] = { data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1214:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[32]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1507:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t bufw[16]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1508:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1931:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buffer[100]; data/wine-5.0/dlls/msvcrt/console.c:110:50: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const struct {unsigned short vk; unsigned char ch[4][2];} enh_map[] = { data/wine-5.0/dlls/msvcrt/cpp.c:131:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(_this->name, *name, name_len); data/wine-5.0/dlls/msvcrt/cpp.c:720:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this, rhs, sizeof(*this)); data/wine-5.0/dlls/msvcrt/cpp.c:1871:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, obj, ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:1880:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, get_this_pointer(&ti->offsets, obj), ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:1918:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, obj, ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:1927:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, get_this_pointer(&ti->offsets, obj), ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:1977:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, object, ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:1986:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, get_this_pointer(&ti->offsets, object), ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:2016:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, object, ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:2025:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, get_this_pointer(&ti->offsets, object), ti->size); data/wine-5.0/dlls/msvcrt/cpp.c:2049:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[1]; data/wine-5.0/dlls/msvcrt/cpp.c:2055:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/msvcrt/cppexcept.h:40:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[64]; /* Variable length, but we declare it large enough for static RTTI */ data/wine-5.0/dlls/msvcrt/ctype.c:89:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char convert[3], *pconv = convert; data/wine-5.0/dlls/msvcrt/ctype.c:358:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char str[2], *p = str; data/wine-5.0/dlls/msvcrt/ctype.c:377:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(locinfo->lc_codepage, data/wine-5.0/dlls/msvcrt/ctype.c:420:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char str[2], *p = str; data/wine-5.0/dlls/msvcrt/ctype.c:439:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(locinfo->lc_codepage, data/wine-5.0/dlls/msvcrt/data.c:94:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&blk[count],environ_strings,len); data/wine-5.0/dlls/msvcrt/data.c:127:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wblk[count],wenviron_strings,len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/data.c:320:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED,str,len,wstr,len); data/wine-5.0/dlls/msvcrt/data.c:449:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(argv[args_no], __wine_main_wargv[i], path_len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/data.c:450:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(argv[args_no]+path_len, data.cFileName, len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/data.c:462:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(argv[args_no], __wine_main_wargv[i], len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:767:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH]; data/wine-5.0/dlls/msvcrt/dir.c:860:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH]; data/wine-5.0/dlls/msvcrt/dir.c:1094:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir, inpath, (end - inpath) ); data/wine-5.0/dlls/msvcrt/dir.c:1110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fname, inpath, (end - inpath) ); data/wine-5.0/dlls/msvcrt/dir.c:1186:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir, inpath, (end - inpath) * sizeof(MSVCRT_wchar_t) ); data/wine-5.0/dlls/msvcrt/dir.c:1202:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fname, inpath, (end - inpath) * sizeof(MSVCRT_wchar_t) ); data/wine-5.0/dlls/msvcrt/dir.c:1522:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, extension, copylen); data/wine-5.0/dlls/msvcrt/dir.c:1626:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, extension, copylen * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1660:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msvcrt/dir.c:1691:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, penv, path_len); data/wine-5.0/dlls/msvcrt/dir.c:1697:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path + path_len, file, fname_len + 1); data/wine-5.0/dlls/msvcrt/dir.c:1701:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, path, path_len + fname_len + 1); data/wine-5.0/dlls/msvcrt/dir.c:1716:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msvcrt/dir.c:1756:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, penv, path_len); data/wine-5.0/dlls/msvcrt/dir.c:1762:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path + path_len, file, fname_len + 1); data/wine-5.0/dlls/msvcrt/dir.c:1771:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, path, path_len + fname_len + 1); data/wine-5.0/dlls/msvcrt/dir.c:1819:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, penv, path_len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1825:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path + path_len, file, (fname_len + 1) * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1829:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, path, (path_len + fname_len + 1) * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1885:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, penv, path_len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1891:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path + path_len, file, (fname_len + 1) * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/dir.c:1900:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, path, (path_len + fname_len + 1) * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/errno.c:384:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, MSVCRT__sys_errlist[err], -1, buffer, nc); data/wine-5.0/dlls/msvcrt/errno.c:414:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, MSVCRT__sys_errlist[err], -1, NULL, 0) + 1 /* \n */; data/wine-5.0/dlls/msvcrt/errno.c:428:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, MSVCRT__sys_errlist[err], -1, buffer + len, 256 - len); data/wine-5.0/dlls/msvcrt/except_i386.c:1191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&rec.Result.Value.Fp80Value, ctx->RegisterArea, sizeof(rec.Operand1.Value.Fp80Value)); data/wine-5.0/dlls/msvcrt/except_i386.c:1196:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->RegisterArea, &rec.Result.Value.Fp80Value, sizeof(rec.Operand1.Value.Fp80Value)); data/wine-5.0/dlls/msvcrt/exit.c:239:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[32]; data/wine-5.0/dlls/msvcrt/exit.c:240:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(text, "Error: R60%d",errnum); data/wine-5.0/dlls/msvcrt/file.c:78:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char utf8_bom[3] = { 0xef, 0xbb, 0xbf }; data/wine-5.0/dlls/msvcrt/file.c:79:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char utf16_bom[2] = { 0xff, 0xfe }; data/wine-5.0/dlls/msvcrt/file.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lookahead[3]; data/wine-5.0/dlls/msvcrt/file.c:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pipech2[2]; data/wine-5.0/dlls/msvcrt/file.c:710:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffers[2][MSVCRT_BUFSIZ]; data/wine-5.0/dlls/msvcrt/file.c:2178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bom[sizeof(utf8_bom)]; data/wine-5.0/dlls/msvcrt/file.c:2580:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char min_buf[4], *readbuf, lookahead; data/wine-5.0/dlls/msvcrt/file.c:2657:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!(num_read = MultiByteToWideChar(CP_UTF8, 0, readbuf, pos, buf, count))) { data/wine-5.0/dlls/msvcrt/file.c:2736:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!(num_read = MultiByteToWideChar(CP_UTF8, 0, readbuf, pos, buf, count))) { data/wine-5.0/dlls/msvcrt/file.c:2838:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lookahead[2]; data/wine-5.0/dlls/msvcrt/file.c:3298:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpbuf[MAX_PATH]; data/wine-5.0/dlls/msvcrt/file.c:3847:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbs[MSVCRT_MB_LEN_MAX]; data/wine-5.0/dlls/msvcrt/file.c:4037:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file->_ptr, ptr, pcnt); data/wine-5.0/dlls/msvcrt/file.c:4106:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MSVCRT_MB_LEN_MAX]; data/wine-5.0/dlls/msvcrt/file.c:4318:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, file->_ptr, pcnt); data/wine-5.0/dlls/msvcrt/file.c:4351:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, file->_ptr, i); data/wine-5.0/dlls/msvcrt/file.c:4956:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpstr[8]; data/wine-5.0/dlls/msvcrt/file.c:4976:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, tmpstr, digits*sizeof(tmpstr[0])); data/wine-5.0/dlls/msvcrt/file.c:4993:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, tmpstr, digits*sizeof(tmpstr[0])); data/wine-5.0/dlls/msvcrt/file.c:5047:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, tmpstr, digits*sizeof(tmpstr[0])); data/wine-5.0/dlls/msvcrt/file.c:5064:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, tmpstr, digits*sizeof(tmpstr[0])); data/wine-5.0/dlls/msvcrt/file.c:5600:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbs[MSVCRT_MB_LEN_MAX]; data/wine-5.0/dlls/msvcrt/locale.c:186:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char search_language[MAX_ELEM_LEN]; data/wine-5.0/dlls/msvcrt/locale.c:187:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char search_country[MAX_ELEM_LEN]; data/wine-5.0/dlls/msvcrt/locale.c:188:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char search_codepage[MAX_ELEM_LEN]; data/wine-5.0/dlls/msvcrt/locale.c:189:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char found_codepage[MAX_ELEM_LEN]; data/wine-5.0/dlls/msvcrt/locale.c:223:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[MAX_ELEM_LEN]; data/wine-5.0/dlls/msvcrt/locale.c:272:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(res->found_codepage,res->search_codepage,MAX_ELEM_LEN); data/wine-5.0/dlls/msvcrt/locale.c:294:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). extern int atoi(const char *); data/wine-5.0/dlls/msvcrt/locale.c:338:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(search.search_country, "People's Republic of China"); data/wine-5.0/dlls/msvcrt/locale.c:360:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (IsValidCodePage(atoi(search.search_codepage))) data/wine-5.0/dlls/msvcrt/locale.c:361:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(search.found_codepage,search.search_codepage,MAX_ELEM_LEN); data/wine-5.0/dlls/msvcrt/locale.c:373:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (!atoi(search.found_codepage)) data/wine-5.0/dlls/msvcrt/locale.c:380:47: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (!search.found_codepage[0] || !atoi(search.found_codepage)) data/wine-5.0/dlls/msvcrt/locale.c:386:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *codepage = atoi(search.found_codepage); data/wine-5.0/dlls/msvcrt/locale.c:393:50: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). data->cached_cp = codepage ? *codepage : atoi(search.found_codepage); data/wine-5.0/dlls/msvcrt/locale.c:414:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lc_category[category].locale, name, len); data/wine-5.0/dlls/msvcrt/locale.c:424:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], *p; data/wine-5.0/dlls/msvcrt/locale.c:458:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf+len, "%d", cp); data/wine-5.0/dlls/msvcrt/locale.c:498:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char current_lc_all[MAX_LOCALE_LENGTH]; data/wine-5.0/dlls/msvcrt/locale.c:546:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->str.names.short_wday[i], len); data/wine-5.0/dlls/msvcrt/locale.c:551:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->str.names.wday[i], len); data/wine-5.0/dlls/msvcrt/locale.c:583:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->wstr.names.short_wday[i], len*sizeof(*out)); data/wine-5.0/dlls/msvcrt/locale.c:588:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->wstr.names.wday[i], len*sizeof(*out)); data/wine-5.0/dlls/msvcrt/locale.c:620:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->str.names.short_mon[i], len); data/wine-5.0/dlls/msvcrt/locale.c:625:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->str.names.mon[i], len); data/wine-5.0/dlls/msvcrt/locale.c:657:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->wstr.names.short_mon[i], len*sizeof(*out)); data/wine-5.0/dlls/msvcrt/locale.c:662:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[size], cur->wstr.names.mon[i], len*sizeof(*out)); data/wine-5.0/dlls/msvcrt/locale.c:687:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, cur, sizeof(*ret)); data/wine-5.0/dlls/msvcrt/locale.c:692:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->data[size], cur->str.str[i], len); data/wine-5.0/dlls/msvcrt/locale.c:790:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(get_locinfo()->lc_handle[MSVCRT_LC_CTYPE], data/wine-5.0/dlls/msvcrt/locale.c:980:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lc_name[cat], buf, len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1073:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *locale_name[6] = { 0 }; data/wine-5.0/dlls/msvcrt/locale.c:1075:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/msvcrt/locale.c:1094:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cp[0] = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1128:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, locale, p-locale); data/wine-5.0/dlls/msvcrt/locale.c:1337:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->int_curr_symbol, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1346:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->currency_symbol, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1355:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->mon_decimal_point, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1364:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->mon_thousands_sep, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1388:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->positive_sign, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1397:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->negative_sign, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1405:47: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->int_frac_digits = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1413:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->frac_digits = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1421:45: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->p_cs_precedes = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1429:46: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->p_sep_by_space = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1437:45: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->n_cs_precedes = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1445:46: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->n_sep_by_space = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1453:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->p_sign_posn = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1461:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). locinfo->lconv->n_sign_posn = atoi(buf); data/wine-5.0/dlls/msvcrt/locale.c:1471:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_int_curr_symbol, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1480:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_currency_symbol, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1489:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_mon_decimal_point, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1498:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_mon_thousands_sep, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1507:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_positive_sign, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1516:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_negative_sign, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1618:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->decimal_point, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1627:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->thousands_sep, buf, i); data/wine-5.0/dlls/msvcrt/locale.c:1652:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_decimal_point, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/locale.c:1661:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locinfo->lconv->_W_thousands_sep, wbuf, i * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/math.c:1766:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, infret, min(ndigits, sizeof(infret) - 1 ) ); data/wine-5.0/dlls/msvcrt/math.c:1803:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, result, max(ndigits + 1, 1) ); data/wine-5.0/dlls/msvcrt/math.c:1816:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; /* ought to be enough */ data/wine-5.0/dlls/msvcrt/math.c:1896:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; /* ought to be enough */ data/wine-5.0/dlls/msvcrt/mbcs.c:35:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char MSVCRT_mbctype[257] = { 0 }; data/wine-5.0/dlls/msvcrt/mbcs.c:90:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mbch[2]; data/wine-5.0/dlls/msvcrt/mbcs.c:101:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(get_mbcinfo()->mbcodepage, 0, mbch, n_chars, &chW, 1)) data/wine-5.0/dlls/msvcrt/mbcs.c:211:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[256]; data/wine-5.0/dlls/msvcrt/mbcs.c:308:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(newcp, 0, bufA, charcount, bufW, charcount); data/wine-5.0/dlls/msvcrt/mbcs.c:2242:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(locinfo->lc_codepage, MB_ERR_INVALID_CHARS, data/wine-5.0/dlls/msvcrt/mbcs.c:2288:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(locinfo->lc_codepage, 0, str, 2, &tmpdst, 1)) data/wine-5.0/dlls/msvcrt/mbcs.c:2293:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(locinfo->lc_codepage, 0, str, 1, &tmpdst, 1)) data/wine-5.0/dlls/msvcrt/mbcs.c:2315:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpstr[2]; data/wine-5.0/dlls/msvcrt/mbcs.c:2345:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(locinfo->lc_codepage, 0, tmpstr, len, dst, dst ? 1 : 0)) data/wine-5.0/dlls/msvcrt/mbcs.c:2386:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(locinfo->lc_codepage, 0, mbstr, -1, NULL, 0)-1; data/wine-5.0/dlls/msvcrt/mbcs.c:2396:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(locinfo->lc_codepage, 0, data/wine-5.0/dlls/msvcrt/misc.c:150:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(start, match, elem_size); data/wine-5.0/dlls/msvcrt/msvcrt.h:133:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *str[43]; data/wine-5.0/dlls/msvcrt/msvcrt.h:135:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_wday[7]; data/wine-5.0/dlls/msvcrt/msvcrt.h:136:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *wday[7]; data/wine-5.0/dlls/msvcrt/msvcrt.h:137:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_mon[12]; data/wine-5.0/dlls/msvcrt/msvcrt.h:138:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *mon[12]; data/wine-5.0/dlls/msvcrt/msvcrt.h:167:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/msvcrt/msvcrt.h:217:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char mbctype[257]; data/wine-5.0/dlls/msvcrt/msvcrt.h:218:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char mbcasemap[256]; data/wine-5.0/dlls/msvcrt/msvcrt.h:300:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cached_locale[131]; data/wine-5.0/dlls/msvcrt/msvcrt.h:616:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/dlls/msvcrt/msvcrt.h:625:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/dlls/msvcrt/msvcrt.h:634:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/dlls/msvcrt/msvcrt.h:643:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/dlls/msvcrt/printf.h:123:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MSVCRT_MB_LEN_MAX]; data/wine-5.0/dlls/msvcrt/printf.h:285:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, ".%d", flags->Precision); data/wine-5.0/dlls/msvcrt/printf.h:608:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char float_fmt[20], buf_a[32], *tmp = buf_a, *decimal_point; data/wine-5.0/dlls/msvcrt/process.c:59:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, name, name_len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/process.c:77:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + name_len, suffix[i], 5 * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/process.c:99:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, env, path_len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/process.c:119:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + path_len + name_len, suffix[i], 5 * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/process.c:219:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p,*a,len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/process.c:249:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar(CP_ACP, 0, *a, -1, NULL, 0); data/wine-5.0/dlls/msvcrt/process.c:262:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). p += MultiByteToWideChar(CP_ACP, 0, *a, strlen(*a), p, len - (p - ret)); data/wine-5.0/dlls/msvcrt/process.c:317:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). unsigned int len = MultiByteToWideChar( CP_ACP, 0, arg, -1, NULL, 0 ); data/wine-5.0/dlls/msvcrt/process.c:329:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos += MultiByteToWideChar( CP_ACP, 0, arg, -1, ret + pos, size - pos ); data/wine-5.0/dlls/msvcrt/scheduler.c:78:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mem[1]; data/wine-5.0/dlls/msvcrt/scheduler.c:671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(shutdown_events, this->shutdown_events, data/wine-5.0/dlls/msvcrt/string.c:1245:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, &ld, 8); data/wine-5.0/dlls/msvcrt/string.c:1247:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, &ld, 10); data/wine-5.0/dlls/msvcrt/string.c:1267:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, &ld, 8); data/wine-5.0/dlls/msvcrt/string.c:1269:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, &ld, 10); data/wine-5.0/dlls/msvcrt/string.c:1632:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33], *pos; data/wine-5.0/dlls/msvcrt/string.c:1687:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len); data/wine-5.0/dlls/msvcrt/string.c:1778:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/string.c:1812:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[65], *pos; data/wine-5.0/dlls/msvcrt/string.c:1841:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, buffer-pos+65); data/wine-5.0/dlls/msvcrt/string.c:1879:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, (buffer-pos+65)*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/string.c:1889:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33], *pos; data/wine-5.0/dlls/msvcrt/string.c:1933:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len); data/wine-5.0/dlls/msvcrt/string.c:1987:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/string.c:1999:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[65], *pos; data/wine-5.0/dlls/msvcrt/string.c:2062:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len); data/wine-5.0/dlls/msvcrt/string.c:2137:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len * sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/string.c:2147:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[I10_OUTPUT_MAX_PREC+1]; /* add space for '\0' */ data/wine-5.0/dlls/msvcrt/string.c:2175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[16]; data/wine-5.0/dlls/msvcrt/string.c:2176:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[I10_OUTPUT_MAX_PREC+9]; /* 9 = strlen("0.e+0000") + '\0' */ data/wine-5.0/dlls/msvcrt/string.c:2180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ld, &ld80, 8); data/wine-5.0/dlls/msvcrt/string.c:2182:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ld, &ld80, 10); data/wine-5.0/dlls/msvcrt/string.c:2197:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->str, inf_str, sizeof(inf_str)); data/wine-5.0/dlls/msvcrt/string.c:2205:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->str, nan_str, sizeof(nan_str)); data/wine-5.0/dlls/msvcrt/string.c:2226:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(format, "%%.%dle", prec); data/wine-5.0/dlls/msvcrt/string.c:2230:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). data->pos = atoi(buf+prec+3); data/wine-5.0/dlls/msvcrt/string.c:2237:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->str, buf+1, data->len); data/wine-5.0/dlls/msvcrt/string.c:2241:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->str+data->len+1, buf+data->len+1, prec-data->len+1); data/wine-5.0/dlls/msvcrt/tests/cpp.c:36:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[16]; data/wine-5.0/dlls/msvcrt/tests/cpp.c:829:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(t1.name, "foo"); data/wine-5.0/dlls/msvcrt/tests/cpp.c:974:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[0x110-sizeof(void*)]; data/wine-5.0/dlls/msvcrt/tests/data.c:136:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmppath[MAX_PATH], filepath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/data.c:185:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filepath, "w"); data/wine-5.0/dlls/msvcrt/tests/data.c:196:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[3*MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/data.c:197:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmppath[MAX_PATH], filepath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/data.c:210:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filepath, "w"); data/wine-5.0/dlls/msvcrt/tests/data.c:214:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filepath, "w"); data/wine-5.0/dlls/msvcrt/tests/dir.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:119:35: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->drive != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->drive, -1, driveW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:120:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->dir != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->dir, -1, dirW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:121:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->file != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:122:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->ext != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->ext, -1, extW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:127:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->buffer) MultiByteToWideChar( CP_ACP, 0, p->buffer, -1, bufferW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:225:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:276:35: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->drive != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->drive, -1, driveW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:277:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->dir != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->dir, -1, dirW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:278:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->file != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:279:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->ext != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->ext, -1, extW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:284:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->buffer) MultiByteToWideChar( CP_ACP, 0, p->buffer, -1, bufferW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:319:35: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->drive != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->drive, -1, driveW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:320:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->dir != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->dir, -1, dirW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:321:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->file != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->file, -1, fileW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:322:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->ext != USE_BUFF) MultiByteToWideChar(CP_ACP, 0, p->ext, -1, extW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:327:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (p->buffer) MultiByteToWideChar( CP_ACP, 0, p->buffer, -1, bufferW, MAX_PATH); data/wine-5.0/dlls/msvcrt/tests/dir.c:344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char full[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmppath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prevpath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:347:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char level1[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char level2[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:349:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char teststring[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:357:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(level1,"msvcrt-test\\"); data/wine-5.0/dlls/msvcrt/tests/dir.c:364:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(level2,"nextlevel\\"); data/wine-5.0/dlls/msvcrt/tests/dir.c:372:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(teststring,"test"); data/wine-5.0/dlls/msvcrt/tests/dir.c:375:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(teststring,level2,3); data/wine-5.0/dlls/msvcrt/tests/dir.c:377:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(teststring,"test"); data/wine-5.0/dlls/msvcrt/tests/dir.c:381:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(teststring,"test"); data/wine-5.0/dlls/msvcrt/tests/dir.c:388:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(teststring,"test"); data/wine-5.0/dlls/msvcrt/tests/dir.c:402:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drive[3], dir[MAX_PATH], fname[MAX_PATH], ext[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:445:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char env1[4*MAX_PATH], env2[4*MAX_PATH], tmppath[MAX_PATH], path[2*MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result[MAX_PATH], exp[2*MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/dir.c:458:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, tmppath, path_len); data/wine-5.0/dlls/msvcrt/tests/dir.c:467:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tmp_file = fopen(path, "wb"); data/wine-5.0/dlls/msvcrt/tests/dir.c:472:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(env1, "TEST_PATH="); data/wine-5.0/dlls/msvcrt/tests/dir.c:473:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(env2, "TEST_PATH=;"); data/wine-5.0/dlls/msvcrt/tests/dir.c:481:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(env2, ";;"); data/wine-5.0/dlls/msvcrt/tests/file.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lookahead[3]; data/wine-5.0/dlls/msvcrt/tests/file.c:87:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("filbuf.tst", "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:91:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("filbuf.tst", "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ibuf[10]; data/wine-5.0/dlls/msvcrt/tests/file.c:119:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:123:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_RDONLY | O_BINARY); data/wine-5.0/dlls/msvcrt/tests/file.c:135:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/msvcrt/tests/file.c:143:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:149:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_RDONLY | O_BINARY); data/wine-5.0/dlls/msvcrt/tests/file.c:196:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_RDONLY | O_TEXT); data/wine-5.0/dlls/msvcrt/tests/file.c:208:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen("fdopen.tst", "rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:225:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[8192]; data/wine-5.0/dlls/msvcrt/tests/file.c:234:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:250:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_RDONLY); data/wine-5.0/dlls/msvcrt/tests/file.c:255:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_RDONLY | O_BINARY); data/wine-5.0/dlls/msvcrt/tests/file.c:355:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("fdopen.tst", O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:362:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("fdopen.tst", O_RDONLY); data/wine-5.0/dlls/msvcrt/tests/file.c:382:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/msvcrt/tests/file.c:386:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:389:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:398:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:403:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:413:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp= fopen("ascii.tst","wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:417:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "r"); data/wine-5.0/dlls/msvcrt/tests/file.c:449:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii.tst", "r"); data/wine-5.0/dlls/msvcrt/tests/file.c:468:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ibuf[4]; data/wine-5.0/dlls/msvcrt/tests/file.c:481:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii2.tst", "wt"); data/wine-5.0/dlls/msvcrt/tests/file.c:485:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("ascii2.tst", "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:498:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DATA2 [100]; data/wine-5.0/dlls/msvcrt/tests/file.c:499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:510:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "w+bDT"); data/wine-5.0/dlls/msvcrt/tests/file.c:529:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, p, -1, NULL, 0 ); data/wine-5.0/dlls/msvcrt/tests/file.c:531:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, p, -1, buffer, len ); data/wine-5.0/dlls/msvcrt/tests/file.c:539:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[513], rbuf[513]; data/wine-5.0/dlls/msvcrt/tests/file.c:548:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("boundary.tst", "wt"); data/wine-5.0/dlls/msvcrt/tests/file.c:551:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen("boundary.tst", "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:571:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"w+"); data/wine-5.0/dlls/msvcrt/tests/file.c:580:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wt"); data/wine-5.0/dlls/msvcrt/tests/file.c:583:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wt"); data/wine-5.0/dlls/msvcrt/tests/file.c:599:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:608:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:629:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:654:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:660:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"w"); data/wine-5.0/dlls/msvcrt/tests/file.c:673:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"r"); data/wine-5.0/dlls/msvcrt/tests/file.c:687:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf1[16], buf2[24]; data/wine-5.0/dlls/msvcrt/tests/file.c:695:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:701:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:751:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:764:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rt"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:783:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:798:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); /* open in BINARY mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:856:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH], tempfile[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:872:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:881:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(codepage, 0, text, -1, wtextW, ARRAY_SIZE(wtextW)); data/wine-5.0/dlls/msvcrt/tests/file.c:893:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "rt"); data/wine-5.0/dlls/msvcrt/tests/file.c:905:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:910:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:925:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH], tempfile[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:928:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char utf8_text[BUFSIZ]; data/wine-5.0/dlls/msvcrt/tests/file.c:941:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:946:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "rt,ccs=unicode"); data/wine-5.0/dlls/msvcrt/tests/file.c:958:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:966:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempfile, "rt, ccs=UTF-8"); data/wine-5.0/dlls/msvcrt/tests/file.c:982:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temppath[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:983:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:985:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/msvcrt/tests/file.c:991:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "w"); data/wine-5.0/dlls/msvcrt/tests/file.c:998:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:1005:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "w,ccs=unicode"); data/wine-5.0/dlls/msvcrt/tests/file.c:1012:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:1018:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "w,ccs=utf-8"); data/wine-5.0/dlls/msvcrt/tests/file.c:1025:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(tempfile, "rb"); data/wine-5.0/dlls/msvcrt/tests/file.c:1042:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/msvcrt/tests/file.c:1047:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); data/wine-5.0/dlls/msvcrt/tests/file.c:1058:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rt"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1069:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); /* open in BINARY mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1091:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char btext[LLEN]; data/wine-5.0/dlls/msvcrt/tests/file.c:1098:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wt"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1101:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1106:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"wb"); /* open in BINARY mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1109:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rt"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1113:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rb"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1118:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tempfh = fopen(tempf,"rt"); /* open in TEXT mode */ data/wine-5.0/dlls/msvcrt/tests/file.c:1141:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char btext[LLEN]; data/wine-5.0/dlls/msvcrt/tests/file.c:1360:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int fd = atoi(fd_s); data/wine-5.0/dlls/msvcrt/tests/file.c:1361:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/msvcrt/tests/file.c:1373:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int fd = atoi(fd_s); data/wine-5.0/dlls/msvcrt/tests/file.c:1403:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[128]; data/wine-5.0/dlls/msvcrt/tests/file.c:1458:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/msvcrt/tests/file.c:1459:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:1464:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_CREAT | O_RDWR | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:1469:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[3] = buffer; sprintf(buffer, "%d", fd); data/wine-5.0/dlls/msvcrt/tests/file.c:1478:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open ("fdopen.tst", O_CREAT | O_RDWR | O_BINARY | O_NOINHERIT, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:1482:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[3] = buffer; sprintf(buffer, "%d", fd); data/wine-5.0/dlls/msvcrt/tests/file.c:1620:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/msvcrt/tests/file.c:1658:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH] = "abc"; data/wine-5.0/dlls/msvcrt/tests/file.c:1721:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream1 = fopen(fname1, "w+"); data/wine-5.0/dlls/msvcrt/tests/file.c:1723:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream2 = fopen(fname2, "w "); data/wine-5.0/dlls/msvcrt/tests/file.c:1726:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream3 = fopen(fname3, "r"); data/wine-5.0/dlls/msvcrt/tests/file.c:1728:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream3 = fopen(fname3, "w+"); data/wine-5.0/dlls/msvcrt/tests/file.c:1731:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream4 = fopen("", "w+"); data/wine-5.0/dlls/msvcrt/tests/file.c:1735:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream4 = fopen(NULL, "w+"); data/wine-5.0/dlls/msvcrt/tests/file.c:1767:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/msvcrt/tests/file.c:1787:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(name, "r"); data/wine-5.0/dlls/msvcrt/tests/file.c:1888:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/msvcrt/tests/file.c:1907:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(name, "r"); data/wine-5.0/dlls/msvcrt/tests/file.c:2022:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("stat.tst", O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:2134:8: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fd=atoi(args[3]); data/wine-5.0/dlls/msvcrt/tests/file.c:2138:8: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fd=atoi(args[4]); data/wine-5.0/dlls/msvcrt/tests/file.c:2155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str_fdr[12], str_fdw[12]; data/wine-5.0/dlls/msvcrt/tests/file.c:2158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/msvcrt/tests/file.c:2159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[4096]; data/wine-5.0/dlls/msvcrt/tests/file.c:2173:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[3] = str_fdr; sprintf(str_fdr, "%d", pipes[0]); data/wine-5.0/dlls/msvcrt/tests/file.c:2174:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[4] = str_fdw; sprintf(str_fdw, "%d", pipes[1]); data/wine-5.0/dlls/msvcrt/tests/file.c:2202:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[3] = str_fdr; sprintf(str_fdr, "%d", pipes[0]); data/wine-5.0/dlls/msvcrt/tests/file.c:2203:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. arg_v[4] = str_fdw; sprintf(str_fdw, "%d", pipes[1]); data/wine-5.0/dlls/msvcrt/tests/file.c:2288:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen("test_unlink\\empty", "w"); data/wine-5.0/dlls/msvcrt/tests/file.c:2324:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("stdin.tst", O_WRONLY | O_CREAT, _S_IREAD |_S_IWRITE); data/wine-5.0/dlls/msvcrt/tests/file.c:2340:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/msvcrt/tests/file.c:2345:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "testXXXXX"); data/wine-5.0/dlls/msvcrt/tests/file.c:2348:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "testXXXXXX"); data/wine-5.0/dlls/msvcrt/tests/file.c:2351:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "testXXXXXXa"); data/wine-5.0/dlls/msvcrt/tests/file.c:2354:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "**XXXXXX"); data/wine-5.0/dlls/msvcrt/tests/file.c:2451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char iobuf[1024]; data/wine-5.0/dlls/msvcrt/tests/file.c:2456:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(tempf, "wb+"); data/wine-5.0/dlls/msvcrt/tests/file.c:2536:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[6], testdata[4] = {'a', '\n', 'b', '\n'}; data/wine-5.0/dlls/msvcrt/tests/file.c:2589:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char testdata[4] = {'a', '\n', 'b', '\n'}; data/wine-5.0/dlls/msvcrt/tests/heap.c:108:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. ((char *)mem)[i] = i + 1; data/wine-5.0/dlls/msvcrt/tests/heap.c:109:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem1, mem, size1); data/wine-5.0/dlls/msvcrt/tests/heap.c:144:31: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (((char *)mem2)[i] != ((char *)mem1)[i]) data/wine-5.0/dlls/msvcrt/tests/heap.c:144:52: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (((char *)mem2)[i] != ((char *)mem1)[i]) data/wine-5.0/dlls/msvcrt/tests/heap.c:145:62: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. trace("%d: %02x != %02x\n", i, ((char *)mem2)[i] & 0xff, ((char *)mem1)[i] & 0xff); data/wine-5.0/dlls/msvcrt/tests/heap.c:145:88: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. trace("%d: %02x != %02x\n", i, ((char *)mem2)[i] & 0xff, ((char *)mem1)[i] & 0xff); data/wine-5.0/dlls/msvcrt/tests/heap.c:180:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. ((char *)mem)[i] = i + 1; data/wine-5.0/dlls/msvcrt/tests/heap.c:181:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem1, mem, size1); data/wine-5.0/dlls/msvcrt/tests/heap.c:217:31: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (((char *)mem2)[i] != ((char *)mem1)[i]) data/wine-5.0/dlls/msvcrt/tests/heap.c:217:52: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (((char *)mem2)[i] != ((char *)mem1)[i]) data/wine-5.0/dlls/msvcrt/tests/heap.c:218:62: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. trace("%d: %02x != %02x\n", i, ((char *)mem2)[i] & 0xff, ((char *)mem1)[i] & 0xff); data/wine-5.0/dlls/msvcrt/tests/heap.c:218:88: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. trace("%d: %02x != %02x\n", i, ((char *)mem2)[i] & 0xff, ((char *)mem1)[i] & 0xff); data/wine-5.0/dlls/msvcrt/tests/locale.c:47:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ret, buf[100]; data/wine-5.0/dlls/msvcrt/tests/locale.c:600:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "English_United States."); data/wine-5.0/dlls/msvcrt/tests/locale.c:609:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "English_United States."); data/wine-5.0/dlls/msvcrt/tests/locale.c:688:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *str[43]; data/wine-5.0/dlls/msvcrt/tests/locale.c:691:9: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t *wstr[43]; data/wine-5.0/dlls/msvcrt/tests/locale.c:692:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/msvcrt/tests/locale.c:695:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/msvcrt/tests/misc.c:94:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[100]; data/wine-5.0/dlls/msvcrt/tests/misc.c:186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/msvcrt/tests/misc.c:343:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/msvcrt/tests/printf.c:258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msvcrt/tests/printf.c:393:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, " string to copy"); data/wine-5.0/dlls/msvcrt/tests/printf.c:403:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buffer[100]; data/wine-5.0/dlls/msvcrt/tests/printf.c:434:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8]; data/wine-5.0/dlls/msvcrt/tests/printf.c:456:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen(file_name, "wb"); data/wine-5.0/dlls/msvcrt/tests/printf.c:457:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/msvcrt/tests/printf.c:477:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(file_name, "rb"); data/wine-5.0/dlls/msvcrt/tests/printf.c:498:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(file_name, "wt"); data/wine-5.0/dlls/msvcrt/tests/printf.c:517:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(file_name, "rb"); data/wine-5.0/dlls/msvcrt/tests/printf.c:809:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t str[32]; data/wine-5.0/dlls/msvcrt/tests/printf.c:810:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/msvcrt/tests/printf.c:890:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[20]; data/wine-5.0/dlls/msvcrt/tests/printf.c:1000:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buffer[14] = { 0 }; data/wine-5.0/dlls/msvcrt/tests/printf.c:1053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/msvcrt/tests/printf.c:1084:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:36:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(file_name, "wb"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:46:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(file_name, "rb"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:65:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100], buffer1[100]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[20]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:122:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"0x519"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:126:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"0x51a"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:130:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"0x51g"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:140:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"\"%12@"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:141:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(format,"%\"%%%d%@"); /* work around gcc format check */ data/wine-5.0/dlls/msvcrt/tests/scanf.c:162:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "1.1e-30"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:209:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:215:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:221:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:227:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:233:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:243:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"12345678901234"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:252:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"123"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:270:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"017"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:275:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"0x17"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:299:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer," a"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:305:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"18:59"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:322:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "3:45"); data/wine-5.0/dlls/msvcrt/tests/scanf.c:344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:389:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buffer[100], results[100]; data/wine-5.0/dlls/msvcrt/tests/scanf.c:424:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buf[2], out[2]; data/wine-5.0/dlls/msvcrt/tests/string.c:41:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[2][1024]; data/wine-5.0/dlls/msvcrt/tests/string.c:47:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(w, "%02x ", (unsigned char)bin[i]); data/wine-5.0/dlls/msvcrt/tests/string.c:127:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char from[30]; data/wine-5.0/dlls/msvcrt/tests/string.c:128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char to[30]; data/wine-5.0/dlls/msvcrt/tests/string.c:136:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(from, original, testsize); data/wine-5.0/dlls/msvcrt/tests/string.c:144:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(from, original, testsize); data/wine-5.0/dlls/msvcrt/tests/string.c:152:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to, original, testsize); data/wine-5.0/dlls/msvcrt/tests/string.c:160:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(from, original, testsize); data/wine-5.0/dlls/msvcrt/tests/string.c:256:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:668:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[8]; data/wine-5.0/dlls/msvcrt/tests/string.c:722:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest+1, small, sizeof(small)); data/wine-5.0/dlls/msvcrt/tests/string.c:738:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dest[8], buf[32]; data/wine-5.0/dlls/msvcrt/tests/string.c:806:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dest[8]; data/wine-5.0/dlls/msvcrt/tests/string.c:868:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[8]; data/wine-5.0/dlls/msvcrt/tests/string.c:931:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char dst[8], src[4]; data/wine-5.0/dlls/msvcrt/tests/string.c:1011:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char dest[8]; data/wine-5.0/dlls/msvcrt/tests/string.c:1059:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char dest[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:1660:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char teststr[100]; data/wine-5.0/dlls/msvcrt/tests/string.c:2056:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wOut[6]; data/wine-5.0/dlls/msvcrt/tests/string.c:2057:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mOut[6]; data/wine-5.0/dlls/msvcrt/tests/string.c:2281:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024], *res; data/wine-5.0/dlls/msvcrt/tests/string.c:2317:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33]; data/wine-5.0/dlls/msvcrt/tests/string.c:2413:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/msvcrt/tests/string.c:2436:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "GoRrIsTeR"); data/wine-5.0/dlls/msvcrt/tests/string.c:2444:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "GoRrIsTeR"); data/wine-5.0/dlls/msvcrt/tests/string.c:2452:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "GoRrIsTeR"); data/wine-5.0/dlls/msvcrt/tests/string.c:2459:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "GoRrIsTeR\0ELLEN", sizeof("GoRrIsTeR\0ELLEN")); data/wine-5.0/dlls/msvcrt/tests/string.c:2474:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t dst[4]; data/wine-5.0/dlls/msvcrt/tests/string.c:2475:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t src[4]; data/wine-5.0/dlls/msvcrt/tests/string.c:2483:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, abcW, sizeof(abcW)); data/wine-5.0/dlls/msvcrt/tests/string.c:2503:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, abcW, sizeof(abcW)); data/wine-5.0/dlls/msvcrt/tests/string.c:2511:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char dest[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:2573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2580:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2594:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2601:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2609:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2618:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2627:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, first, sizeof(first)); data/wine-5.0/dlls/msvcrt/tests/string.c:2639:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[20]; data/wine-5.0/dlls/msvcrt/tests/string.c:2661:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "abcdefgh", sizeof("abcdefgh")); data/wine-5.0/dlls/msvcrt/tests/string.c:2669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "abcdefgh", sizeof("abcdefgh")); data/wine-5.0/dlls/msvcrt/tests/string.c:2677:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "abcdefgh", sizeof("abcdefgh")); data/wine-5.0/dlls/msvcrt/tests/string.c:2683:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "abcdefgh\0ijklmnop", sizeof("abcdefgh\0ijklmnop")); data/wine-5.0/dlls/msvcrt/tests/string.c:2696:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[20]; data/wine-5.0/dlls/msvcrt/tests/string.c:2718:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "ABCDEFGH", sizeof("ABCDEFGH")); data/wine-5.0/dlls/msvcrt/tests/string.c:2726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "ABCDEFGH", sizeof("ABCDEFGH")); data/wine-5.0/dlls/msvcrt/tests/string.c:2734:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "ABCDEFGH", sizeof("ABCDEFGH")); data/wine-5.0/dlls/msvcrt/tests/string.c:2740:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "ABCDEFGH\0IJKLMNOP", sizeof("ABCDEFGH\0IJKLMNOP")); data/wine-5.0/dlls/msvcrt/tests/string.c:2770:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33]; data/wine-5.0/dlls/msvcrt/tests/string.c:2886:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char dst[10]; data/wine-5.0/dlls/msvcrt/tests/string.c:2999:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_ACP, MB_ERR_INVALID_CHARS, &ch, 1, &chw, 1) || data/wine-5.0/dlls/msvcrt/tests/string.c:3013:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_ACP, MB_ERR_INVALID_CHARS, &ch, 1, &chw, 1) || data/wine-5.0/dlls/msvcrt/tests/string.c:3058:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char num[32]; data/wine-5.0/dlls/msvcrt/tests/string.c:3092:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(num, "123"); data/wine-5.0/dlls/msvcrt/tests/string.c:3112:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(num, "1e-309"); data/wine-5.0/dlls/msvcrt/tests/string.c:3120:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(num, "1e309"); data/wine-5.0/dlls/msvcrt/tests/string.c:3288:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atoi("0"); data/wine-5.0/dlls/msvcrt/tests/string.c:3291:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atoi("-1"); data/wine-5.0/dlls/msvcrt/tests/string.c:3294:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atoi("1"); data/wine-5.0/dlls/msvcrt/tests/string.c:3297:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atoi("4294967296"); data/wine-5.0/dlls/msvcrt/tests/string.c:3305:9: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atol("0"); data/wine-5.0/dlls/msvcrt/tests/string.c:3308:9: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atol("-1"); data/wine-5.0/dlls/msvcrt/tests/string.c:3311:9: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atol("1"); data/wine-5.0/dlls/msvcrt/tests/string.c:3314:9: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r = atol("4294967296"); data/wine-5.0/dlls/msvcrt/tests/string.c:3354:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[TEST_STRNCPY_LEN + 1]; data/wine-5.0/dlls/msvcrt/tests/string.c:3370:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dst, "0123456789"); data/wine-5.0/dlls/msvcrt/tests/string.c:3384:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[256]; data/wine-5.0/dlls/msvcrt/tests/string.c:3451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[5] = {0}; data/wine-5.0/dlls/msvcrt/tests/string.c:3520:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t str[10]; data/wine-5.0/dlls/msvcrt/tests/string.c:3721:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str2[4]; data/wine-5.0/dlls/msvcrt/tests/string.c:3727:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mem, str, sizeof(str)); data/wine-5.0/dlls/msvcrt/tests/string.c:3730:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(str2, "aBc"); data/wine-5.0/dlls/msvcrt/tests/string.c:3749:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(str2, "aBc"); data/wine-5.0/dlls/msvcrt/tests/string.c:3803:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:3804:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str2[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:3886:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:3887:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str2[16]; data/wine-5.0/dlls/msvcrt/tests/string.c:4033:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char long_str[1024]; data/wine-5.0/dlls/msvcrt/tests/string.c:4088:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mem[100]; data/wine-5.0/dlls/msvcrt/tests/time.c:40:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_wday[7]; data/wine-5.0/dlls/msvcrt/tests/time.c:41:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *wday[7]; data/wine-5.0/dlls/msvcrt/tests/time.c:42:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_mon[12]; data/wine-5.0/dlls/msvcrt/tests/time.c:43:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *mon[12]; data/wine-5.0/dlls/msvcrt/tests/time.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char TZ_env[256]; data/wine-5.0/dlls/msvcrt/tests/time.c:217:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/msvcrt/tests/time.c:327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char TZ_env[256]; data/wine-5.0/dlls/msvcrt/tests/time.c:370:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char date[16], * result; data/wine-5.0/dlls/msvcrt/tests/time.c:405:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char time[16], * result; data/wine-5.0/dlls/msvcrt/tests/time.c:442:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t date[16], * result; data/wine-5.0/dlls/msvcrt/tests/time.c:456:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t time[16], * result; data/wine-5.0/dlls/msvcrt/tests/time.c:734:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], bufA[256]; data/wine-5.0/dlls/msvcrt/tests/time.c:910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char TZ_env[256]; data/wine-5.0/dlls/msvcrt/time.c:102:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tzname_std[64] = "PST"; data/wine-5.0/dlls/msvcrt/time.c:103:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tzname_dst[64] = "PDT"; data/wine-5.0/dlls/msvcrt/time.c:104:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *MSVCRT__tzname[2] = { tzname_std, tzname_dst }; data/wine-5.0/dlls/msvcrt/time.c:1672:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char wday[7][4] = {"Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"}; data/wine-5.0/dlls/msvcrt/time.c:1673:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char month[12][4] = {"Jan", "Feb", "Mar", "Apr", "May", data/wine-5.0/dlls/msvcrt/time.c:1747:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[26]; data/wine-5.0/dlls/msvcrt/time.c:1760:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buffer, -1, data->wasctime_buffer, 26); data/wine-5.0/dlls/msvcrt/time.c:1769:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[26]; data/wine-5.0/dlls/msvcrt/time.c:1780:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buffer, -1, time, size); data/wine-5.0/dlls/msvcrt/undname.c:186:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new, a->elts, a->alloc * sizeof(a->elts[0])); data/wine-5.0/dlls/msvcrt/undname.c:193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(a->elts[a->num], ptr, len); data/wine-5.0/dlls/msvcrt/undname.c:273:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, t, sz); data/wine-5.0/dlls/msvcrt/undname.c:472:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). num = atoi(n1); data/wine-5.0/dlls/msvcrt/undname.c:655:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret + len, a->elts[i], sz); data/wine-5.0/dlls/msvcrt/undname.c:1010:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). num = atoi(n1); data/wine-5.0/dlls/msvcrt/wcs.c:75:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, str, size ); data/wine-5.0/dlls/msvcrt/wcs.c:471:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[3]; data/wine-5.0/dlls/msvcrt/wcs.c:1246:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->buf, str, out->len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/wcs.c:1252:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->buf, str, len*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvcrt/wcs.c:2125:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dst[dststart], src, srclen*sizeof(MSVCRT_wchar_t)); data/wine-5.0/dlls/msvfw32/drawdib.c:259:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(whdd->lpbiOut, lpbi, dwSize); data/wine-5.0/dlls/msvfw32/drawdib.c:288:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(whdd->lpbi, lpbi, lpbi->biSize); data/wine-5.0/dlls/msvfw32/drawdib.c:395:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(whdd->lpvbits, lpBits, biSizeImage); data/wine-5.0/dlls/msvfw32/mciwnd.c:797:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[64]; data/wine-5.0/dlls/msvfw32/mciwnd.c:841:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[64]; data/wine-5.0/dlls/msvfw32/mciwnd.c:1000:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cmdW, (void *)lParam, pos * sizeof(WCHAR)); data/wine-5.0/dlls/msvfw32/mciwnd.c:1134:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[64]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:62:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fcc_str[5]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:220:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fcc_str1[4]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:221:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fcc_str2[4]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name_buf[10], buf[2048]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:304:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buf, -1, info->szDriver, ARRAY_SIZE(info->szDriver)); data/wine-5.0/dlls/msvfw32/msvideo_main.c:324:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, s + 10, -1, info->szDriver, ARRAY_SIZE(info->szDriver)); data/wine-5.0/dlls/msvfw32/msvideo_main.c:378:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[10]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:404:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[10]; data/wine-5.0/dlls/msvfw32/msvideo_main.c:1370:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpbiOut->bmiColors, lpbiIn->bmiColors, sizeof(RGBQUAD)*(1<<lpbiOut->bmiHeader.biBitCount) ); data/wine-5.0/dlls/msvfw32/msvideo_main.c:1372:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpbiOut->bmiColors, lpbiIn->bmiColors, sizeof(RGBQUAD)*lpbiIn->bmiHeader.biClrUsed ); data/wine-5.0/dlls/msvfw32/msvideo_main.c:1403:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pMem, lpbiOut, cbHdr ); data/wine-5.0/dlls/msvfw32/msvideo_main.c:1527:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, size); data/wine-5.0/dlls/msvfw32/tests/drawdib.c:95:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hash[41]; data/wine-5.0/dlls/msvfw32/tests/mciwnd.c:116:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/msvfw32/tests/mciwnd.c:160:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_PATH]; data/wine-5.0/dlls/msvfw32/tests/mciwnd.c:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[200]; data/wine-5.0/dlls/msvfw32/tests/msvfw.c:408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/msvfw32/tests/msvfw.c:682:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outbuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/msvidc32/msvideo1.c:95:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char colors[8]; data/wine-5.0/dlls/msvidc32/msvideo1.c:155:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colors, &buf[stream_ptr], 8); data/wine-5.0/dlls/msvidc32/msvideo1.c:375:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out, in, size ); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:443:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ici16->szName, -1, ici->szName, 16 ); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:444:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ici16->szDescription, -1, ici->szDescription, 128 ); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:445:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ici16->szDriver, -1, ici->szDriver, 128 ); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:877:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *s, buf[2048], fn[260]; data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:956:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf1, subblock, copylen); data/wine-5.0/dlls/msxml3/cdata.c:643:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/cdata.c:644:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[len], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/cdata.c:690:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, offset*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/cdata.c:691:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/cdata.c:692:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset+p_len], &data[offset], (len-offset)*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/comment.c:645:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/comment.c:646:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[len], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/comment.c:692:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, offset*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/comment.c:693:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/comment.c:694:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset+p_len], &data[offset], (len-offset)*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/domdoc.c:327:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((xmlChar*)pcopy->selectNsStr, properties->selectNsStr, len); data/wine-5.0/dlls/msxml3/domdoc.c:333:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_ns, ns, sizeof(select_ns_entry)); data/wine-5.0/dlls/msxml3/domdoc.c:560:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[30]; data/wine-5.0/dlls/msxml3/domdoc.c:3165:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)nsStr, lenA+1, NULL, 0); data/wine-5.0/dlls/msxml3/domdoc.c:3167:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)nsStr, lenA+1, rebuiltStr, lenW); data/wine-5.0/dlls/msxml3/element.c:820:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char byte_to_hex[16] = "0123456789abcdef"; data/wine-5.0/dlls/msxml3/httprequest.c:680:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*username, request->user, SysStringByteLen(request->user)+sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/httprequest.c:681:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*password, request->password, SysStringByteLen(request->password)+sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/httprequest.c:802:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(send_data, ptr, size); data/wine-5.0/dlls/msxml3/httprequest.c:1164:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD length = MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)ptr, size, NULL, 0); data/wine-5.0/dlls/msxml3/httprequest.c:1168:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (LPCSTR)ptr, size, *body, length); data/wine-5.0/dlls/msxml3/httprequest.c:1240:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, ptr, size); data/wine-5.0/dlls/msxml3/main.c:71:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[200]; data/wine-5.0/dlls/msxml3/main.c:240:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(cp, 0, (const char *)in, *inlen, NULL, 0); data/wine-5.0/dlls/msxml3/main.c:243:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, (const char *)in, *inlen, tmp, len); data/wine-5.0/dlls/msxml3/main.c:260:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, (const char *)in, *inlen, NULL, 0); data/wine-5.0/dlls/msxml3/main.c:263:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, (const char *)in, *inlen, tmp, len); data/wine-5.0/dlls/msxml3/msxml_private.h:183:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/msxml3/msxml_private.h:375:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/msxml_private.h:378:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (LPCSTR)str, -1, ret, len); data/wine-5.0/dlls/msxml3/msxml_private.h:414:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/msxml3/mxwriter.c:338:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff->data + buff->written, data, written); data/wine-5.0/dlls/msxml3/mxwriter.c:353:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff->data, data, src_len); data/wine-5.0/dlls/msxml3/mxwriter.c:424:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff->data + buff->written, data, written); data/wine-5.0/dlls/msxml3/mxwriter.c:517:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, ltW, sizeof(ltW)); data/wine-5.0/dlls/msxml3/mxwriter.c:521:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, ampW, sizeof(ampW)); data/wine-5.0/dlls/msxml3/mxwriter.c:525:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, gtW, sizeof(gtW)); data/wine-5.0/dlls/msxml3/mxwriter.c:531:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, equotW, sizeof(equotW)); data/wine-5.0/dlls/msxml3/mxwriter.c:967:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_ptr, buff->data, buff->written); data/wine-5.0/dlls/msxml3/mxwriter.c:973:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_ptr, buff->data, buff->written); data/wine-5.0/dlls/msxml3/node.c:227:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, prefix, SysStringByteLen(prefix)); data/wine-5.0/dlls/msxml3/node.c:229:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr++, &colW, sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/node.c:230:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, base, SysStringByteLen(base)); data/wine-5.0/dlls/msxml3/node.c:1335:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, &buffer->data[buffer->cur], len); data/wine-5.0/dlls/msxml3/node.c:1363:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer->data, ptr, len); data/wine-5.0/dlls/msxml3/saxreader.c:619:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dLen = MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)buf, len, NULL, 0); data/wine-5.0/dlls/msxml3/saxreader.c:624:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)buf, len, bstr, dLen); data/wine-5.0/dlls/msxml3/saxreader.c:1410:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). str_len = MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)buf, len, NULL, 0); data/wine-5.0/dlls/msxml3/saxreader.c:1416:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, (LPCSTR)buf, len, str, str_len); data/wine-5.0/dlls/msxml3/saxreader.c:1929:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[1024]; data/wine-5.0/dlls/msxml3/saxreader.c:1943:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, message, -1, NULL, 0); data/wine-5.0/dlls/msxml3/saxreader.c:1947:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, message, -1, error, len); data/wine-5.0/dlls/msxml3/saxreader.c:2593:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[2048]; data/wine-5.0/dlls/msxml3/schema.c:759:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(datatypes_src, buf, datatypes_len); data/wine-5.0/dlls/msxml3/stylesheet.c:633:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, data, size); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1230:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1232:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1356:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", get_node_position(node)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1372:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[4096]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:1380:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "(null)"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1399:37: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. #define expect_node(node, expstr) { char str[4096]; node_to_string(node, str); ok(strcmp(str, expstr)==0, "Invalid node: %s, expected %s\n", str, expstr); } data/wine-5.0/dlls/msxml3/tests/domdoc.c:1454:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:1458:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "leading_spaces.xml"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1591:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[2], szComplete1, sizeof(szComplete1)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:3389:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[2], szstar, sizeof(szstar)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:3420:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[2], szstar, sizeof(szstar)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6373:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:7000:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lpPathBuffer[MAX_PATH]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:7005:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(lpPathBuffer, "customers.xml" ); data/wine-5.0/dlls/msxml3/tests/domdoc.c:8490:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[2], bodyW, sizeof(bodyW)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:8595:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, "dGVzdA=", strlen("dGVzdA=")); data/wine-5.0/dlls/msxml3/tests/domdoc.c:8644:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, binhexdata, sizeof(binhexdata)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:10225:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "winetest.xml"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10240:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path2, "file://"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10249:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path2, "file:/"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10275:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&path2[n-1], "%6C"); /* C:\path\to\winetest.xm%6C */ data/wine-5.0/dlls/msxml3/tests/domdoc.c:10280:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path2, "wine test.xml"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10284:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path2, "wine%20test.xml"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10334:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, szExampleXML, lstrlenA(szExampleXML)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10367:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, szComplete1, lstrlenW(szComplete1) * sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, szComplete1, lstrlenW(szComplete1) * sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:12074:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[2], test_data, sizeof(test_data)); data/wine-5.0/dlls/msxml3/tests/domdoc.c:12872:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *names[3]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:12873:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *prefixes[3]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:12874:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *basenames[3]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:12875:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *uris[3]; data/wine-5.0/dlls/msxml3/tests/domdoc.c:12876:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *texts[3]; data/wine-5.0/dlls/msxml3/tests/httpreq.c:100:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/msxml3/tests/httpreq.c:106:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/tests/httpreq.c:108:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len-1); data/wine-5.0/dlls/msxml3/tests/httpreq.c:141:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/tests/httpreq.c:143:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/msxml3/tests/saxreader.c:82:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/tests/saxreader.c:84:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/msxml3/tests/saxreader.c:147:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, expected, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/msxml3/tests/saxreader.c:183:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *event_names[EVENT_LAST] = { data/wine-5.0/dlls/msxml3/tests/saxreader.c:2155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char seqname[50]; data/wine-5.0/dlls/msxml3/tests/saxreader.c:2232:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, testXML, sizeof(testXML)-1); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4480:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expectedA[200]; data/wine-5.0/dlls/msxml3/tests/saxreader.c:4511:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expectedA, "<?xml version=\"1.0\" encoding=\""); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4513:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expectedA, "\" standalone=\"no\"?>\r\n"); data/wine-5.0/dlls/msxml3/tests/schema.c:447:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/msxml3/tests/schema.c:449:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/msxml3/tests/xmldoc.c:671:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/msxml3/tests/xmlview.c:58:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2048], *p1; data/wine-5.0/dlls/msxml3/text.c:734:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/text.c:735:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[len], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/text.c:781:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, data, offset*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/text.c:782:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset], p, p_len*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/text.c:783:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&str[offset+p_len], &data[offset], (len-offset)*sizeof(WCHAR)); data/wine-5.0/dlls/msxml3/xmlview.c:520:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/netapi32/nbnamecache.c:70:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char name[NCBNAMSZ]) data/wine-5.0/dlls/netapi32/nbnamecache.c:160:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(printName, name, NCBNAMSZ - 1); data/wine-5.0/dlls/netapi32/nbt.c:157:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char gScopeID[MAX_SCOPE_ID_LEN]; data/wine-5.0/dlls/netapi32/nbt.c:188:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + len, gScopeID, scopeIDLen); data/wine-5.0/dlls/netapi32/nbt.c:475:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(queryData.cacheEntry->name, ncb->ncb_callname, NCBNAMSZ); data/wine-5.0/dlls/netapi32/nbt.c:476:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(queryData.cacheEntry->nbname, ncb->ncb_callname, NCBNAMSZ); data/wine-5.0/dlls/netapi32/nbt.c:547:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*cacheEntry)->name, name, NCBNAMSZ); data/wine-5.0/dlls/netapi32/nbt.c:571:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*cacheEntry)->name, name, NCBNAMSZ); data/wine-5.0/dlls/netapi32/nbt.c:718:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->name, src, NCBNAMSZ); data/wine-5.0/dlls/netapi32/nbt.c:735:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->astat->adapter_address, src, data/wine-5.0/dlls/netapi32/nbt.c:836:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(astat->adapter_address, ifRow.bPhysAddr, physAddrLen); data/wine-5.0/dlls/netapi32/nbt.c:889:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(findNameBuffer->destination_addr + 2, data/wine-5.0/dlls/netapi32/nbt.c:892:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(findNameBuffer->source_addr + 2, data/wine-5.0/dlls/netapi32/nbt.c:1387:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&coalesceTable->table[ data/wine-5.0/dlls/netapi32/nbt.c:1522:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nsString[16]; data/wine-5.0/dlls/netapi32/nbt.c:1549:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&gTransportID, TRANSPORT_NBT, sizeof(ULONG)); data/wine-5.0/dlls/netapi32/netapi32.c:130:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; data/wine-5.0/dlls/netapi32/netapi32.c:185:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (info->sv101_name) len += MultiByteToWideChar( CP_UNIXCP, 0, info->sv101_name, -1, NULL, 0 ); data/wine-5.0/dlls/netapi32/netapi32.c:186:37: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (info->sv101_comment) len += MultiByteToWideChar( CP_UNIXCP, 0, info->sv101_comment, -1, NULL, 0 ); data/wine-5.0/dlls/netapi32/netapi32.c:196:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ptr += MultiByteToWideChar( CP_UNIXCP, 0, info->sv101_name, -1, ptr, len ); data/wine-5.0/dlls/netapi32/netapi32.c:205:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, info->sv101_comment, -1, ptr, len ); data/wine-5.0/dlls/netapi32/netapi32.c:306:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char id_auth[6]; data/wine-5.0/dlls/netapi32/netapi32.c:336:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char clock_seq[2]; data/wine-5.0/dlls/netapi32/netapi32.c:337:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char node[6]; data/wine-5.0/dlls/netapi32/netapi32.c:834:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar( CP_UNIXCP, 0, info->wki100_computername, -1, NULL, 0 ); data/wine-5.0/dlls/netapi32/netapi32.c:836:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len += MultiByteToWideChar( CP_UNIXCP, 0, info->wki100_langroup, -1, NULL, 0 ); data/wine-5.0/dlls/netapi32/netapi32.c:846:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ptr += MultiByteToWideChar( CP_UNIXCP, 0, info->wki100_computername, -1, ptr, len ); data/wine-5.0/dlls/netapi32/netapi32.c:852:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, info->wki100_langroup, -1, ptr, len ); data/wine-5.0/dlls/netapi32/netapi32.c:1057:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->sv101_name, computerName, data/wine-5.0/dlls/netapi32/netapi32.c:1592:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&allTransports, ALL_TRANSPORTS, sizeof(ULONG)); data/wine-5.0/dlls/netapi32/netapi32.c:1862:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->wki102_computername, computerName, data/wine-5.0/dlls/netapi32/netapi32.c:1865:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->wki102_langroup, DomainInfo->DomainName.Buffer, data/wine-5.0/dlls/netapi32/netapi32.c:1868:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->wki102_lanroot, lanroot, sizeof(lanroot)); data/wine-5.0/dlls/netapi32/netapi32.c:3438:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, scheme, strlenW(scheme) * sizeof(WCHAR) ); data/wine-5.0/dlls/netapi32/netapi32.c:3440:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, server, len_server * sizeof(WCHAR) ); data/wine-5.0/dlls/netapi32/netapi32.c:3444:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, portbuf, len_port * sizeof(WCHAR) ); data/wine-5.0/dlls/netapi32/netapi32.c:3520:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, server, len_server * sizeof(WCHAR) ); data/wine-5.0/dlls/netapi32/netapi32.c:3524:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, sslW, sizeof(sslW) ); data/wine-5.0/dlls/netapi32/netapi32.c:3530:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, port, len_port * sizeof(WCHAR) ); data/wine-5.0/dlls/netapi32/netapi32.c:3533:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, davrootW, sizeof(davrootW) ); data/wine-5.0/dlls/netapi32/netbios.c:153:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&gTransports[i].transport, transport, data/wine-5.0/dlls/netapi32/netbios.c:161:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&gTransports[gNumTransports].transport, transport, data/wine-5.0/dlls/netapi32/netbios.c:524:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->local_name, adapter->sessions[i].local_name, data/wine-5.0/dlls/netapi32/netbios.c:526:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->remote_name, adapter->sessions[i].remote_name, data/wine-5.0/dlls/netapi32/netbios.c:559:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(adapter->sessions[i].local_name, ncb->ncb_name, NCBNAMSZ); data/wine-5.0/dlls/netapi32/netbios.c:560:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(adapter->sessions[i].remote_name, ncb->ncb_callname, NCBNAMSZ); data/wine-5.0/dlls/netprofm/list.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( iid, &cp->iid, sizeof(*iid) ); data/wine-5.0/dlls/netprofm/list.c:1670:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &pDataPlanStatus->InterfaceGuid, &conn->id, sizeof(conn->id) ); data/wine-5.0/dlls/newdev/main.c:64:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, hardware_id, -1, hardware_idW, ARRAY_SIZE(hardware_idW)); data/wine-5.0/dlls/newdev/main.c:65:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, inf_path, -1, inf_pathW, ARRAY_SIZE(inf_pathW)); data/wine-5.0/dlls/ntdll/actctx.c:749:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( strW, str->ptr, str->len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/actctx.c:2879:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str->Buffer, pldr->FullDllName.Buffer, pldr->FullDllName.Length + sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/actctx.c:3095:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8192]; data/wine-5.0/dlls/ntdll/actctx.c:3158:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, dir_info->FileName, dir_info->FileNameLength ); data/wine-5.0/dlls/ntdll/actctx.c:3187:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + strlenW(path), manifest_dirW, sizeof(manifest_dirW) ); data/wine-5.0/dlls/ntdll/actctx.c:3458:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, dll->name, index->name_len); data/wine-5.0/dlls/ntdll/actctx.c:3679:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.class.name, index->name_len); data/wine-5.0/dlls/ntdll/actctx.c:3684:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, dll->name, data->module_len); data/wine-5.0/dlls/ntdll/actctx.c:3697:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.class.name, index->name_len); data/wine-5.0/dlls/ntdll/actctx.c:3876:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, dll->name, data->name_len); data/wine-5.0/dlls/ntdll/actctx.c:3883:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.typelib.helpdir, data->help_len); data/wine-5.0/dlls/ntdll/actctx.c:4115:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, mscoree2W, clrdata->module_len); data/wine-5.0/dlls/ntdll/actctx.c:4119:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, mscoreeW, data->name_len); data/wine-5.0/dlls/ntdll/actctx.c:4124:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.comclass.name, clrdata->name_len); data/wine-5.0/dlls/ntdll/actctx.c:4133:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.comclass.version, clrdata->version_len); data/wine-5.0/dlls/ntdll/actctx.c:4147:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, dll->name, data->name_len); data/wine-5.0/dlls/ntdll/actctx.c:4155:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.comclass.progid, data->progid_len); data/wine-5.0/dlls/ntdll/actctx.c:4366:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.ifaceps.name, data->name_len); data/wine-5.0/dlls/ntdll/actctx.c:4555:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.clrsurrogate.name, data->name_len); data/wine-5.0/dlls/ntdll/actctx.c:4562:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, entity->u.clrsurrogate.version, data->version_len); data/wine-5.0/dlls/ntdll/actctx.c:4679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrW, progid, (*index)->name_len); data/wine-5.0/dlls/ntdll/actctx.c:5013:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(source, pActCtx->lpAssemblyDirectory, dir_len*sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5015:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(source+dir_len+1, pActCtx->lpSource, (source_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5287:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, assembly->manifest.info, manifest_len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5294:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, actctx->config.info, config_len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5301:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, actctx->appdir.info, appdir_len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5357:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, assembly_id, id_len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/actctx.c:5362:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, assembly->manifest.info, path_len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5369:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, assembly->directory, ad_len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/actctx.c:5412:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, dll->name, dll_len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/atom.c:115:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, tmp, ret * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/cdrom.c:207:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[25]; data/wine-5.0/dlls/ntdll/cdrom.c:211:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "IOCTL_CODE_%x", (int)code); data/wine-5.0/dlls/ntdll/cdrom.c:263:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char cmd[CDROM_PACKET_SIZE]; data/wine-5.0/dlls/ntdll/cdrom.c:402:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name, "/dev/r" ); data/wine-5.0/dlls/ntdll/cdrom.c:968:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->MediaCatalog.MediaCatalog, mcn.medium_catalog_number, 14); data/wine-5.0/dlls/ntdll/cdrom.c:1071:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->MediaCatalog.MediaCatalog, sc.what.media_catalog.mc_number, 15); data/wine-5.0/dlls/ntdll/cdrom.c:1076:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->TrackIsrc.TrackIsrc, sc.what.track_info.ti_number, 15); data/wine-5.0/dlls/ntdll/cdrom.c:1102:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->MediaCatalog.MediaCatalog, ioc.mcn.mcn, kCDMCNMaxLength); data/wine-5.0/dlls/ntdll/cdrom.c:1108:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->TrackIsrc.TrackIsrc, ioc.isrc.isrc, kCDISRCMaxLength); data/wine-5.0/dlls/ntdll/cdrom.c:1669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(cmd.cmd), &(pPacket->Cdb), pPacket->CdbLength); data/wine-5.0/dlls/ntdll/cdrom.c:1708:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)pPacket + pPacket->SenseInfoOffset, data/wine-5.0/dlls/ntdll/cdrom.c:1719:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cmd.cdb, pPacket->Cdb, pPacket->CdbLength); data/wine-5.0/dlls/ntdll/cdrom.c:1853:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(cmd.cmd), &(pPacket->Cdb), pPacket->CdbLength); data/wine-5.0/dlls/ntdll/cdrom.c:1900:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)pPacket + pPacket->SenseInfoOffset, data/wine-5.0/dlls/ntdll/cdrom.c:1911:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cmd.cdb, pPacket->Cdb, pPacket->CdbLength); data/wine-5.0/dlls/ntdll/cdrom.c:2121:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( auth_info.hsc.chal, key->KeyData, DVD_CHALLENGE_SIZE ); data/wine-5.0/dlls/ntdll/cdrom.c:2128:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( auth_info.hsk.key, key->KeyData, DVD_KEY_SIZE ); data/wine-5.0/dlls/ntdll/cdrom.c:2153:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_desc.chal.challengeKeyValue, key->KeyData, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2160:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_desc.key2.key2Value, key->KeyData, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2214:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData,dvd.disckey.value,DVD_DISCKEY_SIZE); data/wine-5.0/dlls/ntdll/cdrom.c:2225:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData, auth_info.lstk.title_key, DVD_KEY_SIZE ); data/wine-5.0/dlls/ntdll/cdrom.c:2235:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->KeyData, auth_info.lsc.chal, DVD_CHALLENGE_SIZE ); data/wine-5.0/dlls/ntdll/cdrom.c:2252:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->KeyData, auth_info.lsk.key, DVD_KEY_SIZE ); data/wine-5.0/dlls/ntdll/cdrom.c:2361:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData, desc.chal.challengeKeyValue, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2365:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData, desc.key1.key1Value, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2369:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData, desc.title.titleKeyValue, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2410:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key->KeyData, desc.disk_key.discKeyStructures, key->KeyLength); data/wine-5.0/dlls/ntdll/cdrom.c:2614:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->DiskKeyData, s.disckey.value, 2048); data/wine-5.0/dlls/ntdll/cdrom.c:2622:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->BCAInformation, s.bca.value, s.bca.len); data/wine-5.0/dlls/ntdll/cdrom.c:2633:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->Descriptor.ManufacturingInformation, s.manufact.value, 2048); data/wine-5.0/dlls/ntdll/cdrom.c:2734:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data/wine-5.0/dlls/ntdll/cdrom.c:2744:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data/wine-5.0/dlls/ntdll/cdrom.c:2861:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/ntdll/cdrom.c:2875:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( name, O_RDONLY )) == -1) data/wine-5.0/dlls/ntdll/crypt.c:226:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/ntdll/crypt.c:227:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/ntdll/crypt.c:372:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, buf, len ); data/wine-5.0/dlls/ntdll/crypt.c:376:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, buf, t ); data/wine-5.0/dlls/ntdll/crypt.c:388:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->in, buf, 64 ); data/wine-5.0/dlls/ntdll/crypt.c:398:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->in, buf, len ); data/wine-5.0/dlls/ntdll/crypt.c:448:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->digest, ctx->buf, 16 ); data/wine-5.0/dlls/ntdll/crypt.c:468:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/ntdll/crypt.c:469:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/ntdll/crypt.c:613:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, buf, len ); data/wine-5.0/dlls/ntdll/crypt.c:617:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, buf, t ); data/wine-5.0/dlls/ntdll/crypt.c:629:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->in, buf, 64 ); data/wine-5.0/dlls/ntdll/crypt.c:639:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->in, buf, len ); data/wine-5.0/dlls/ntdll/crypt.c:689:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ctx->digest, ctx->buf, 16 ); data/wine-5.0/dlls/ntdll/debugtools.c:63:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->output + info->out_pos, str, len ); data/wine-5.0/dlls/ntdll/debugtools.c:227:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy( info->strings + pos, str, n ); data/wine-5.0/dlls/ntdll/debugtools.c:258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200], *pos = buffer; data/wine-5.0/dlls/ntdll/debugtools.c:270:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "%3u.%03u:", ticks / 1000, ticks % 1000 ); data/wine-5.0/dlls/ntdll/debugtools.c:272:35: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (TRACE_ON(pid)) pos += sprintf( pos, "%04x:", GetCurrentProcessId() ); data/wine-5.0/dlls/ntdll/debugtools.c:273:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "%04x:", GetCurrentThreadId() ); data/wine-5.0/dlls/ntdll/directory.c:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[256]; data/wine-5.0/dlls/ntdll/directory.c:187:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/ntdll/directory.c:404:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/ntdll/directory.c:509:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[4096]; data/wine-5.0/dlls/ntdll/directory.c:519:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/dlls/ntdll/directory.c:539:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). entry.mnt_freq = p ? atoi(p) : 0; data/wine-5.0/dlls/ntdll/directory.c:542:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). entry.mnt_passno = p ? atoi(p) : 0; data/wine-5.0/dlls/ntdll/directory.c:574:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, "/dosdevices/a:" ); data/wine-5.0/dlls/ntdll/directory.c:596:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, cache, sizeof(cache) ); data/wine-5.0/dlls/ntdll/directory.c:757:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( root, O_RDONLY | O_DIRECTORY )) != -1) data/wine-5.0/dlls/ntdll/directory.c:769:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( "/proc/mounts", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:775:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( "/etc/mtab", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:781:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!device && (f = fopen( "/etc/fstab", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:800:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( root, O_RDONLY )) != -1) data/wine-5.0/dlls/ntdll/directory.c:829:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( root, O_RDONLY )) != -1) data/wine-5.0/dlls/ntdll/directory.c:840:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( "/etc/mnttab", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:846:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!device && (f = fopen( "/etc/vfstab", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:890:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ret, "/dev/r"); data/wine-5.0/dlls/ntdll/directory.c:919:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( "/proc/mounts", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:921:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( "/etc/mtab", "r" ))) data/wine-5.0/dlls/ntdll/directory.c:1185:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( dir, O_RDONLY | O_NONBLOCK | O_LARGEFILE )) == -1) data/wine-5.0/dlls/ntdll/directory.c:1233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[80]; data/wine-5.0/dlls/ntdll/directory.c:1307:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hash_chars[32] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ012345"; data/wine-5.0/dlls/ntdll/directory.c:1563:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->both.ShortName, names->short_name, info->both.ShortNameLength ); data/wine-5.0/dlls/ntdll/directory.c:1570:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->id_both.ShortName, names->short_name, info->id_both.ShortNameLength ); data/wine-5.0/dlls/ntdll/directory.c:1588:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)info + dir_size, names->long_name, min( name_len, max_length ) ); data/wine-5.0/dlls/ntdll/directory.c:1704:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[NAME_MAX * 3 + 1]; data/wine-5.0/dlls/ntdll/directory.c:1799:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unix_name[MAX_DIR_ENTRY_LEN * 3 + 1]; data/wine-5.0/dlls/ntdll/directory.c:2000:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cwd = open( ".", O_RDONLY ); data/wine-5.0/dlls/ntdll/directory.c:2090:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( unix_name, O_RDONLY | O_DIRECTORY ); data/wine-5.0/dlls/ntdll/directory.c:2351:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( unix_name, "/dosdevices/" ); data/wine-5.0/dlls/ntdll/directory.c:2379:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( dev, "com1" ); data/wine-5.0/dlls/ntdll/directory.c:2384:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( dev, "lpt1" ); data/wine-5.0/dlls/ntdll/directory.c:2519:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((old_cwd = open( ".", O_RDONLY )) != -1 && fchdir( root_fd ) != -1) data/wine-5.0/dlls/ntdll/directory.c:2524:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( unix_name->Buffer, ".." ); data/wine-5.0/dlls/ntdll/directory.c:2718:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((old_cwd = open( ".", O_RDONLY )) != -1 && fchdir( root_fd ) != -1) data/wine-5.0/dlls/ntdll/directory.c:2825:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( unix_name, "/dosdevices/" ); data/wine-5.0/dlls/ntdll/directory.c:3025:24: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((old_cwd = open(".", O_RDONLY)) != -1 && fchdir( unix_fd ) != -1) data/wine-5.0/dlls/ntdll/env.c:117:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024*sizeof(WCHAR) + sizeof(KEY_VALUE_FULL_INFORMATION)]; data/wine-5.0/dlls/ntdll/env.c:227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024 * sizeof(WCHAR) + sizeof(KEY_VALUE_PARTIAL_INFORMATION)]; data/wine-5.0/dlls/ntdll/env.c:258:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, info->Data, len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/env.c:563:29: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. *envptr++ = strcpy( dst, "WINE" ); data/wine-5.0/dlls/ntdll/env.c:628:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir->Buffer, nt_name.Buffer + 4, dir->Length ); data/wine-5.0/dlls/ntdll/env.c:633:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir->Buffer, nt_name.Buffer, dir->Length ); data/wine-5.0/dlls/ntdll/env.c:645:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir->Buffer, windows_dir, dir->Length ); data/wine-5.0/dlls/ntdll/env.c:890:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *env, NtCurrentTeb()->Peb->ProcessParameters->Environment, size ); data/wine-5.0/dlls/ntdll/env.c:1060:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, name->Buffer, name->Length ); data/wine-5.0/dlls/ntdll/env.c:1063:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, value->Buffer, value->Length ); data/wine-5.0/dlls/ntdll/env.c:1131:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, var, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/env.c:1225:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->Buffer, src->Buffer, dst->Length ); data/wine-5.0/dlls/ntdll/env.c:1303:48: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (Environment) params->Environment = memcpy( ptr, Environment, env_size ); data/wine-5.0/dlls/ntdll/env.c:1534:23: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (env_size) memcpy( params->Environment, (char *)info + info_size, env_size ); data/wine-5.0/dlls/ntdll/file.c:1743:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[1]; data/wine-5.0/dlls/ntdll/file.c:2191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->FileName, ptr, *name_len ); data/wine-5.0/dlls/ntdll/file.c:2966:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(wine_placeholder)-1]; data/wine-5.0/dlls/ntdll/file.c:3240:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->FileSystemName, ntfsW, sizeof(ntfsW)); data/wine-5.0/dlls/ntdll/heap.c:791:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_ptr, ptr, arena->data_size ); data/wine-5.0/dlls/ntdll/heap.c:1855:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, pArena + 1, oldActualSize ); data/wine-5.0/dlls/ntdll/heap.c:1893:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pInUse + 1, pArena + 1, oldActualSize ); data/wine-5.0/dlls/ntdll/large_int.c:451:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len); data/wine-5.0/dlls/ntdll/large_int.c:453:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len + 1); data/wine-5.0/dlls/ntdll/large_int.c:517:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->Buffer, pos, str->Length + sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/loader.c:219:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr->ImageName, ldr->BaseDllName.Buffer, len); data/wine-5.0/dlls/ntdll/loader.c:617:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mod_name + (end - forward), dllW, sizeof(dllW) ); data/wine-5.0/dlls/ntdll/loader.c:660:81: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). proc = find_ordinal_export( wm->ldr.BaseAddress, exports, exp_size, atoi(name+1), load_path ); data/wine-5.0/dlls/ntdll/loader.c:1013:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( new, old, tls_module_count * sizeof(*new) ); data/wine-5.0/dlls/ntdll/loader.c:1033:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_ptr, (void *)dir->StartAddressOfRawData, size ); data/wine-5.0/dlls/ntdll/loader.c:1250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pointers[i], (void *)dir->StartAddressOfRawData, size ); data/wine-5.0/dlls/ntdll/loader.c:1251:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memset( (char *)pointers[i] + size, 0, dir->SizeOfZeroFill ); data/wine-5.0/dlls/ntdll/loader.c:1321:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mod_name, wm->ldr.BaseDllName.Buffer, len ); data/wine-5.0/dlls/ntdll/loader.c:1770:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fullname, path->Buffer, len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/loader.c:2042:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &hdr32, &nt->OptionalHeader, hdr_size ); data/wine-5.0/dlls/ntdll/loader.c:2043:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &hdr64, &hdr32, offsetof( IMAGE_OPTIONAL_HEADER64, SizeOfStackReserve )); data/wine-5.0/dlls/ntdll/loader.c:2123:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/loader.c:2448:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char magic[4]; data/wine-5.0/dlls/ntdll/loader.c:2469:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy( buffer - len, str, len ); data/wine-5.0/dlls/ntdll/loader.c:2503:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( name, ".so" ); data/wine-5.0/dlls/ntdll/loader.c:2504:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( name, O_RDONLY )) != -1) data/wine-5.0/dlls/ntdll/loader.c:2600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[256]; data/wine-5.0/dlls/ntdll/loader.c:2782:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, info->lpAssemblyManifestPath, dirlen * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/loader.c:2799:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, winsxsW, sizeof(winsxsW) ); data/wine-5.0/dlls/ntdll/loader.c:2801:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, info->lpAssemblyDirectoryName, info->ulAssemblyDirectoryNameLength ); data/wine-5.0/dlls/ntdll/loader.c:2839:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, paths, len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/loader.c:3318:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( value, info->Data, sizeof(*value) ); data/wine-5.0/dlls/ntdll/loader.c:3341:30: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data && !status) memcpy( data, info->Data, info->DataLength ); data/wine-5.0/dlls/ntdll/loader.c:3382:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, optionsW, sizeof(optionsW) ); data/wine-5.0/dlls/ntdll/loader.c:3383:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + ARRAY_SIZE( optionsW ), p, len ); data/wine-5.0/dlls/ntdll/loader.c:4020:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr->dir, nt_name.Buffer, len * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/loadorder.c:377:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[80]; data/wine-5.0/dlls/ntdll/locale.c:100:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, p + 1, *p * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/locale.c:322:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, src->dbcs.lead_bytes, 12 ); data/wine-5.0/dlls/ntdll/locale.c:331:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, src->dbcs.cp2uni + 256 * (i + 1), 256 * sizeof(USHORT) ); data/wine-5.0/dlls/ntdll/locale.c:348:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, src->sbcs.cp2uni, 256 * sizeof(USHORT) ); data/wine-5.0/dlls/ntdll/locale.c:353:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, src->sbcs.cp2uni_glyphs, 256 * sizeof(USHORT) ); data/wine-5.0/dlls/ntdll/locale.c:435:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char charset_name[16]; data/wine-5.0/dlls/ntdll/locale.c:569:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[LOCALE_NAME_MAX_LENGTH]; data/wine-5.0/dlls/ntdll/locale.c:589:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[LOCALE_NAME_MAX_LENGTH]; data/wine-5.0/dlls/ntdll/locale.c:1326:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char utf8_length[128] = data/wine-5.0/dlls/ntdll/locale.c:1339:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char utf8_mask[4] = { 0x7f, 0x1f, 0x0f, 0x07 }; data/wine-5.0/dlls/ntdll/locale.c:1602:30: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (*dst_len >= res) memcpy( dst, buf, res * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/misc.c:266:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(X(barr,k), X(arr, i), elemsize); data/wine-5.0/dlls/ntdll/misc.c:269:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(X(barr,k), X(arr, j), elemsize); data/wine-5.0/dlls/ntdll/misc.c:274:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(X(barr,k), X(arr,i), (m-i+1)*elemsize); data/wine-5.0/dlls/ntdll/misc.c:276:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(X(barr,k), X(arr,j), (right-j+1)*elemsize); data/wine-5.0/dlls/ntdll/misc.c:278:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(X(arr, left), X(barr, left), (right-left+1)*elemsize); data/wine-5.0/dlls/ntdll/nt.c:448:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sids, (char *)buffer + non_sid_portion, data/wine-5.0/dlls/ntdll/nt.c:625:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psid, &high_level, sizeof(SID)); data/wine-5.0/dlls/ntdll/nt.c:1048:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512 + 16]; data/wine-5.0/dlls/ntdll/nt.c:1204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[512]; data/wine-5.0/dlls/ntdll/nt.c:1206:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen("/proc/cpuinfo", "r"); data/wine-5.0/dlls/ntdll/nt.c:1226:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). info->Level = atoi(value); data/wine-5.0/dlls/ntdll/nt.c:1232:38: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). info->Revision = atoi(value); data/wine-5.0/dlls/ntdll/nt.c:1248:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8]; data/wine-5.0/dlls/ntdll/nt.c:1272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[512]; data/wine-5.0/dlls/ntdll/nt.c:1274:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen("/proc/cpuinfo", "r"); data/wine-5.0/dlls/ntdll/nt.c:1294:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). info->Level = atoi(value); data/wine-5.0/dlls/ntdll/nt.c:1300:38: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). info->Revision = atoi(value); data/wine-5.0/dlls/ntdll/nt.c:1639:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filename, "r"); data/wine-5.0/dlls/ntdll/nt.c:1670:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filename, "r"); data/wine-5.0/dlls/ntdll/nt.c:1704:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char op, name[MAX_PATH]; data/wine-5.0/dlls/ntdll/nt.c:1721:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fcpu_list = fopen("/sys/devices/system/cpu/online", "r"); data/wine-5.0/dlls/ntdll/nt.c:1746:21: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1784:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1811:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1818:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1825:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1832:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1841:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:1867:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fnuma_list = fopen("/sys/devices/system/node/online", "r"); data/wine-5.0/dlls/ntdll/nt.c:1887:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name, "r"); data/wine-5.0/dlls/ntdll/nt.c:2071:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*buffer, s, len + 1); data/wine-5.0/dlls/ntdll/nt.c:2080:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(file = fopen(path, "r"))) data/wine-5.0/dlls/ntdll/nt.c:2109:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( "/var/lib/dbus/machine-id", O_RDONLY )) != -1) data/wine-5.0/dlls/ntdll/nt.c:2111:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[32], *p = buf; data/wine-5.0/dlls/ntdll/nt.c:2139:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bios_vendor[128], bios_version[128], bios_date[128]; data/wine-5.0/dlls/ntdll/nt.c:2141:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char system_vendor[128], system_product[128], system_version[128], system_serial[128]; data/wine-5.0/dlls/ntdll/nt.c:2143:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char board_vendor[128], board_product[128], board_version[128], board_serial[128]; data/wine-5.0/dlls/ntdll/nt.c:2145:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char chassis_vendor[128], chassis_version[128], chassis_serial[128], chassis_asset_tag[128]; data/wine-5.0/dlls/ntdll/nt.c:2146:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char chassis_type[11] = "2"; /* unknown */ data/wine-5.0/dlls/ntdll/nt.c:2268:29: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). chassis->type = atoi(chassis_type); data/wine-5.0/dlls/ntdll/nt.c:2352:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sfti->TableBuffer + sizeof(*prologue), ptr, len); data/wine-5.0/dlls/ntdll/nt.c:2383:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/uptime", "r"))) data/wine-5.0/dlls/ntdll/nt.c:2399:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen("/proc/meminfo", "r"))) data/wine-5.0/dlls/ntdll/nt.c:2402:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[64]; data/wine-5.0/dlls/ntdll/nt.c:2560:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &sbi, len); data/wine-5.0/dlls/ntdll/nt.c:2569:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy(SystemInformation, &cpu_info, len); data/wine-5.0/dlls/ntdll/nt.c:2584:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &spi, len); data/wine-5.0/dlls/ntdll/nt.c:2606:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &sti, Length); data/wine-5.0/dlls/ntdll/nt.c:2722:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( spi->ProcessName.Buffer, exename, wlen ); data/wine-5.0/dlls/ntdll/nt.c:2773:33: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *cpuinfo = fopen("/proc/stat", "r"); data/wine-5.0/dlls/ntdll/nt.c:2779:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/dlls/ntdll/nt.c:2780:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[255]; data/wine-5.0/dlls/ntdll/nt.c:2794:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cpus = atoi( name + 3 ) + 1; data/wine-5.0/dlls/ntdll/nt.c:2832:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, sppi, len); data/wine-5.0/dlls/ntdll/nt.c:2903:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &sci, len); data/wine-5.0/dlls/ntdll/nt.c:2919:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &sii, len); data/wine-5.0/dlls/ntdll/nt.c:2936:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, &skdi, len); data/wine-5.0/dlls/ntdll/nt.c:2961:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( SystemInformation, &srqi, len); data/wine-5.0/dlls/ntdll/nt.c:2991:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( SystemInformation, buf, len); data/wine-5.0/dlls/ntdll/nt.c:3090:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(SystemInformation, buf, len); data/wine-5.0/dlls/ntdll/nt.c:3224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[512]; data/wine-5.0/dlls/ntdll/nt.c:3227:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE* f = fopen("/proc/cpuinfo", "r"); data/wine-5.0/dlls/ntdll/nt.c:3251:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char s[16]; data/wine-5.0/dlls/ntdll/nt.c:3252:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen(path, "r"); data/wine-5.0/dlls/ntdll/nt.c:3266:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return s ? atoi(s) : def; data/wine-5.0/dlls/ntdll/nt.c:3271:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[64]; data/wine-5.0/dlls/ntdll/nt.c:3280:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "/sys/class/power_supply/BAT%u/status", i); data/wine-5.0/dlls/ntdll/nt.c:3461:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[128]; data/wine-5.0/dlls/ntdll/nt.c:3465:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(filename, "/sys/devices/system/cpu/cpu%d/cpufreq/scaling_cur_freq", i); data/wine-5.0/dlls/ntdll/nt.c:3466:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filename, "r"); data/wine-5.0/dlls/ntdll/nt.c:3482:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(filename, "/sys/devices/system/cpu/cpu%d/cpufreq/cpuinfo_max_freq", i); data/wine-5.0/dlls/ntdll/nt.c:3483:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filename, "r"); data/wine-5.0/dlls/ntdll/nt.c:3493:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(filename, "/sys/devices/system/cpu/cpu%d/cpufreq/scaling_max_freq", i); data/wine-5.0/dlls/ntdll/nt.c:3494:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(filename, "r"); data/wine-5.0/dlls/ntdll/ntdll_misc.h:233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strings[1024]; /* buffer for temporary strings */ data/wine-5.0/dlls/ntdll/ntdll_misc.h:234:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[1024]; /* current output line */ data/wine-5.0/dlls/ntdll/om.c:107:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p->Name.Buffer, nt_name.Buffer, nt_name.MaximumLength ); data/wine-5.0/dlls/ntdll/om.c:312:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pSecurityDescriptor + sizeof(SECURITY_DESCRIPTOR_RELATIVE), data/wine-5.0/dlls/ntdll/path.c:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, path, len ); data/wine-5.0/dlls/ntdll/path.c:367:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ntpath->Buffer, dos_path, ntpath->MaximumLength ); data/wine-5.0/dlls/ntdll/path.c:794:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (reqsize) memcpy(buffer, ins_str, reqsize); data/wine-5.0/dlls/ntdll/path.c:857:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, tmp, reqsize + sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/path.c:896:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[12]; data/wine-5.0/dlls/ntdll/path.c:977:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, us->Buffer, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/path.c:1059:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( curdir->DosPath.Buffer, ptr, size * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/path.c:1102:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( end, path, lenA ); data/wine-5.0/dlls/ntdll/path.c:1128:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( nt->Buffer, unix_prefixW, sizeof(unix_prefixW) ); data/wine-5.0/dlls/ntdll/path.c:1149:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( nt->Buffer, prefixW, sizeof(prefixW) ); data/wine-5.0/dlls/ntdll/printf.c:86:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, len*sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/printf.c:92:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, space*sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/printf.c:140:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, len ); data/wine-5.0/dlls/ntdll/printf.c:146:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, space ); data/wine-5.0/dlls/ntdll/printf.c:311:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(p, "%d", flags->FieldLength); data/wine-5.0/dlls/ntdll/printf.c:316:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(p, ".%d", flags->Precision); data/wine-5.0/dlls/ntdll/printf.c:332:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char number[40], *tmp = number; data/wine-5.0/dlls/ntdll/printf.c:601:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pointer[32]; data/wine-5.0/dlls/ntdll/printf.c:606:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pointer, "0X%0*lX", 2 * (int)sizeof(ptr), (ULONG_PTR)ptr); data/wine-5.0/dlls/ntdll/printf.c:608:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pointer, "%0*lX", 2 * (int)sizeof(ptr), (ULONG_PTR)ptr); data/wine-5.0/dlls/ntdll/printf.c:622:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char number[40], *x = number; data/wine-5.0/dlls/ntdll/printf.c:646:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[20], number[40], *x = number; data/wine-5.0/dlls/ntdll/process.c:165:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[256]; data/wine-5.0/dlls/ntdll/process.c:168:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen("/proc/self/status", "r"); data/wine-5.0/dlls/ntdll/process.c:271:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ProcessInformation, &pbi, sizeof(PROCESS_BASIC_INFORMATION)); data/wine-5.0/dlls/ntdll/process.c:301:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ProcessInformation, &pii, sizeof(IO_COUNTERS)); data/wine-5.0/dlls/ntdll/process.c:352:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ProcessInformation, &pvmi, min(ProcessInformationLength,sizeof(VM_COUNTERS))); data/wine-5.0/dlls/ntdll/process.c:392:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ProcessInformation, &pti, sizeof(KERNEL_USER_TIMES)); data/wine-5.0/dlls/ntdll/process.c:457:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ProcessInformation, &process_error_mode, len); data/wine-5.0/dlls/ntdll/process.c:859:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( d, cmdline, len ); data/wine-5.0/dlls/ntdll/process.c:942:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *ptr, buffer, str->Length ); data/wine-5.0/dlls/ntdll/process.c:1020:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( env, "WINELOADER=" ); data/wine-5.0/dlls/ntdll/process.c:1022:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( env, "64" ); data/wine-5.0/dlls/ntdll/process.c:1027:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( env, "WINELOADER=" ); data/wine-5.0/dlls/ntdll/process.c:1102:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( "/dev/null", O_RDWR ); data/wine-5.0/dlls/ntdll/process.c:1138:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char preloader_reserve[64], socket_env[64]; data/wine-5.0/dlls/ntdll/process.c:1157:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( socket_env, "WINESERVERSOCKET=%u", socketfd ); data/wine-5.0/dlls/ntdll/process.c:1158:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( preloader_reserve, "WINEPRELOADRESERVE=%x%08x-%x%08x", data/wine-5.0/dlls/ntdll/process.c:1200:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char preloader_reserve[64], socket_env[64]; data/wine-5.0/dlls/ntdll/process.c:1212:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( socket_env, "WINESERVERSOCKET=%u", socketfd ); data/wine-5.0/dlls/ntdll/process.c:1213:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( preloader_reserve, "WINEPRELOADRESERVE=%x%08x-%x%08x", data/wine-5.0/dlls/ntdll/process.c:1271:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char magic[4]; data/wine-5.0/dlls/ntdll/process.c:1275:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored1[9]; data/wine-5.0/dlls/ntdll/process.c:1278:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored2[8]; data/wine-5.0/dlls/ntdll/process.c:1280:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored3[12]; data/wine-5.0/dlls/ntdll/process.c:1285:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char magic[4]; data/wine-5.0/dlls/ntdll/process.c:1288:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored1[10]; data/wine-5.0/dlls/ntdll/process.c:1291:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored2[12]; data/wine-5.0/dlls/ntdll/process.c:1293:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ignored3[16]; data/wine-5.0/dlls/ntdll/reg.c:288:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, min( length, fixed_size ) ); data/wine-5.0/dlls/ntdll/reg.c:305:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, min( length, fixed_size ) ); data/wine-5.0/dlls/ntdll/reg.c:325:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, min( length, fixed_size ) ); data/wine-5.0/dlls/ntdll/reg.c:333:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, min( length, fixed_size ) ); data/wine-5.0/dlls/ntdll/reg.c:348:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, min( length, fixed_size ) ); data/wine-5.0/dlls/ntdll/reg.c:418:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->Buffer, info->Name, info->NameLength); data/wine-5.0/dlls/ntdll/reg.c:450:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, length ); data/wine-5.0/dlls/ntdll/reg.c:462:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, length ); data/wine-5.0/dlls/ntdll/reg.c:472:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &keyinfo, length ); data/wine-5.0/dlls/ntdll/reg.c:554:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basic_info->Name, name->Buffer, min(length - min_size, name->Length)); data/wine-5.0/dlls/ntdll/reg.c:564:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_info->Name, name->Buffer, min(length - min_size, name->Length)); data/wine-5.0/dlls/ntdll/reg.c:624:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, info->Data, info->DataLength ); data/wine-5.0/dlls/ntdll/reg.c:922:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TOKEN_USER) + sizeof(SID) + sizeof(DWORD)*SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/dlls/ntdll/reg.c:937:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, pathW, sizeof(pathW)); data/wine-5.0/dlls/ntdll/reg.c:1045:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->Buffer, ((CHAR*)pInfo) + pInfo->DataOffset, len); data/wine-5.0/dlls/ntdll/reg.c:1052:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bin, ((CHAR*)pInfo) + pInfo->DataOffset, data/wine-5.0/dlls/ntdll/reg.c:1058:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bin[1], ((CHAR*)pInfo) + pInfo->DataOffset, data/wine-5.0/dlls/ntdll/reg.c:1066:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bin[3], ((CHAR*)pInfo) + pInfo->DataOffset, len); data/wine-5.0/dlls/ntdll/reg.c:1588:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, info->Data, info->DataLength ); data/wine-5.0/dlls/ntdll/relay.c:74:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[40]; /* dll name (without .dll extension) */ data/wine-5.0/dlls/ntdll/relay.c:148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char initial_buffer[4096]; data/wine-5.0/dlls/ntdll/relay.c:230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ord_str[10]; data/wine-5.0/dlls/ntdll/relay.c:232:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( ord_str, "%d", ordinal ); data/wine-5.0/dlls/ntdll/relay.c:924:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data->dllname, (char *)module + exports->Name, len ); data/wine-5.0/dlls/ntdll/relay.c:1000:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/ntdll/relay.c:1213:34: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. SNOOP_FUN *fun = (SNOOP_FUN *)((char *)stack[0] - 5); data/wine-5.0/dlls/ntdll/relay.c:1289:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->args, stack + 2, sizeof(DWORD)*16); data/wine-5.0/dlls/ntdll/relay.c:1296:49: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. SNOOP_RETURNENTRY *ret = (SNOOP_RETURNENTRY*)((char *)stack[0] - 5); data/wine-5.0/dlls/ntdll/rtl.c:305:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/ntdll/rtl.c:345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/ntdll/rtl.c:535:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, len); data/wine-5.0/dlls/ntdll/rtl.c:1147:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. needed = sprintf(tmp_ip, "%u.%u.%u.%u", data/wine-5.0/dlls/ntdll/rtl.c:1151:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (port) needed += sprintf(tmp_ip + needed, ":%u", ntohs(port)); data/wine-5.0/dlls/ntdll/rtl.c:1479:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_cur, src_cur, block_size); data/wine-5.0/dlls/ntdll/rtl.c:1623:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_cur, workspace + offset, block_size); data/wine-5.0/dlls/ntdll/rtl.c:1633:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_cur, src_cur + offset, block_size); data/wine-5.0/dlls/ntdll/rtl.c:1678:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_cur, src_cur, block_size); data/wine-5.0/dlls/ntdll/rtlbitmap.c:54:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const signed char NTDLL_mostSignificant[16] = { data/wine-5.0/dlls/ntdll/rtlstr.c:154:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->Buffer, src->Buffer, len ); data/wine-5.0/dlls/ntdll/rtlstr.c:240:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target->Buffer, src, len ); data/wine-5.0/dlls/ntdll/rtlstr.c:296:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->Buffer, src->Buffer, len ); data/wine-5.0/dlls/ntdll/rtlstr.c:348:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(destination->Buffer, source->Buffer, source->Length); data/wine-5.0/dlls/ntdll/rtlstr.c:955:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->Buffer + dest->Length, src, src_len); data/wine-5.0/dlls/ntdll/rtlstr.c:984:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->Buffer + dest->Length, src->Buffer, src->Length); data/wine-5.0/dlls/ntdll/rtlstr.c:1020:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->Buffer + dest->Length/sizeof(WCHAR), src, src_len); data/wine-5.0/dlls/ntdll/rtlstr.c:1058:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->Buffer + dest->Length/sizeof(WCHAR), src->Buffer, src->Length); data/wine-5.0/dlls/ntdll/rtlstr.c:1190:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (((const char *)buf)[len - 1] == 0) data/wine-5.0/dlls/ntdll/rtlstr.c:1410:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len); data/wine-5.0/dlls/ntdll/rtlstr.c:1412:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, len + 1); data/wine-5.0/dlls/ntdll/rtlstr.c:1574:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->Buffer, pos, str->Length + sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/sec.c:873:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pRel, pAbs, length); data/wine-5.0/dlls/ntdll/sec.c:886:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)pRel + offsetRel, pAbs->Owner, length); data/wine-5.0/dlls/ntdll/sec.c:898:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)pRel + offsetRel, pAbs->Group, length); data/wine-5.0/dlls/ntdll/sec.c:910:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)pRel + offsetRel, pAbs->Sacl, length); data/wine-5.0/dlls/ntdll/sec.c:922:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)pRel + offsetRel, pAbs->Dacl, length); data/wine-5.0/dlls/ntdll/sec.c:1012:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pSacl, pAcl, pAcl->AclSize); data/wine-5.0/dlls/ntdll/sec.c:1019:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDacl, pAcl, pAcl->AclSize); data/wine-5.0/dlls/ntdll/sec.c:1026:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOwner, psid, RtlLengthSid(psid)); data/wine-5.0/dlls/ntdll/sec.c:1033:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPrimaryGroup, psid, RtlLengthSid(psid)); data/wine-5.0/dlls/ntdll/sec.c:1190:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(targetace,acestart,acelen); data/wine-5.0/dlls/ntdll/sec.c:1850:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( String->Buffer, buffer, len ); data/wine-5.0/dlls/ntdll/serial.c:125:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. default: { static char tmp[32]; sprintf(tmp, "IOCTL_SERIAL_%d\n", ioc); return tmp; } data/wine-5.0/dlls/ntdll/serial.c:125:37: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default: { static char tmp[32]; sprintf(tmp, "IOCTL_SERIAL_%d\n", ioc); return tmp; } data/wine-5.0/dlls/ntdll/server.c:721:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmsg_buffer[256]; data/wine-5.0/dlls/ntdll/server.c:771:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmsg_buffer[256]; data/wine-5.0/dlls/ntdll/server.c:1104:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *argv[3]; data/wine-5.0/dlls/ntdll/server.c:1138:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd_cwd = open( ".", O_RDONLY ); data/wine-5.0/dlls/ntdll/server.c:1150:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( tmp_dir, config_dir, p - config_dir ); data/wine-5.0/dlls/ntdll/server.c:1177:32: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (fd_cwd == -1) fd_cwd = open( "dosdevices/c:", O_RDONLY ); data/wine-5.0/dlls/ntdll/server.c:1194:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( LOCKNAME, O_WRONLY )) == -1) data/wine-5.0/dlls/ntdll/server.c:1386:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fd_socket = atoi( env_socket ); data/wine-5.0/dlls/ntdll/signal_arm64.c:508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( unw_context.uc_mcontext.regs, context->u.X, sizeof(context->u.X) ); data/wine-5.0/dlls/ntdll/signal_i386.c:906:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(XMM_SAVE_AREA32) + 16]; data/wine-5.0/dlls/ntdll/signal_i386.c:912:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( context->ExtendedRegisters, state, sizeof(*state) ); data/wine-5.0/dlls/ntdll/signal_i386.c:942:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(XMM_SAVE_AREA32) + 16]; data/wine-5.0/dlls/ntdll/signal_i386.c:945:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( state, context->ExtendedRegisters, sizeof(*state) ); data/wine-5.0/dlls/ntdll/signal_i386.c:974:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &fpu->RegisterArea[10 * i], &fpux->FloatRegisters[i], 10 ); data/wine-5.0/dlls/ntdll/signal_i386.c:1042:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( context->ExtendedRegisters, fpux, sizeof(*fpux) ); data/wine-5.0/dlls/ntdll/signal_i386.c:1091:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (fpux) memcpy( fpux, context->ExtendedRegisters, sizeof(*fpux) ); data/wine-5.0/dlls/ntdll/signal_x86_64.c:401:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const reg_names[16] = data/wine-5.0/dlls/ntdll/signal_x86_64.c:754:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char augmentation[1]; data/wine-5.0/dlls/ntdll/signal_x86_64.c:906:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *dwarf_reg_names[NB_FRAME_REGS] = data/wine-5.0/dlls/ntdll/signal_x86_64.c:1187:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 17: memcpy( &context->u.s.Xmm0, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1188:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 18: memcpy( &context->u.s.Xmm1, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1189:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 19: memcpy( &context->u.s.Xmm2, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1190:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 20: memcpy( &context->u.s.Xmm3, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1191:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 21: memcpy( &context->u.s.Xmm4, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1192:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 22: memcpy( &context->u.s.Xmm5, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1193:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 23: memcpy( &context->u.s.Xmm6, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1194:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 24: memcpy( &context->u.s.Xmm7, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1195:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 25: memcpy( &context->u.s.Xmm8, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1196:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 26: memcpy( &context->u.s.Xmm9, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1197:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 27: memcpy( &context->u.s.Xmm10, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1198:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 28: memcpy( &context->u.s.Xmm11, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1199:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 29: memcpy( &context->u.s.Xmm12, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1200:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 30: memcpy( &context->u.s.Xmm13, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1201:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 31: memcpy( &context->u.s.Xmm14, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1202:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 32: memcpy( &context->u.s.Xmm15, val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1203:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 33: memcpy( &context->u.s.Legacy[0], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1204:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 34: memcpy( &context->u.s.Legacy[1], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1205:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 35: memcpy( &context->u.s.Legacy[2], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1206:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 36: memcpy( &context->u.s.Legacy[3], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1207:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 37: memcpy( &context->u.s.Legacy[4], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1208:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 38: memcpy( &context->u.s.Legacy[5], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1209:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 39: memcpy( &context->u.s.Legacy[6], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1210:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case 40: memcpy( &context->u.s.Legacy[7], val, sizeof(M128A) ); break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1285:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. case 1: stack[sp] = *(unsigned char *)stack[sp]; break; data/wine-5.0/dlls/ntdll/signal_x86_64.c:2091:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &to->u.FltSave, from->fp.x86_64_regs.fpregs, sizeof(from->fp.x86_64_regs.fpregs) ); data/wine-5.0/dlls/ntdll/string.c:339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2], *p = str; data/wine-5.0/dlls/ntdll/string.c:543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33]; data/wine-5.0/dlls/ntdll/string.c:560:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, &buffer[32] - pos + 1); data/wine-5.0/dlls/ntdll/string.c:587:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[33]; data/wine-5.0/dlls/ntdll/string.c:616:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, &buffer[32] - pos + 1); data/wine-5.0/dlls/ntdll/string.c:664:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[65]; data/wine-5.0/dlls/ntdll/string.c:681:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, &buffer[64] - pos + 1); data/wine-5.0/dlls/ntdll/string.c:717:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[65]; data/wine-5.0/dlls/ntdll/string.c:746:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, &buffer[64] - pos + 1); data/wine-5.0/dlls/ntdll/string.c:1311:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir, inpath, end - inpath ); data/wine-5.0/dlls/ntdll/string.c:1326:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fname, inpath, end - inpath ); data/wine-5.0/dlls/ntdll/sync.c:197:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, owner, descr->owner_len ); data/wine-5.0/dlls/ntdll/sync.c:199:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, group, descr->group_len ); data/wine-5.0/dlls/ntdll/sync.c:201:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, sacl, descr->sacl_len ); data/wine-5.0/dlls/ntdll/sync.c:203:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, dacl, descr->dacl_len ); data/wine-5.0/dlls/ntdll/sync.c:212:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, attr->ObjectName->Buffer, (*ret)->name_len ); data/wine-5.0/dlls/ntdll/tape.c:83:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. default: { static char tmp[32]; sprintf(tmp, "IOCTL_TAPE_%d\n", io); return tmp; } data/wine-5.0/dlls/ntdll/tape.c:83:37: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default: { static char tmp[32]; sprintf(tmp, "IOCTL_TAPE_%d\n", io); return tmp; } data/wine-5.0/dlls/ntdll/tests/change.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/dlls/ntdll/tests/change.c:169:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/dlls/ntdll/tests/directory.c:292:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, info->FileName, info->FileNameLength ); data/wine-5.0/dlls/ntdll/tests/directory.c:453:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char testdirA[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/directory.c:469:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(testdirA, "NtQueryDirectoryFile.tmp"); data/wine-5.0/dlls/ntdll/tests/directory.c:535:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(short_name, fbdi->ShortName, mask.Length); data/wine-5.0/dlls/ntdll/tests/directory.c:740:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/directory.c:756:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/directory.c:773:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char testdir[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/directory.c:787:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(testdir, "case.tmp"); data/wine-5.0/dlls/ntdll/tests/env.c:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[16]; data/wine-5.0/dlls/ntdll/tests/env.c:199:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "zork%03d", i); data/wine-5.0/dlls/ntdll/tests/env.c:205:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "zork%03d", i); data/wine-5.0/dlls/ntdll/tests/exception.c:351:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, code, code_size); data/wine-5.0/dlls/ntdll/tests/exception.c:478:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, call_one_arg_code, sizeof(call_one_arg_code)); data/wine-5.0/dlls/ntdll/tests/exception.c:559:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, call_unwind_code, sizeof(call_unwind_code)); data/wine-5.0/dlls/ntdll/tests/exception.c:974:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/exception.c:1134:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/ntdll/tests/exception.c:1577:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( func_ptr, call_func, sizeof(call_func) ); data/wine-5.0/dlls/ntdll/tests/exception.c:1707:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const reg_names[16] = data/wine-5.0/dlls/ntdll/tests/exception.c:1728:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)code_mem + code_offset, test->function, test->function_size ); data/wine-5.0/dlls/ntdll/tests/exception.c:1729:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)code_mem + unwind_offset, test->unwind_info, unwind_size ); data/wine-5.0/dlls/ntdll/tests/exception.c:2078:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2 * sizeof(RUNTIME_FUNCTION) + 4]; data/wine-5.0/dlls/ntdll/tests/exception.c:2436:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8 + 6 + 8 + 8]; data/wine-5.0/dlls/ntdll/tests/exception.c:2461:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((unsigned char *)code_mem + 0x1000, buf, sizeof(buf)); data/wine-5.0/dlls/ntdll/tests/exception.c:2462:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, code, code_size); data/wine-5.0/dlls/ntdll/tests/exception.c:2603:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, ret, sizeof(ret)); data/wine-5.0/dlls/ntdll/tests/exception.c:2946:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, call_debug_service_code, sizeof(call_debug_service_code)); data/wine-5.0/dlls/ntdll/tests/exception.c:3065:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(code_mem, breakpoint_code, sizeof(breakpoint_code)); data/wine-5.0/dlls/ntdll/tests/exception.c:3326:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/file.c:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buffer[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/file.c:154:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/ntdll/tests/file.c:338:27: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). WCHAR path[MAX_PATH], tmpfile[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/file.c:415:38: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). GetTempFileNameW( path, fooW, 0, tmpfile ); data/wine-5.0/dlls/ntdll/tests/file.c:416:25: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). file = CreateFileW( tmpfile, FILE_WRITE_DATA, 0, NULL, CREATE_ALWAYS, 0, 0 ); data/wine-5.0/dlls/ntdll/tests/file.c:480:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). pRtlDosPathNameToNtPathName_U( tmpfile, &nameW, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:514:55: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ok( !status, "open %s failed %x\n", wine_dbgstr_w(tmpfile), status ); data/wine-5.0/dlls/ntdll/tests/file.c:535:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileW( tmpfile ); data/wine-5.0/dlls/ntdll/tests/file.c:605:63: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. DECLSPEC_ALIGN(TEST_OVERLAPPED_READ_SIZE) static unsigned char aligned_buffer[TEST_OVERLAPPED_READ_SIZE]; data/wine-5.0/dlls/ntdll/tests/file.c:611:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/file.c:762:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char text[6] = "foobar"; data/wine-5.0/dlls/ntdll/tests/file.c:767:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buffer[MAX_PATH], buf[16]; data/wine-5.0/dlls/ntdll/tests/file.c:1508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1546:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1576:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1609:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1643:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1678:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1725:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1765:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1801:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1835:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1871:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1908:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1944:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:1983:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2017:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2050:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2085:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fri->FileName, filename, fri->FileNameLength ); data/wine-5.0/dlls/ntdll/tests/file.c:2140:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2178:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2208:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2241:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2275:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2310:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2357:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2391:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2428:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2463:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2536:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2612:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2646:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, name_str.Buffer, name_str.Length ); data/wine-5.0/dlls/ntdll/tests/file.c:2714:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( fli->FileName, filename, fli->FileNameLength ); data/wine-5.0/dlls/ntdll/tests/file.c:2764:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, MAX_PATH ); data/wine-5.0/dlls/ntdll/tests/file.c:2789:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp_path[MAX_PATH], buffer[MAX_PATH + 16]; data/wine-5.0/dlls/ntdll/tests/file.c:3180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( expected, file_name + len, (file_name_size - len - 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/tests/file.c:3256:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( expected, file_name + len, (file_name_size - len - 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/tests/file.c:3309:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( expected, file_name + len, (file_name_size - len - 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/tests/file.c:3391:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( expected, file_name + len, (file_name_size - len - 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/ntdll/tests/file.c:3431:63: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. DECLSPEC_ALIGN(TEST_OVERLAPPED_READ_SIZE) static unsigned char aligned_buf[TEST_OVERLAPPED_READ_SIZE]; data/wine-5.0/dlls/ntdll/tests/file.c:4004:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char contents[14] = "1234567890abcd"; data/wine-5.0/dlls/ntdll/tests/file.c:4005:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ntdll/tests/file.c:4792:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buffer[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/info.c:1496:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/info.c:1701:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/info.c:1803:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/info.c:1952:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[12]; data/wine-5.0/dlls/ntdll/tests/info.c:2090:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char datatestbuf[42] = "abc"; data/wine-5.0/dlls/ntdll/tests/info.c:2091:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char rwtestbuf[42]; data/wine-5.0/dlls/ntdll/tests/info.c:2093:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stackbuf[42]; data/wine-5.0/dlls/ntdll/tests/large_int.c:370:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/om.c:241:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[40]; data/wine-5.0/dlls/ntdll/tests/om.c:247:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( name, "\\BaseNamedObjects\\Session\\%u", NtCurrentTeb()->Peb->SessionId ); data/wine-5.0/dlls/ntdll/tests/om.c:659:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str.Buffer, pipeW, sizeof(pipeW) ); data/wine-5.0/dlls/ntdll/tests/om.c:712:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str.Buffer, mailslotW, sizeof(mailslotW) ); data/wine-5.0/dlls/ntdll/tests/om.c:753:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str.Buffer, registryW, sizeof(registryW) ); data/wine-5.0/dlls/ntdll/tests/om.c:1284:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ntdll/tests/om.c:1304:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ntdll/tests/om.c:1324:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ntdll/tests/om.c:1348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ntdll/tests/om.c:1353:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH], tmp_path[MAX_PATH], file1[MAX_PATH + 16]; data/wine-5.0/dlls/ntdll/tests/om.c:1357:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tmp_path, "\\Sessions\\%u", NtCurrentTeb()->Peb->SessionId ); data/wine-5.0/dlls/ntdll/tests/om.c:1878:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/ntdll/tests/path.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff2[12]; data/wine-5.0/dlls/ntdll/tests/path.c:229:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[100]; data/wine-5.0/dlls/ntdll/tests/path.c:244:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[13]; data/wine-5.0/dlls/ntdll/tests/path.c:339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rbufferA[MAX_PATH], rfileA[MAX_PATH], curdir[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/path.c:400:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/path.c:514:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tests[i].dos, -1, path, ARRAY_SIZE(path)); data/wine-5.0/dlls/ntdll/tests/path.c:537:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tests[i].nt, -1, path, ARRAY_SIZE(path)); data/wine-5.0/dlls/ntdll/tests/pipe.c:849:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1182:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1243:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buf[16]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1469:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buf[32]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1515:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buf[16]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1654:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1685:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1697:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/dlls/ntdll/tests/pipe.c:1865:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256] = "test"; data/wine-5.0/dlls/ntdll/tests/pipe.c:2283:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sec_desc[SECURITY_DESCRIPTOR_MIN_LENGTH]; data/wine-5.0/dlls/ntdll/tests/reg.c:1051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ntdll/tests/reg.c:1067:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target, winetestpath.Buffer, winetestpath.Length ); data/wine-5.0/dlls/ntdll/tests/reg.c:1068:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target + winetestpath.Length/sizeof(WCHAR), targetW, sizeof(targetW) ); data/wine-5.0/dlls/ntdll/tests/reg.c:1320:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( target + target_len/sizeof(WCHAR) - 1, targetW, sizeof(targetW) ); data/wine-5.0/dlls/ntdll/tests/reg.c:1353:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[32]; data/wine-5.0/dlls/ntdll/tests/reg.c:1434:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ntdll/tests/rtl.c:3301:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(SECURITY_DESCRIPTOR_RELATIVE) + 4]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:98:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, p, -1, NULL, 0 ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:100:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, p, -1, buffer, len ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ascii_buf[257]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:545:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result_buf[257]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:546:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char upper_buf[257]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:796:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ansi_buf, ustr2astr[test_num].ansi_buf, ustr2astr[test_num].ansi_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:868:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_buf, app_asc2str[test_num].dest_buf, app_asc2str[test_num].dest_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:939:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_buf, app_str2str[test_num].dest_buf, app_str2str[test_num].dest_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:948:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_buf, app_str2str[test_num].src_buf, app_str2str[test_num].src_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1019:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_buf, app_uni2str[test_num].dest_buf, app_uni2str[test_num].dest_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1038:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. test_num, (char *) dest_buf, app_uni2str[test_num].res_buf); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1094:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest_buf, app_ustr2str[test_num].dest_buf, app_ustr2str[test_num].dest_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1103:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_buf, app_ustr2str[test_num].src_buf, app_ustr2str[test_num].src_buf_size); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1122:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. test_num, (char *) dest_buf, app_ustr2str[test_num].res_buf); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2049:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2083:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2536:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar( CP_UTF8, 0, utf8_to_unicode[i].utf8, strlen(utf8_to_unicode[i].utf8), data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2564:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar( CP_UTF8, 0, utf8_to_unicode[i].utf8, -1, buffer, ARRAY_SIZE(buffer) ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2574:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar( CP_UTF8, MB_ERR_INVALID_CHARS, data/wine-5.0/dlls/ntdll/tests/string.c:233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/string.c:252:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/string.c:271:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/string.c:609:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/string.c:638:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest_str[LARGE_STRI_BUFFER_LENGTH + 1]; data/wine-5.0/dlls/ntdll/tests/string.c:1219:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char carr[5] = { 42, 23, 4, 8, 16 }; data/wine-5.0/dlls/ntdll/tests/string.c:1220:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *strarr[7] = { data/wine-5.0/dlls/ntdll/tests/string.c:1229:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *strarr2[7] = { data/wine-5.0/dlls/ntdll/tests/string.c:1317:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/ntdll/tests/string.c:1356:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/ntdll/tests/string.c:1415:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2], *p; data/wine-5.0/dlls/ntdll/tests/virtual.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ntdll/tests/virtual.c:282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(data)]; data/wine-5.0/dlls/ntdll/thread.c:246:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( user_shared_data->NtSystemRoot, default_windirW, sizeof(default_windirW) ); data/wine-5.0/dlls/ntdll/thread.c:907:27: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &info, min( length, sizeof(info) )); data/wine-5.0/dlls/ntdll/thread.c:927:27: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &affinity, min( length, sizeof(affinity) )); data/wine-5.0/dlls/ntdll/thread.c:974:27: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &kusrt, min( length, sizeof(kusrt) )); data/wine-5.0/dlls/ntdll/thread.c:1063:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &last, min( length, sizeof(last) )); data/wine-5.0/dlls/ntdll/thread.c:1080:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &entry, min( length, sizeof(entry) ) ); data/wine-5.0/dlls/ntdll/thread.c:1105:27: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( data, &affinity, min( length, sizeof(affinity) )); data/wine-5.0/dlls/ntdll/time.c:59:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char short_name[SHORT_TZ_NAME_MAX]; data/wine-5.0/dlls/ntdll/time.c:698:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ntdll/time.c:712:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, info->Data, info->DataLength); data/wine-5.0/dlls/ntdll/time.c:804:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(reg_tzi.TimeZoneKeyName, nameW.Buffer, nameW.Length); data/wine-5.0/dlls/ntdll/time.c:894:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tz_name[SHORT_TZ_NAME_MAX]; data/wine-5.0/dlls/ntdll/time.c:1025:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, &tzinfo, sizeof(*ret) ); data/wine-5.0/dlls/ntdll/version.c:262:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[64]; data/wine-5.0/dlls/ntdll/version.c:314:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( version->szCSDVersion, info->Data, len ); data/wine-5.0/dlls/ntdll/version.c:379:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[64]; data/wine-5.0/dlls/ntdll/version.c:428:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( version->szCSDVersion, info->Data, len ); data/wine-5.0/dlls/ntdll/virtual.c:303:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[6]; data/wine-5.0/dlls/ntdll/virtual.c:1582:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sections, header_start, sizeof(*sections) * nt->FileHeader.NumberOfSections); data/wine-5.0/dlls/ntdll/virtual.c:2520:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, addr, block_size ); data/wine-5.0/dlls/ntdll/virtual.c:2552:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( addr, buffer, size ); data/wine-5.0/dlls/ntdll/wcstring.c:417:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, (&buffer[32] - pos + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/wcstring.c:475:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, (&buffer[32] - pos + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/wcstring.c:551:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, (&buffer[64] - pos + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/wcstring.c:618:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, pos, (&buffer[64] - pos + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ntdll/wcstring.c:681:13: [2] (integer) _wtoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int __cdecl _wtoi( LPCWSTR str ) data/wine-5.0/dlls/ntdll/wcstring.c:703:19: [2] (integer) _wtoi64: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). LONGLONG __cdecl _wtoi64( LPCWSTR str ) data/wine-5.0/dlls/ntdsapi/ntdsapi.c:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, svc_class, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdsapi/ntdsapi.c:119:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, inst_name, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdsapi/ntdsapi.c:126:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, svc_name, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdsapi/ntdsapi.c:145:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, svc_name, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntdsapi/ntdsapi.c:226:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, class, lstrlenW(class) * sizeof(WCHAR)); data/wine-5.0/dlls/ntdsapi/ntdsapi.c:229:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, name, lstrlenW(name) * sizeof(WCHAR)); data/wine-5.0/dlls/ntoskrnl.exe/instr.c:272:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *reg_names[8] = { "eax", "ecx", "edx", "ebx", "esp", "ebp", "esi", "edi" }; data/wine-5.0/dlls/ntoskrnl.exe/instr.c:508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( reg, addr, get_op_size( long_op, rex ) ); data/wine-5.0/dlls/ntoskrnl.exe/instr.c:612:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *reg_names[16] = { "rax", "rcx", "rdx", "rbx", "rsp", "rbp", "rsi", "rdi", data/wine-5.0/dlls/ntoskrnl.exe/instr.c:805:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &temp, wine_user_shared_data + offset, data_size ); data/wine-5.0/dlls/ntoskrnl.exe/instr.c:848:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &context->Rax, wine_user_shared_data + offset, data_size ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:286:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:714:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out_buff, (char *)context->in_buff + context->in_size, out_size ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:719:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( out_buff, context->in_buff, context->in_size ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:2854:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( version->Buffer, info.szCSDVersion, len ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3297:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, service_name->Buffer, service_name->Length ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:511:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, id, *needed ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:534:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, name->Name.Buffer, name->Name.MaximumLength); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:927:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( id, root_device->id, (p - root_device->id) * sizeof(WCHAR) ); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:69:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[512]; data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:232:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20] = "test buffer"; data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1106:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_path, test_path, len * sizeof(WCHAR)); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1107:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_path + len, tmpW, sizeof(tmpW)); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1589:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1705:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(func, bytes, sizeof(bytes)); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1784:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, teststr, length); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1836:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "ghi", 3); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1877:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, teststr, sizeof(teststr)); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:44:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char path[MAX_PATH]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:154:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:168:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(test_input->path, pathU.Buffer, len); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:193:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inbuf[64], buf[32]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:415:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[7]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:419:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:429:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:439:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:449:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:459:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:469:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "abcdef"); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:482:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:503:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH], filename2[MAX_PATH]; data/wine-5.0/dlls/ntprint/ntprint.c:146:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, nameW, len * sizeof(WCHAR)); data/wine-5.0/dlls/odbc32/proxyodbc.c:515:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[256]; data/wine-5.0/dlls/odbc32/proxyodbc.c:549:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[256]; data/wine-5.0/dlls/odbccp32/odbccp32.c:98:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/odbccp32/odbccp32.c:101:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/odbccp32/odbccp32.c:127:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, p - str, NULL, 0 ); data/wine-5.0/dlls/odbccp32/odbccp32.c:129:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, p - str, ret, len ); data/wine-5.0/dlls/odbccp32/odbccp32.c:143:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/odbccp32/odbccp32.c:145:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/odbccp32/odbccp32.c:198:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (buffer, pbuf, buffer_length-mode); data/wine-5.0/dlls/odbccp32/odbccp32.c:803:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH] = {0}; data/wine-5.0/dlls/odbccp32/odbccp32.c:1182:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (lpszErrorMsg, msg, len * sizeof(WCHAR)); data/wine-5.0/dlls/odbccp32/tests/misc.c:213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256] = {0}; data/wine-5.0/dlls/odbccp32/tests/misc.c:216:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "wine"); data/wine-5.0/dlls/odbccp32/tests/misc.c:221:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "wine"); data/wine-5.0/dlls/odbccp32/tests/misc.c:226:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "value"); data/wine-5.0/dlls/odbccp32/tests/misc.c:246:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "value"); data/wine-5.0/dlls/odbccp32/tests/misc.c:267:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "wine"); data/wine-5.0/dlls/odbccp32/tests/misc.c:275:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "wine"); data/wine-5.0/dlls/odbccp32/tests/misc.c:283:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "XXXXXXXXXXXXXXX"); data/wine-5.0/dlls/odbccp32/tests/misc.c:293:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "wine"); data/wine-5.0/dlls/odbccp32/tests/misc.c:429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char syspath[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1000]; data/wine-5.0/dlls/odbccp32/tests/misc.c:493:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driverpath[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:496:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(driverpath, "\\sample.dll"); data/wine-5.0/dlls/odbccp32/tests/misc.c:547:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:548:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char syspath[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:584:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driverpath[MAX_PATH]; data/wine-5.0/dlls/odbccp32/tests/misc.c:587:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(driverpath, "\\sample.dll"); data/wine-5.0/dlls/odbccp32/tests/misc.c:622:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1000], *p; data/wine-5.0/dlls/odbccp32/tests/misc.c:693:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[10]; data/wine-5.0/dlls/odbccp32/tests/misc.c:697:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(str, "wine10"); data/wine-5.0/dlls/ole2.dll16/memlockbytes.c:302:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data/wine-5.0/dlls/ole2.dll16/memlockbytes.c:416:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) supportBuffer + ulOffset.u.LowPart, pv, cb); data/wine-5.0/dlls/ole2.dll16/ole2.c:147:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpszLabel, -1, NULL, 0 ); data/wine-5.0/dlls/ole2.dll16/ole2.c:149:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpszLabel, -1, label, len ); data/wine-5.0/dlls/ole2.dll16/ole2.c:153:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpszSourceFile, -1, NULL, 0 ); data/wine-5.0/dlls/ole2.dll16/ole2.c:155:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpszSourceFile, -1, source, len ); data/wine-5.0/dlls/ole2.dll16/ole2.c:327:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&statstg, MapSL(args[1]), sizeof(STATSTG16)); data/wine-5.0/dlls/ole2.dll16/ole2.c:372:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clsid, MapSL(args[1]), sizeof(CLSID)); data/wine-5.0/dlls/ole32/antimoniker.c:542:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, &CLSID_AntiMoniker, sizeof(CLSID)); data/wine-5.0/dlls/ole32/antimoniker.c:543:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData+sizeof(CLSID), &constant, sizeof(DWORD)); data/wine-5.0/dlls/ole32/bindctx.c:259:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->options, pbindopts, pbindopts->cbStruct); data/wine-5.0/dlls/ole32/bindctx.c:278:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbindopts, &This->options, size); data/wine-5.0/dlls/ole32/classmoniker.c:541:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszDisplayName, wszClsidPrefix, sizeof(wszClsidPrefix)-sizeof(WCHAR)); data/wine-5.0/dlls/ole32/classmoniker.c:634:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, &CLSID_ClassMoniker, sizeof(CLSID)); data/wine-5.0/dlls/ole32/classmoniker.c:636:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData+sizeof(CLSID), &This->clsid, sizeof(CLSID)); data/wine-5.0/dlls/ole32/clipboard.c:404:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_data, This->data, This->data->size); data/wine-5.0/dlls/ole32/clipboard.c:469:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, src_ptr, size); data/wine-5.0/dlls/ole32/clipboard.c:641:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pdh, OlePresStreamHeader, sizeof(OlePresStreamHeader)); data/wine-5.0/dlls/ole32/clipboard.c:1182:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, src, src->size); data/wine-5.0/dlls/ole32/clipboard.c:1552:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, src_size); data/wine-5.0/dlls/ole32/clipboard.c:1878:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)priv_data + target_offset, fmt.ptd, fmt.ptd->tdSize); data/wine-5.0/dlls/ole32/clipboard.c:1898:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clipbrd->cached_enum, priv_data, needed); data/wine-5.0/dlls/ole32/comcat.c:1067:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cloned->categories, This->categories, This->categories->size); data/wine-5.0/dlls/ole32/compobj.c:560:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->library_name, library_name, (len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/ole32/compobj.c:2554:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszProgID, ptrW, comclass->progid_len + sizeof(WCHAR)); data/wine-5.0/dlls/ole32/compobj_private.h:351:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->ptd, src->ptd, src->ptd->tdSize ); data/wine-5.0/dlls/ole32/compositemoniker.c:1288:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, &CLSID_CompositeMoniker, sizeof(CLSID)); data/wine-5.0/dlls/ole32/datacache.c:505:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format_name[256]; data/wine-5.0/dlls/ole32/datacache.c:1060:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + sizeof(DWORD), data + sizeof(DWORD) + sizeof(ENHMETAHEADER), sizeof(ENHMETAHEADER)); data/wine-5.0/dlls/ole32/datacache.c:1191:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmi, &header, header.biSize ); data/wine-5.0/dlls/ole32/errorinfo.c:53:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/ole32/filemoniker.c:260:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len=MultiByteToWideChar(CP_ACP, MB_ERR_INVALID_CHARS, filePathA, bytesA, NULL, 0); data/wine-5.0/dlls/ole32/filemoniker.c:270:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, MB_ERR_INVALID_CHARS, filePathA, -1, filePathW, len+1); data/wine-5.0/dlls/ole32/filemoniker.c:1293:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, &CLSID_FileMoniker, sizeof(CLSID)); data/wine-5.0/dlls/ole32/filemoniker.c:1472:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_display_name, szDisplayName, len * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/hglobalstream.c:175:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, (char *) supportBuffer+This->currentPosition.u.LowPart, bytesToReadFromBuffer); data/wine-5.0/dlls/ole32/hglobalstream.c:263:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) supportBuffer+This->currentPosition.u.LowPart, pv, cb); data/wine-5.0/dlls/ole32/itemmoniker.c:214:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, &buffer[i + 1], str_len); data/wine-5.0/dlls/ole32/itemmoniker.c:220:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_ACP, 0, buffer, -1, NULL, 0); data/wine-5.0/dlls/ole32/itemmoniker.c:223:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buffer, -1, str, lenW); data/wine-5.0/dlls/ole32/itemmoniker.c:877:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, &CLSID_ItemMoniker, sizeof(CLSID)); data/wine-5.0/dlls/ole32/itemmoniker.c:953:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->itemName, name, str_len); data/wine-5.0/dlls/ole32/itemmoniker.c:964:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->itemDelimiter, delimiter, str_len); data/wine-5.0/dlls/ole32/memlockbytes.c:297:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data/wine-5.0/dlls/ole32/memlockbytes.c:376:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) supportBuffer + ulOffset.u.LowPart, pv, cb); data/wine-5.0/dlls/ole32/moniker.c:234:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, mip->abData, mip->ulCntData); data/wine-5.0/dlls/ole32/moniker.c:342:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*moniker_data)->abData[0], &clsid, sizeof(clsid)); data/wine-5.0/dlls/ole32/moniker.c:343:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*moniker_data)->abData[sizeof(clsid)], pszDisplayName, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/ole32/moniker.c:535:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rot_entry->object->abData, pv, size); data/wine-5.0/dlls/ole32/moniker.c:601:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(moniker->abData, pv, size); data/wine-5.0/dlls/ole32/moniker.c:1136:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(progid, start, len * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/moniker.c:1516:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(moniker_list->interfaces[i], This->moniker_list->interfaces[i], size); data/wine-5.0/dlls/ole32/ole2.c:343:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, GlobalLock(hmem), size); data/wine-5.0/dlls/ole32/ole2.c:370:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(GlobalLock(hmem), data, info.RegionSize); data/wine-5.0/dlls/ole32/ole2.c:2999:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvarDest->u.pszVal, pvarSrc->u.pszVal, (len+1)*sizeof(CHAR)); data/wine-5.0/dlls/ole32/ole2.c:3007:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvarDest->u.pwszVal, pvarSrc->u.pwszVal, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/ole32/ole2.c:3016:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvarDest->u.blob.pBlobData, pvarSrc->u.blob.pBlobData, len); data/wine-5.0/dlls/ole32/ole2.c:3030:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvarDest->u.pclipdata->pClipData, pvarSrc->u.pclipdata->pClipData, len); data/wine-5.0/dlls/ole32/ole2.c:3090:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvarDest->u.calpstr.pElems[i], data/wine-5.0/dlls/ole32/ole2.c:3102:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvarDest->u.calpstr.pElems[i], data/wine-5.0/dlls/ole32/ole2.c:3107:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pvarDest->u.capropvar.pElems, pvarSrc->u.capropvar.pElems, len * elemSize); data/wine-5.0/dlls/ole32/ole2impl.c:504:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvDst, pvSrc, size); data/wine-5.0/dlls/ole32/ole32_main.c:112:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szIconIndex[10]; data/wine-5.0/dlls/ole32/ole32_main.c:153:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mfdata,&mfp,sizeof(mfp)); data/wine-5.0/dlls/ole32/rpc.c:142:43: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. /* [size_is((size+7)&~7)] */ unsigned char data[1]; data/wine-5.0/dlls/ole32/rpc.c:149:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char extent[1]; data/wine-5.0/dlls/ole32/rpc.c:158:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char extensions[1]; data/wine-5.0/dlls/ole32/rpc.c:164:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char extensions[1]; data/wine-5.0/dlls/ole32/rpc.c:1187:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extensions, msg->Buffer, FIELD_OFFSET(WIRE_ORPC_EXTENT_ARRAY, extent)); data/wine-5.0/dlls/ole32/rpc.c:1246:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(orpcthis, msg->Buffer, FIELD_OFFSET(WIRE_ORPCTHIS, extensions)); data/wine-5.0/dlls/ole32/rpc.c:1297:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(orpcthat, msg->Buffer, FIELD_OFFSET(WIRE_ORPCTHAT, extensions)); data/wine-5.0/dlls/ole32/rpc.c:1622:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(oxid_info->ipidRemUnknown.Data4, &oxid, sizeof(OXID)); data/wine-5.0/dlls/ole32/rpc.c:1810:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char marshalbuffer[200]; data/wine-5.0/dlls/ole32/stg_prop.c:254:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->lpwstrName, name, size); data/wine-5.0/dlls/ole32/stg_prop.c:559:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*dst, src, len); data/wine-5.0/dlls/ole32/stg_prop.c:565:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(srcCP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/ole32/stg_prop.c:570:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(srcCP, 0, src, -1, (LPWSTR)*dst, len); data/wine-5.0/dlls/ole32/stg_prop.c:581:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(srcCP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/ole32/stg_prop.c:585:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(srcCP, 0, src, -1, wideStr_tmp, len); data/wine-5.0/dlls/ole32/stg_prop.c:903:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rglpwstrName[i], name, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/stg_prop.c:1281:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&prop->u.dblVal, data, sizeof(double)); data/wine-5.0/dlls/ole32/stg_prop.c:1299:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop->u.pszVal, data + sizeof(DWORD), count); data/wine-5.0/dlls/ole32/stg_prop.c:1337:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wcount = MultiByteToWideChar(codepage, 0, (LPCSTR)(data + sizeof(DWORD)), count, NULL, 0); data/wine-5.0/dlls/ole32/stg_prop.c:1344:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop->u.bstrVal, data + sizeof(DWORD), count); data/wine-5.0/dlls/ole32/stg_prop.c:1346:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(codepage, 0, (LPCSTR)(data + sizeof(DWORD)), count, prop->u.bstrVal, wcount); data/wine-5.0/dlls/ole32/stg_prop.c:1365:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop->u.blob.pBlobData, data + sizeof(DWORD), count); data/wine-5.0/dlls/ole32/stg_prop.c:1380:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop->u.pwszVal, data + sizeof(DWORD), data/wine-5.0/dlls/ole32/stg_prop.c:1408:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(prop->u.pclipdata->pClipData, data+8, len - sizeof(prop->u.pclipdata->ulClipFmt)); data/wine-5.0/dlls/ole32/stg_prop.c:1749:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(leStr, str, len * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/storage32.c:995:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->name, result_name, sizeof(result_name)); data/wine-5.0/dlls/ole32/storage32.c:3056:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(headerBigBlock, STORAGE_magic, sizeof(STORAGE_magic)); data/wine-5.0/dlls/ole32/storage32.c:3243:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data/wine-5.0/dlls/ole32/storage32.c:3248:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + OFFSET_PS_STGTYPE, &newData->stgType, 1); data/wine-5.0/dlls/ole32/storage32.c:3441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data/wine-5.0/dlls/ole32/storage32.c:3447:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer->stgType, currentEntry + OFFSET_PS_STGTYPE, 1); data/wine-5.0/dlls/ole32/storage32.c:3986:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cache, This->extBigBlockDepotLocations, sizeof(ULONG) * This->extBigBlockDepotLocationsSize); data/wine-5.0/dlls/ole32/storage32.c:5628:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_entries, This->entries, sizeof(TransactedDirEntry) * This->entries_size); data/wine-5.0/dlls/ole32/storage32.c:5700:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->entries[entry].data, &data, sizeof(DirEntry)); data/wine-5.0/dlls/ole32/storage32.c:5907:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newData, &entry->data, sizeof(DirEntry)); data/wine-5.0/dlls/ole32/storage32.c:6177:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&new_entry->data, newData, sizeof(DirEntry)); data/wine-5.0/dlls/ole32/storage32.c:6201:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->entries[index].data, data, sizeof(DirEntry)); data/wine-5.0/dlls/ole32/storage32.c:6238:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, &This->entries[index].data, sizeof(DirEntry)); data/wine-5.0/dlls/ole32/storage32.c:6947:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp, buffer+offset, sizeof(WORD)); data/wine-5.0/dlls/ole32/storage32.c:6954:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)buffer + offset, &value, sizeof(WORD)); data/wine-5.0/dlls/ole32/storage32.c:6961:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp, buffer+offset, sizeof(DWORD)); data/wine-5.0/dlls/ole32/storage32.c:6968:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)buffer + offset, &value, sizeof(DWORD)); data/wine-5.0/dlls/ole32/storage32.c:6977:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp, buffer + offset, sizeof(ULARGE_INTEGER)); data/wine-5.0/dlls/ole32/storage32.c:6981:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, buffer + offset, sizeof(ULARGE_INTEGER)); data/wine-5.0/dlls/ole32/storage32.c:6992:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)buffer + offset, &tmp, sizeof(ULARGE_INTEGER)); data/wine-5.0/dlls/ole32/storage32.c:6994:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)buffer + offset, value, sizeof(ULARGE_INTEGER)); data/wine-5.0/dlls/ole32/storage32.c:7013:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)buffer + offset + 8, value->Data4, sizeof(value->Data4)); data/wine-5.0/dlls/ole32/storage32.c:7148:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cache, This->indexCache, sizeof(struct BlockChainRun)*This->indexCacheLen); data/wine-5.0/dlls/ole32/storage32.c:7678:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bufferWalker, cachedBlock->data+offsetInBlock, bytesToReadInBuffer); data/wine-5.0/dlls/ole32/storage32.c:7760:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cachedBlock->data+offsetInBlock, bufferWalker, bytesToWrite); data/wine-5.0/dlls/ole32/storage32.c:9293:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, count, NULL, 0 ); data/wine-5.0/dlls/ole32/storage32.c:9297:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, count, wstr, len ); data/wine-5.0/dlls/ole32/storage32.c:9403:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char unknown1[12]; data/wine-5.0/dlls/ole32/storage32.c:9404:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char unknown2[16]; data/wine-5.0/dlls/ole32/storage32.c:10040:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IStorageCompObj.byUnknown1, pCompObjUnknown1, sizeof(pCompObjUnknown1)); data/wine-5.0/dlls/ole32/storage32.c:10041:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IStorageCompObj.byUnknown2, pCompObjUnknown2, sizeof(pCompObjUnknown2)); data/wine-5.0/dlls/ole32/storage32.c:10059:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, IStorageCompObj.strProgIDName, -1, data/wine-5.0/dlls/ole32/storage32.c:10071:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strTemp[OLESTREAM_MAX_STR_LEN]; data/wine-5.0/dlls/ole32/storage32.c:10163:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(OlePres.byUnknown1, pOlePresStreamHeader, sizeof(pOlePresStreamHeader)); data/wine-5.0/dlls/ole32/storage32.c:10168:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(OlePres.byUnknown1, pOlePresStreamHeaderEmpty, sizeof(pOlePresStreamHeaderEmpty)); data/wine-5.0/dlls/ole32/storage32.c:10440:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOleStreamData[1].pData, &MetaFilePict, sizeof(MetaFilePict)); data/wine-5.0/dlls/ole32/stubmanager.c:217:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sm->oxid_info.ipidRemUnknown.Data4, &apt->oxid, sizeof(OXID)); data/wine-5.0/dlls/ole32/tests/clipboard.c:45:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[100]; data/wine-5.0/dlls/ole32/tests/clipboard.c:47:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "cf %04x ptd %p aspect %x lindex %d tymed %x", data/wine-5.0/dlls/ole32/tests/clipboard.c:167:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt->ptd, This->fmtetc[This->cur].ptd, size); data/wine-5.0/dlls/ole32/tests/clipboard.c:215:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->fmtetc, fmtetc, fmtetc_cnt*sizeof(FORMATETC)); data/wine-5.0/dlls/ole32/tests/clipboard.c:488:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj->fmtetc[3].ptd->tdData + sizeof(device_name), &dm, dm.dmSize + dm.dmDriverExtra); data/wine-5.0/dlls/ole32/tests/clipboard.c:1441:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fmt.ptd->tdData + sizeof(device_name), &dm, dm.dmSize + dm.dmDriverExtra); data/wine-5.0/dlls/ole32/tests/clipboard.c:1503:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "test"); data/wine-5.0/dlls/ole32/tests/compobj.c:201:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/ole32/tests/compobj.c:234:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char testlib[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/compobj.c:247:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, "file.manifest", -1, path, MAX_PATH ); data/wine-5.0/dlls/ole32/tests/compobj.c:2401:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[16]; data/wine-5.0/dlls/ole32/tests/compobj.c:2403:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "AuxUserType\\%d", i); data/wine-5.0/dlls/ole32/tests/compobj.c:2451:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[2]; data/wine-5.0/dlls/ole32/tests/compobj.c:2452:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "%d", i); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:52:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/ole32/tests/hglobalstream.c:431:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[15]; data/wine-5.0/dlls/ole32/tests/hglobalstream.c:477:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(teststring) + 8]; data/wine-5.0/dlls/ole32/tests/marshal.c:3332:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/ole32/tests/marshal.c:3340:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "CLSID\\"); data/wine-5.0/dlls/ole32/tests/marshal.c:3343:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer, "\\InprocHandler32"); data/wine-5.0/dlls/ole32/tests/marshal.c:3780:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/moniker.c:611:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppszDisplayName, wszDisplayName, sizeof(wszDisplayName)); data/wine-5.0/dlls/ole32/tests/moniker.c:937:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char display_nameA[256]; data/wine-5.0/dlls/ole32/tests/moniker.c:1009:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDisplayNameFile[256]; data/wine-5.0/dlls/ole32/tests/moniker.c:1157:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(szDisplayNameFile, "\\kernel32.dll"); data/wine-5.0/dlls/ole32/tests/moniker.c:1158:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szDisplayNameFile, -1, wszDisplayNameFile, data/wine-5.0/dlls/ole32/tests/ole2.c:213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dib_white, sizeof(dib_white)); data/wine-5.0/dlls/ole32/tests/ole2.c:260:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "test"); data/wine-5.0/dlls/ole32/tests/ole2.c:1161:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ole32/tests/ole2.c:1376:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(GlobalLock(U(*medium).hGlobal), data_object_dib, sizeof(dib_white)); data/wine-5.0/dlls/ole32/tests/ole2.c:1581:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSystemDir[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/ole2.c:1750:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szSystemDir, -1, wszPath, ARRAY_SIZE(wszPath)); data/wine-5.0/dlls/ole32/tests/ole2.c:1751:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszPath+lstrlenW(wszPath), wszShell32, sizeof(wszShell32)); data/wine-5.0/dlls/ole32/tests/ole2.c:3332:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/dlls/ole32/tests/ole2.c:3341:16: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). stream_n = atol(name + 8); data/wine-5.0/dlls/ole32/tests/ole2.c:3881:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/dlls/ole32/tests/ole2.c:4055:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stg_def->stream[i].name, -1, name, 32); data/wine-5.0/dlls/ole32/tests/ole2.c:4129:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, dib_inf, sizeof(dib_inf)); data/wine-5.0/dlls/ole32/tests/ole2.c:4130:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + sizeof(dib_inf), dib_white, sizeof(dib_white)); data/wine-5.0/dlls/ole32/tests/ole2.c:4135:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, dib_white, sizeof(dib_white)); data/wine-5.0/dlls/ole32/tests/ole2.c:4146:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, mf_rec, sizeof(mf_rec)); data/wine-5.0/dlls/ole32/tests/ole2.c:4166:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + sizeof(DWORD), data + sizeof(DWORD) + sizeof(ENHMETAHEADER), sizeof(ENHMETAHEADER)); data/wine-5.0/dlls/ole32/tests/ole_server.c:293:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char server_path[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/ole_server.c:349:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH * 2]; data/wine-5.0/dlls/ole32/tests/storage32.c:126:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, &This->contents[ulOffset.QuadPart], cb); data/wine-5.0/dlls/ole32/tests/storage32.c:151:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->contents[ulOffset.QuadPart], pv, cb); data/wine-5.0/dlls/ole32/tests/storage32.c:171:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_buffer, This->contents, This->size); data/wine-5.0/dlls/ole32/tests/storage32.c:213:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pstatstg->pwcsName, dummy_name, sizeof(dummy_name)); data/wine-5.0/dlls/ole32/tests/storage32.c:514:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[0x100]; data/wine-5.0/dlls/ole32/tests/storage32.c:1025:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/ole32/tests/storage32.c:3021:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prev_dir[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/storage32.c:3022:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/storage32.c:3023:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char full_path[MAX_PATH]; data/wine-5.0/dlls/ole32/tests/storage32.c:3062:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, rel_pathA, -1, rel_path, MAX_PATH); data/wine-5.0/dlls/ole32/tests/storage32.c:3249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char junk[512]; data/wine-5.0/dlls/ole32/tests/storage32.c:3651:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[10]; data/wine-5.0/dlls/ole32/tests/storage32.c:3770:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/wine-5.0/dlls/ole32/tests/storage32.c:3932:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filename, MAX_PATH); data/wine-5.0/dlls/ole32/tests/usrmarshal.c:1217:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char bitmap[1024]; data/wine-5.0/dlls/ole32/usrmarshal.c:53:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[12]; data/wine-5.0/dlls/ole32/usrmarshal.c:70:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", LOWORD(*pFlags)); data/wine-5.0/dlls/ole32/usrmarshal.c:174:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuffer, format, len * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/usrmarshal.c:459:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuffer, memory, size); data/wine-5.0/dlls/ole32/usrmarshal.c:539:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(memory, pBuffer, size); data/wine-5.0/dlls/ole32/usrmarshal.c:672:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, &bitmap, header_size); data/wine-5.0/dlls/ole32/usrmarshal.c:733:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bitmap, buffer, header_size); data/wine-5.0/dlls/ole32/usrmarshal.c:736:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bits, buffer, bitmap_size); data/wine-5.0/dlls/ole32/usrmarshal.c:1581:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuffer, ptr, size); data/wine-5.0/dlls/ole32/usrmarshal.c:1639:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, pBuffer, size); data/wine-5.0/dlls/ole32/usrmarshal.c:1828:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuffer, pStgMedium->u.lpszFileName, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/usrmarshal.c:1957:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pStgMedium->u.lpszFileName, pBuffer, variance * sizeof(WCHAR)); data/wine-5.0/dlls/ole32/usrmarshal.c:2167:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dataW, *ptrW, len*sizeof(WCHAR)); data/wine-5.0/dlls/ole32/usrmarshal.c:2205:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, (len + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/oleacc/main.c:230:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, view, size); data/wine-5.0/dlls/oleacc/main.c:321:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(atom_str, lresult_atom_prefix, sizeof(lresult_atom_prefix)); data/wine-5.0/dlls/oleacc/tests/main.c:422:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufa[1024]; data/wine-5.0/dlls/oleacc/tests/main.c:518:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/oleaut32/hash.c:32:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_16[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:70:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_32[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:108:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_48[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:146:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_64[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:183:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_80[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:221:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_112[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:259:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_128[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:297:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_144[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:335:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_160[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:373:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_176[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:411:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_208[128 * 3] = { data/wine-5.0/dlls/oleaut32/hash.c:449:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_224[128 * 3] = { data/wine-5.0/dlls/oleaut32/oleaut.c:90:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ptr[1]; data/wine-5.0/dlls/oleaut32/oleaut.c:356:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bstr->u.str, str, size); data/wine-5.0/dlls/oleaut32/oleaut.c:441:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bstr->u.ptr, str, len); data/wine-5.0/dlls/oleaut32/oleaut.c:824:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(module, ptrW, tlib->name_len); data/wine-5.0/dlls/oleaut32/oleaut.c:832:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tlguid[200], typelibkey[316], interfacekey[300], ver[100], tlfn[260]; data/wine-5.0/dlls/oleaut32/oleaut.c:838:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( interfacekey, "Interface\\{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}\\Typelib", data/wine-5.0/dlls/oleaut32/oleaut.c:889:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tlfn, -1, module, len); data/wine-5.0/dlls/oleaut32/olefont.c:236:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/oleaut32/olefont.c:1627:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char readBuffer[0x100]; data/wine-5.0/dlls/oleaut32/olefont.c:1666:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, readBuffer, string_size, NULL, 0 ); data/wine-5.0/dlls/oleaut32/olefont.c:1668:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, readBuffer, string_size, this->description.lpstrName, len ); data/wine-5.0/dlls/oleaut32/olepicture.c:1273:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, &cifd->idEntries[i].xHotspot, 4); data/wine-5.0/dlls/oleaut32/olepicture.c:1274:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + 4, xbuf+cifd->idEntries[i].dwDIBOffset, cifd->idEntries[i].dwDIBSize); data/wine-5.0/dlls/oleaut32/olepicture.c:1464:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (xbuf, header, 8); data/wine-5.0/dlls/oleaut32/olepicture.c:1492:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (xbuf, header, 8); data/wine-5.0/dlls/oleaut32/olepicture.c:1615:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pInfoHeader, pInfoBitmap, sizeof(BITMAPINFOHEADER) + iNumPaletteEntries * sizeof(RGBQUAD)); data/wine-5.0/dlls/oleaut32/olepicture.c:1616:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data/wine-5.0/dlls/oleaut32/olepicture.c:1731:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIconData + iOffsetPalette, pInfoBitmap->bmiColors, data/wine-5.0/dlls/oleaut32/olepropframe.c:228:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(font_desc.lfFaceName, property_sheet_dialog_data+1, data/wine-5.0/dlls/oleaut32/recinfo.c:66:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&V_ ## x(pvar), src, sizeof(V_ ## x(pvar))); \ data/wine-5.0/dlls/oleaut32/recinfo.c:113:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, &V_ ## x(&var), sizeof(V_ ## x(&var))); \ data/wine-5.0/dlls/oleaut32/recinfo.c:324:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, len); data/wine-5.0/dlls/oleaut32/safearray.c:237:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(psa->rgsabound + i, rgsabound + cDims - 1 - i, sizeof(SAFEARRAYBOUND)); data/wine-5.0/dlls/oleaut32/safearray.c:442:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pvData, psa->pvData, ulCellCount * psa->cbElements); data/wine-5.0/dlls/oleaut32/safearray.c:922:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpvDest, pvData, psa->cbElements); data/wine-5.0/dlls/oleaut32/safearray.c:1009:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvData, lpvSrc, psa->cbElements); data/wine-5.0/dlls/oleaut32/safearray.c:1417:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppsaOut)->rgsabound, psa->rgsabound, psa->cDims * sizeof(SAFEARRAYBOUND)); data/wine-5.0/dlls/oleaut32/safearray.c:1507:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvNewData, psa->pvData, ulOldSize); data/wine-5.0/dlls/oleaut32/safearray.c:1715:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppsa)->pvData, bstr, sab.cElements); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:62:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gifimage[35] = { data/wine-5.0/dlls/oleaut32/tests/olepicture.c:69:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char jpgimage[285] = { data/wine-5.0/dlls/oleaut32/tests/olepicture.c:91:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pngimage[285] = { data/wine-5.0/dlls/oleaut32/tests/olepicture.c:102:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char bmpimage[66] = { data/wine-5.0/dlls/oleaut32/tests/olepicture.c:111:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gif4pixel[42] = { data/wine-5.0/dlls/oleaut32/tests/olepicture.c:291:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, imgdata, imgsize); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:317:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data,"lt\0\0",4); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:320:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(header[2 * (j - 1)]), header, 2 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:322:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + i * (2 * sizeof(DWORD)), imgdata, imgsize); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:360:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data,"lt\0\0",4); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:406:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data,"lt\0\0",4); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:445:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, gifimage, sizeof(gifimage)); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:665:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, apmdata, sizeof(apmdata)); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:699:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, metafile, sizeof(metafile)); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, enhmetafile, sizeof(enhmetafile)); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:946:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/olepicture.c:947:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_file[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/olepicture.c:1008:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, temp_file, -1, temp_fileW + 8, ARRAY_SIZE(temp_fileW) - 8); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:1514:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, (char *) supportBuffer+This->currentPosition.u.LowPart, bytesToReadFromBuffer); data/wine-5.0/dlls/oleaut32/tests/olepicture.c:1544:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) supportBuffer+This->currentPosition.u.LowPart, pv, cb); data/wine-5.0/dlls/oleaut32/tests/safearray.c:636:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data,"Hello World\n",10); data/wine-5.0/dlls/oleaut32/tests/safearray.c:1801:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sa->pvData, szHello, strlen(szHello)+1); data/wine-5.0/dlls/oleaut32/tests/safearray.c:1822:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sa->pvData, szHello, strlen(szHello)+1); data/wine-5.0/dlls/oleaut32/tests/safearray.c:2033:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(guidptr, &IID_IUnknown, sizeof(GUID)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1412:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, &test_mystruct5, sizeof(*out)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1413:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in_ptr, &test_mystruct6, sizeof(*in_ptr)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1414:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in_out, &test_mystruct7, sizeof(*in_out)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1473:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in, test_array4, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1474:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, test_array5, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1475:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in_out, test_array6, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:1741:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2544:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out, &test_mystruct2, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2545:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&in_ptr, &test_mystruct3, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2546:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&in_out, &test_mystruct4, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2553:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&in_ptr, &test_mystruct1, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&complex.mystruct, &test_mystruct1, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2588:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(complex.arr, test_array1, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2603:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in, test_array1, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2604:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, test_array2, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2605:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in_out, test_array3, sizeof(array_t)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2639:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&struct_in[0], &test_mystruct1, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/tmarshal.c:2640:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&struct_in[1], &test_mystruct2, sizeof(MYSTRUCT)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:825:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filename[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:1033:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filename, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:1493:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, typelibW, sizeof(typelibW)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:1597:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:1859:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:1887:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[16]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:1922:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:2397:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nameA, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:3988:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char bufs[16][256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:3999:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d", val); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4005:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4037:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4072:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4107:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4131:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4191:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wszString, 260); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4807:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wszName, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4842:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ti->uuid, -1, guidW, ARRAY_SIZE(guidW)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4914:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4925:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, name, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5005:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key_name[MAX_PATH], uuid[40]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:5047:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filename, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5235:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5321:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5459:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5725:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, path, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:6094:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:6214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filenameA[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:6242:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filenameA, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:6384:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/typelib.c:6401:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, refFilename, -1, refFilenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/typelib.c:6410:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/varformat.c:75:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[8]; data/wine-5.0/dlls/oleaut32/tests/varformat.c:129:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (fmt) MultiByteToWideChar(CP_ACP, 0, fmt, -1, buffW, ARRAY_SIZE(buffW)); \ data/wine-5.0/dlls/oleaut32/tests/varformat.c:243:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/oleaut32/tests/varformat.c:474:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/oleaut32/tests/vartest.c:444:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sz12_true, sz12, sizeof(sz12)); data/wine-5.0/dlls/oleaut32/tests/vartest.c:445:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (bstr) memcpy(&sz12_true[2], bstr, SysStringByteLen(bstr) + sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/tests/vartest.c:450:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sz12_false, sz12, sizeof(sz12)); data/wine-5.0/dlls/oleaut32/tests/vartest.c:451:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (bstr) memcpy(&sz12_false[2], bstr, SysStringByteLen(bstr) + sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/tests/vartest.c:479:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char vtstr_buffer[16][256]; data/wine-5.0/dlls/oleaut32/tests/vartest.c:541:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(vtstr_buffer[vtstr_current], "unknown variant type %d", x); data/wine-5.0/dlls/oleaut32/tests/vartest.c:552:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_I1(%d)", V_I1(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:554:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_I2(%d)", V_I2(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:556:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_I4(%d)", V_I4(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:558:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_INT(%d)", V_INT(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:560:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_I8(%x%08x)", (UINT)(V_I8(var) >> 32), (UINT)V_I8(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:562:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_UI8(%x%08x)", (UINT)(V_UI8(var) >> 32), (UINT)V_UI8(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:564:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_R4(%g)", V_R4(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:566:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_R8(%g)", V_R8(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:568:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_UI1(%u)", V_UI1(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:570:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_UI2(%u)", V_UI2(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:572:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_UI4(%u)", V_UI4(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:574:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_UINT(%d)", V_UINT(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:576:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_CY(%x%08x)", S(V_CY(var)).Hi, S(V_CY(var)).Lo ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:578:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( vtstr_buffer[vtstr_current], "VT_DATE(%g)", V_DATE(var) ); break; data/wine-5.0/dlls/oleaut32/tests/vartest.c:667:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/oleaut32/tests/vartest.c:1275:35: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static HRESULT convert_str( const char *str, INT dig, ULONG flags, data/wine-5.0/dlls/oleaut32/tests/vartest.c:1279:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP,0, str, -1, buff, ARRAY_SIZE( buff )); data/wine-5.0/dlls/oleaut32/tests/vartest.c:2291:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[8]; data/wine-5.0/dlls/oleaut32/tests/vartest.c:3650:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[8]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:115:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (str) MultiByteToWideChar(CP_ACP,0,str,-1,buff,ARRAY_SIZE(buff)); \ data/wine-5.0/dlls/oleaut32/tests/vartype.c:2947:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (str) MultiByteToWideChar(CP_ACP,0,str,-1,buff,ARRAY_SIZE(buff)); \ data/wine-5.0/dlls/oleaut32/tests/vartype.c:3146:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[256]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:4637:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:4675:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:4725:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:5967:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filename[MAX_PATH]; data/wine-5.0/dlls/oleaut32/tests/vartype.c:5995:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filenameW, MAX_PATH); data/wine-5.0/dlls/oleaut32/tests/vartype.c:6000:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, filename2W, MAX_PATH); data/wine-5.0/dlls/oleaut32/typelib.c:176:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key_name[16]; data/wine-5.0/dlls/oleaut32/typelib.c:181:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, typelibW, sizeof(typelibW) ); data/wine-5.0/dlls/oleaut32/typelib.c:245:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, TypelibW, sizeof(TypelibW) ); data/wine-5.0/dlls/oleaut32/typelib.c:257:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, InterfaceW, sizeof(InterfaceW) ); data/wine-5.0/dlls/oleaut32/typelib.c:1348:22: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. szVarType += strlen(strcpy(szVarType, "reserved | ")); data/wine-5.0/dlls/oleaut32/typelib.c:1350:22: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. szVarType += strlen(strcpy(szVarType, "ref to ")); data/wine-5.0/dlls/oleaut32/typelib.c:1352:22: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. szVarType += strlen(strcpy(szVarType, "array of ")); data/wine-5.0/dlls/oleaut32/typelib.c:1354:22: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. szVarType += strlen(strcpy(szVarType, "vector of ")); data/wine-5.0/dlls/oleaut32/typelib.c:1356:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_UI1: sprintf(szVarType, "VT_UI1"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1357:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_I2: sprintf(szVarType, "VT_I2"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1358:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_I4: sprintf(szVarType, "VT_I4"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1359:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_R4: sprintf(szVarType, "VT_R4"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1360:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_R8: sprintf(szVarType, "VT_R8"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1361:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_BOOL: sprintf(szVarType, "VT_BOOL"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1362:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_ERROR: sprintf(szVarType, "VT_ERROR"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1363:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_CY: sprintf(szVarType, "VT_CY"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1364:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_DATE: sprintf(szVarType, "VT_DATE"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1365:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_BSTR: sprintf(szVarType, "VT_BSTR"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1366:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_UNKNOWN: sprintf(szVarType, "VT_UNKNOWN"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1367:23: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_DISPATCH: sprintf(szVarType, "VT_DISPATCH"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1368:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_I1: sprintf(szVarType, "VT_I1"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1369:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_UI2: sprintf(szVarType, "VT_UI2"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1370:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_UI4: sprintf(szVarType, "VT_UI4"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1371:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_INT: sprintf(szVarType, "VT_INT"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1372:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_UINT: sprintf(szVarType, "VT_UINT"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1373:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_VARIANT: sprintf(szVarType, "VT_VARIANT"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1374:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_VOID: sprintf(szVarType, "VT_VOID"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1375:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_HRESULT: sprintf(szVarType, "VT_HRESULT"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1376:26: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_USERDEFINED: sprintf(szVarType, "VT_USERDEFINED ref = %x", data/wine-5.0/dlls/oleaut32/typelib.c:1378:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_LPSTR: sprintf(szVarType, "VT_LPSTR"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1379:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_LPWSTR: sprintf(szVarType, "VT_LPWSTR"); break; data/wine-5.0/dlls/oleaut32/typelib.c:1380:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_PTR: sprintf(szVarType, "ptr to "); data/wine-5.0/dlls/oleaut32/typelib.c:1383:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_SAFEARRAY: sprintf(szVarType, "safearray of "); data/wine-5.0/dlls/oleaut32/typelib.c:1386:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case VT_CARRAY: sprintf(szVarType, "%d dim array of ", data/wine-5.0/dlls/oleaut32/typelib.c:1391:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default: sprintf(szVarType, "unknown(%d)", pTD->vt & VT_TYPEMASK); break; data/wine-5.0/dlls/oleaut32/typelib.c:1396:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; data/wine-5.0/dlls/oleaut32/typelib.c:1650:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->u.lpadesc, src->u.lpadesc, FIELD_OFFSET(ARRAYDESC, rgbounds[src->u.lpadesc->cDims])); data/wine-5.0/dlls/oleaut32/typelib.c:1675:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ptr, -1, NULL, 0); data/wine-5.0/dlls/oleaut32/typelib.c:1678:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ptr, -1, ret, len); data/wine-5.0/dlls/oleaut32/typelib.c:1836:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&guid->guid, new_guid, sizeof(GUID)); data/wine-5.0/dlls/oleaut32/typelib.c:2059:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, (char *)pcx->mapping + pcx->pos, count ); data/wine-5.0/dlls/oleaut32/typelib.c:2167:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lengthInChars = MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED | MB_ERR_INVALID_CHARS, data/wine-5.0/dlls/oleaut32/typelib.c:2178:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED, string, -1, tlbstr->str, lengthInChars); data/wine-5.0/dlls/oleaut32/typelib.c:2547:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char recbuf[256]; data/wine-5.0/dlls/oleaut32/typelib.c:2792:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lengthInChars = MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED | MB_ERR_INVALID_CHARS, data/wine-5.0/dlls/oleaut32/typelib.c:2803:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, MB_PRECOMPOSED, string, -1, tlbstr->str, lengthInChars); data/wine-5.0/dlls/oleaut32/typelib.c:3027:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[3]; data/wine-5.0/dlls/oleaut32/typelib.c:3315:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file, pszFileName, str_len * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/typelib.c:3330:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszPath + len + 1, file, (lstrlenW(file) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/typelib.c:3682:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b[3]; data/wine-5.0/dlls/oleaut32/typelib.c:3696:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(b, str + 24 + 2 * i, 2); data/wine-5.0/dlls/oleaut32/typelib.c:3712:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, ptr + 2, bytelen, NULL, 0); data/wine-5.0/dlls/oleaut32/typelib.c:3715:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ptr + 2, bytelen, tmp_str, len); data/wine-5.0/dlls/oleaut32/typelib.c:3730:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*str, ptr + 2, bytelen); data/wine-5.0/dlls/oleaut32/typelib.c:3857:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTD->u.lpadesc->rgbounds, pSA->rgsabound, data/wine-5.0/dlls/oleaut32/typelib.c:3948:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_PATH+1]; data/wine-5.0/dlls/oleaut32/typelib.c:4075:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[300]; data/wine-5.0/dlls/oleaut32/typelib.c:4104:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT alloc_len = MultiByteToWideChar(CP_ACP, 0, pBlk + pItem->byte_offs + 2, len, NULL, 0); data/wine-5.0/dlls/oleaut32/typelib.c:4106:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pBlk + pItem->byte_offs + 2, len, str, alloc_len); data/wine-5.0/dlls/oleaut32/typelib.c:4502:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOtherTypeInfoBlks[i].index_name, ptr + 4, w); data/wine-5.0/dlls/oleaut32/typelib.c:4510:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOtherTypeInfoBlks[i].other_name, ptr + 6 + len, w); data/wine-5.0/dlls/oleaut32/typelib.c:4518:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOtherTypeInfoBlks[i].extra, ptr + 12, extra); data/wine-5.0/dlls/oleaut32/typelib.c:4524:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pOtherTypeInfoBlks[i].uuid, ptr + 20 + len, sizeof(GUID)); data/wine-5.0/dlls/oleaut32/typelib.c:5817:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->lprgscode, src->lprgscode, sizeof(*src->lprgscode) * src->cScodes); data/wine-5.0/dlls/oleaut32/typelib.c:6050:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->lpstrSchema, src->lpstrSchema, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/typelib.c:6420:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args[argspos], &V_I8(arg), sizeof(V_I8(arg)) ); data/wine-5.0/dlls/oleaut32/typelib.c:6425:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args[argspos], arg, sizeof(*arg) ); data/wine-5.0/dlls/oleaut32/typelib.c:6730:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args[argspos], &V_R8(arg), sizeof(V_R8(arg)) ); data/wine-5.0/dlls/oleaut32/typelib.c:6741:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ®s.r[rcount], &V_UI8(arg), sizeof(V_UI8(arg)) ); data/wine-5.0/dlls/oleaut32/typelib.c:6748:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args[argspos], &V_UI8(arg), sizeof(V_UI8(arg)) ); data/wine-5.0/dlls/oleaut32/typelib.c:6922:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ®s.x[rcount], arg, sizeof(*arg) ); data/wine-5.0/dlls/oleaut32/typelib.c:6927:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args[argspos], arg, sizeof(*arg) ); data/wine-5.0/dlls/oleaut32/typelib.c:9357:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&entry->guid, &guid->guid, sizeof(GUID)); data/wine-5.0/dlls/oleaut32/typelib.c:9576:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data[offs], encoded, sizeof(encoded)); data/wine-5.0/dlls/oleaut32/typelib.c:10769:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_func_desc.funcdesc.lprgscode, funcDesc->lprgscode, sizeof(SCODE) * funcDesc->cScodes); data/wine-5.0/dlls/oleaut32/typelib.c:10831:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(func_desc, &tmp_func_desc, sizeof(tmp_func_desc)); data/wine-5.0/dlls/oleaut32/usrmarshal.c:160:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(header + 1, *pstr, header->len * 2); data/wine-5.0/dlls/oleaut32/usrmarshal.c:423:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Pos, pvar->n1.n2.n3.byref, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:435:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Pos, pvar, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:437:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Pos, &pvar->n1.n2.n3, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:540:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(V_BYREF(pvar), Pos, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:561:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvar, Pos, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:563:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pvar->n1.n2.n3, Pos, type_size); data/wine-5.0/dlls/oleaut32/usrmarshal.c:888:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Buffer, &guid, sizeof(guid)); data/wine-5.0/dlls/oleaut32/usrmarshal.c:896:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bound++, &psa->rgsabound[psa->cDims-i-1], sizeof(psa->rgsabound[0])); data/wine-5.0/dlls/oleaut32/usrmarshal.c:954:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Buffer, psa->pvData, ulCellCount * psa->cbElements); data/wine-5.0/dlls/oleaut32/usrmarshal.c:1041:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppsa)->rgsabound, wiresab, sizeof(*wiresab)*wiresa->cDims); data/wine-5.0/dlls/oleaut32/usrmarshal.c:1057:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppsa)->rgsabound, wiresab, sizeof(SAFEARRAYBOUND) * wiresa->cDims); data/wine-5.0/dlls/oleaut32/usrmarshal.c:1121:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppsa)->pvData, Buffer, cell_count * (*ppsa)->cbElements); data/wine-5.0/dlls/oleaut32/varformat.c:540:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgbTok, namedFmt, namedFmt[0]); data/wine-5.0/dlls/oleaut32/varformat.c:1340:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuff, lpszFormat + pToken[1], pToken[2] * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/varformat.c:1635:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuff, lpszFormat + pToken[1], pToken[2] * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/varformat.c:1974:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuff, lpszFormat + pToken[1], pToken[2] * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/varformat.c:2384:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff, *pbstrOut, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/oleaut32/variant.c:923:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&DEC_SCALE(&V_DECIMAL(pvargDest)), &DEC_SCALE(V_DECIMALREF(pSrc)), data/wine-5.0/dlls/oleaut32/variant.c:929:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&V_BYREF(pvargDest), V_BYREF(pSrc), VARIANT_DataSize(pSrc)); data/wine-5.0/dlls/oleaut32/variant.c:1534:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpChars, &lastChars, sizeof(defaultChars)); data/wine-5.0/dlls/oleaut32/variant.c:1539:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpChars, &defaultChars, sizeof(defaultChars)); data/wine-5.0/dlls/oleaut32/variant.c:1559:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lastChars, lpChars, sizeof(defaultChars)); data/wine-5.0/dlls/oleaut32/variant.c:1871:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgbDig, rgbTmp, pNumprs->cDig * sizeof(BYTE)); data/wine-5.0/dlls/oleaut32/variant.c:1906:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgbDig, rgbTmp, pNumprs->cDig * sizeof(BYTE)); data/wine-5.0/dlls/oleaut32/vartype.c:50:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_UI1: memcpy(pOut, &V_UI1(srcVar), sizeof(BYTE)); break; data/wine-5.0/dlls/oleaut32/vartype.c:53:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_UI2: memcpy(pOut, &V_UI2(srcVar), sizeof(SHORT)); break; data/wine-5.0/dlls/oleaut32/vartype.c:58:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_UI4: memcpy(pOut, &V_UI4(srcVar), sizeof (LONG)); break; data/wine-5.0/dlls/oleaut32/vartype.c:63:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_UI8: memcpy(pOut, &V_UI8(srcVar), sizeof (LONG64)); break; data/wine-5.0/dlls/oleaut32/vartype.c:64:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_INT_PTR: memcpy(pOut, &V_INT_PTR(srcVar), sizeof (INT_PTR)); break; data/wine-5.0/dlls/oleaut32/vartype.c:65:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_DECIMAL: memcpy(pOut, &V_DECIMAL(srcVar), sizeof (DECIMAL)); break; data/wine-5.0/dlls/oleaut32/vartype.c:66:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case VT_BSTR: memcpy(pOut, &V_BSTR(srcVar), sizeof(BSTR)); break; data/wine-5.0/dlls/oleaut32/vartype.c:4783:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(running, quotient, sizeof(quotient)); data/wine-5.0/dlls/oleaut32/vartype.c:4848:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(quotient, a->bitsnum, sizeof(a->bitsnum)); data/wine-5.0/dlls/oleaut32/vartype.c:4989:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tempsub, p + n, n * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:4994:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p + n, tempsub, n * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5028:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(a, b, an * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5055:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(t, digitchosen, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5062:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(digitchosen, t, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5086:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(t, digitchosen, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5096:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(digitchosen, t, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5121:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(t, digitchosen, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5127:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(digitchosen, t, nchosen * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5143:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(t, a, an * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5148:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(a, t, an * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5206:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(remainderplusquotient, dividend->bitsnum, sizeof(dividend->bitsnum)); data/wine-5.0/dlls/oleaut32/vartype.c:5224:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(remainderplusquotient, remainderplusquotient + 4, 4 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5235:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(remainderplusquotient, quotient->bitsnum, sizeof(quotient->bitsnum)); data/wine-5.0/dlls/oleaut32/vartype.c:5296:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp_bitsnum, val->bitsnum, 3 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5300:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(val->bitsnum, temp_bitsnum, 3 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5396:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp_bitsnum, val->bitsnum, 3 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:5399:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(val->bitsnum, temp_bitsnum, 3 * sizeof(DWORD)); data/wine-5.0/dlls/oleaut32/vartype.c:6076:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpszDest, p + 1, *p * sizeof(WCHAR) ); data/wine-5.0/dlls/oleaut32/vartype.c:7127:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrOut, pbstrLeft, lenLeft); data/wine-5.0/dlls/oleaut32/vartype.c:7130:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((CHAR*)*pbstrOut + lenLeft, pbstrRight, lenRight); data/wine-5.0/dlls/oledb32/convert.c:216:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0) - 1; data/wine-5.0/dlls/oledb32/convert.c:218:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src, src_len, NULL, 0); data/wine-5.0/dlls/oledb32/convert.c:222:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, b, len + 1); data/wine-5.0/dlls/oledb32/convert.c:224:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, src_len, b, len); data/wine-5.0/dlls/oledb32/convert.c:495:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case DBTYPE_DBDATE: memcpy(d, src, sizeof(DBDATE)); hr = S_OK; break; data/wine-5.0/dlls/oledb32/convert.c:546:34: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. case DBTYPE_DBTIMESTAMP: memcpy(d, src, sizeof(DBTIMESTAMP)); hr = S_OK; break; data/wine-5.0/dlls/oledb32/convert.c:884:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, b, bytes_to_copy - sizeof(WCHAR)); data/wine-5.0/dlls/oledb32/convert.c:945:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if(*d) memcpy(*d, b, bstr_len + sizeof(WCHAR)); data/wine-5.0/dlls/oledb32/convert.c:1105:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, src, min(src_len, dst_max_len)); data/wine-5.0/dlls/oledb32/convert.c:1130:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, data, *dst_len); data/wine-5.0/dlls/oledb32/convert.c:1154:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if(*d) memcpy(*d, src, src_len); data/wine-5.0/dlls/oledb32/datainit.c:674:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(progid, start, len*sizeof(WCHAR)); data/wine-5.0/dlls/oledb32/errorinfo.c:258:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->rgdispidNamedArgs, src->rgdispidNamedArgs, dest->cNamedArgs * sizeof(*dest->rgdispidNamedArgs)); data/wine-5.0/dlls/oledb32/tests/convert.c:563:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:571:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:579:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:629:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:874:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:882:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:890:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:898:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:941:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1172:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:1181:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char *)src, "10"); data/wine-5.0/dlls/oledb32/tests/convert.c:1190:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1199:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1715:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, &IID_IDataConvert, sizeof(GUID)); data/wine-5.0/dlls/oledb32/tests/convert.c:1736:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1745:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1753:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:1785:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1795:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1805:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1816:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1827:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1838:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1849:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_w, sizeof(hexpacked_w)); data/wine-5.0/dlls/oledb32/tests/convert.c:1880:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[100]; data/wine-5.0/dlls/oledb32/tests/convert.c:2227:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, &IID_IDataConvert, sizeof(GUID)); data/wine-5.0/dlls/oledb32/tests/convert.c:2260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2270:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2280:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2290:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2300:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2309:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2318:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten_a, sizeof(ten_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2330:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten_a, sizeof(ten_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2339:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten_a, sizeof(ten_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2351:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2361:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2371:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2382:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2393:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2404:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, hexpacked_a, sizeof(hexpacked_a)); data/wine-5.0/dlls/oledb32/tests/convert.c:2480:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2490:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2574:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2584:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2593:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, ten, sizeof(ten)); data/wine-5.0/dlls/oledb32/tests/convert.c:2602:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2612:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2622:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, withnull, sizeof(withnull)); data/wine-5.0/dlls/oledb32/tests/convert.c:2669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, &IID_IDataConvert, sizeof(GUID)); data/wine-5.0/dlls/oledb32/tests/marshal.c:178:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*prgPropertySets)[0].rgProperties[0].colid.uName.pwszName, wszDBPropertyColumnName, sizeof(wszDBPropertyColumnName)); data/wine-5.0/dlls/oledlg/insobjdlg.c:516:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_PATH]; data/wine-5.0/dlls/oledlg/insobjdlg.c:517:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[32]; data/wine-5.0/dlls/oledlg/insobjdlg.c:560:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_PATH]; data/wine-5.0/dlls/oledlg/insobjdlg.c:561:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[32]; data/wine-5.0/dlls/oledlg/oledlg_main.c:116:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, shorttype, -1, NULL, 0); data/wine-5.0/dlls/oledlg/oledlg_main.c:119:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, shorttype, -1, shorttypeW, len); data/wine-5.0/dlls/oledlg/pastespl.c:72:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char flagstr[1000] = ""; data/wine-5.0/dlls/oledlg/pastespl.c:123:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/oledlg/pastespl.c:125:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/oledlg/pastespl.c:136:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len * sizeof(WCHAR)); data/wine-5.0/dlls/oledlg/pastespl.c:440:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result_txt, resource_txt, offs); data/wine-5.0/dlls/oledlg/pastespl.c:441:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)result_txt + offs, pent->lpstrResultText, result_txt_len * sizeof(WCHAR)); data/wine-5.0/dlls/oledlg/pastespl.c:442:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)result_txt + offs + result_txt_len * sizeof(WCHAR), ptr + 2, (lstrlenW(ptr + 2) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/oledlg/pastespl.c:641:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ps, psA, psA->cbStruct); data/wine-5.0/dlls/oledlg/pastespl.c:653:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ps.arrPasteEntries, psA->arrPasteEntries, size); data/wine-5.0/dlls/opcservices/compress.c:115:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char input_buffer[0x8000]; data/wine-5.0/dlls/opcservices/compress.c:116:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char output_buffer[0x8000]; data/wine-5.0/dlls/opcservices/compress.c:323:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry + 1, name, entry->name_length); data/wine-5.0/dlls/opcservices/package.c:561:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff, stream->content->data + stream->pos.QuadPart, *num_read); data/wine-5.0/dlls/opcservices/package.c:588:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->content->data + stream->pos.QuadPart, data, size); data/wine-5.0/dlls/opcservices/package.c:738:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/opcservices/tests/opcservices.c:56:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/opcservices/tests/opcservices.c:267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[64]; data/wine-5.0/dlls/opcservices/tests/opcservices.c:503:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/opcservices/tests/opcservices.c:506:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/opcservices/uri.c:499:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, path, (start - path) * sizeof(WCHAR)); data/wine-5.0/dlls/opengl32/wgl.c:1617:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, extensions, end - extensions); data/wine-5.0/dlls/packager/packager_main.c:395:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filenameA[MAX_PATH]; data/wine-5.0/dlls/packager/packager_main.c:463:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, filenameA, filenameA_len, data/wine-5.0/dlls/packager/packager_main.c:476:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->filename + len, stream_filename, stream_filename_len * sizeof(WCHAR)); data/wine-5.0/dlls/packager/tests/oleobj.c:74:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data + offs, to_read); data/wine-5.0/dlls/packager/tests/oleobj.c:417:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char contents[11]; data/wine-5.0/dlls/pdh/pdh_main.c:65:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, src, -1, NULL, 0 ); data/wine-5.0/dlls/pdh/pdh_main.c:66:52: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ((dst = heap_alloc( len * sizeof(WCHAR) ))) MultiByteToWideChar( CP_ACP, 0, src, -1, dst, len ); data/wine-5.0/dlls/pdh/tests/pdh.c:659:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[PDH_MAX_COUNTER_NAME] = "!!"; data/wine-5.0/dlls/pdh/tests/pdh.c:872:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/propsys/propvar.c:54:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( ppropvarDest->u.pszVal, "%04d/%02d/%02d:%02d:%02d:%02d.%03d", data/wine-5.0/dlls/propsys/propvar.c:317:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, propvarIn->u.caub.pElems, cb); data/wine-5.0/dlls/propsys/propvar.c:376:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, propvarIn->u.pszVal, -1, NULL, 0); data/wine-5.0/dlls/propsys/propvar.c:381:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, propvarIn->u.pszVal, -1, res, len); data/wine-5.0/dlls/propsys/propvar.c:392:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(res, propvarIn->u.pwszVal, size); data/wine-5.0/dlls/propsys/propvar.c:636:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppropvar->u.caub.pElems, pv, cb); data/wine-5.0/dlls/propsys/propvar.c:649:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppropvar->u.puuid, clsid, sizeof(*ppropvar->u.puuid)); data/wine-5.0/dlls/propsys/propvar.c:671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pv, cb); data/wine-5.0/dlls/propsys/propvar.c:766:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(guid, ppropvar->u.puuid, sizeof(*ppropvar->u.puuid)); data/wine-5.0/dlls/propsys/tests/propsys.c:152:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(testcases[i].psz, fillerW, PKEYSTR_MAX * sizeof(WCHAR)); data/wine-5.0/dlls/propsys/tests/propsys.c:1539:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdata, data, sizeof(data)); data/wine-5.0/dlls/propsys/tests/propsys.c:1559:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdata, data, sizeof(data)); data/wine-5.0/dlls/propsys/tests/propsys.c:1573:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(U(propvar).caub.pElems, data_int8, sizeof(data_int8)); data/wine-5.0/dlls/propsys/tests/propsys.c:1587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdata, data_int8, sizeof(data_int8)); data/wine-5.0/dlls/psapi/tests/psapi_main.c:79:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200] = "C:\\windows\\system32\\notepad.exe"; data/wine-5.0/dlls/psapi/tests/psapi_main.c:143:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[40]; data/wine-5.0/dlls/psapi/tests/psapi_main.c:145:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "C:\\windows\\syswow64\\notepad.exe"); data/wine-5.0/dlls/psapi/tests/psapi_main.c:245:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char performance_buffer[sizeof(SYSTEM_PERFORMANCE_INFORMATION) + 16]; /* larger on w2k8/win7 */ data/wine-5.0/dlls/psapi/tests/psapi_main.c:395:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, section_name->SectionFileName.Buffer, section_name->SectionFileName.MaximumLength); data/wine-5.0/dlls/psapi/tests/psapi_main.c:403:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szMapPath[MAX_PATH], szModPath[MAX_PATH], *szMapBaseName; data/wine-5.0/dlls/psapi/tests/psapi_main.c:406:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], file_name[MAX_PATH], map_name[MAX_PATH], device_name[MAX_PATH], drive[3]; data/wine-5.0/dlls/psapi/tests/psapi_main.c:560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szImgPath[MAX_PATH], szMapPath[MAX_PATH]; data/wine-5.0/dlls/psapi/tests/psapi_main.c:635:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szModExPath[MAX_PATH+1], szModPath[MAX_PATH+1]; data/wine-5.0/dlls/psapi/tests/psapi_main.c:700:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szModPath[MAX_PATH], szModBaseName[MAX_PATH]; data/wine-5.0/dlls/qcap/avimux.c:219:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->buf + This->buf_pos, data, chunk_size); data/wine-5.0/dlls/qcap/avimux.c:1405:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, frame, size); data/wine-5.0/dlls/qcap/avimux.c:1454:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(avimuxin->strf->data, &vih->bmiHeader, size); data/wine-5.0/dlls/qcap/smartteefilter.c:163:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptrOut, ptrIn, IMediaSample_GetActualDataLength(inputSample)); data/wine-5.0/dlls/qcap/tests/qcap.c:766:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPropData, &PIN_CATEGORY_EDS, sizeof(GUID)); data/wine-5.0/dlls/qcap/tests/qcap.c:1615:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1484:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppMediaTypes[0]->pbFormat, This->filter->mediaType.pbFormat, This->filter->mediaType.cbFormat); data/wine-5.0/dlls/qcap/tests/smartteefilter.c:1688:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pmt->pbFormat, &This->videoInfo, sizeof(This->videoInfo)); data/wine-5.0/dlls/qcap/v4l.c:72:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static typeof(open) *video_open = open; data/wine-5.0/dlls/qcap/v4l.c:72:35: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static typeof(open) *video_open = open; data/wine-5.0/dlls/qcap/v4l.c:505:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[20]; data/wine-5.0/dlls/qcap/v4l.c:513:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(path, "/dev/video%i", card); data/wine-5.0/dlls/qedit/samplegrabber.c:155:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(This->bufferData, data, size); data/wine-5.0/dlls/qedit/samplegrabber.c:246:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(This->mtype.pbFormat, type->pbFormat, type->cbFormat); data/wine-5.0/dlls/qedit/samplegrabber.c:266:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(type->pbFormat, This->mtype.pbFormat, type->cbFormat); data/wine-5.0/dlls/qedit/samplegrabber.c:307:17: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, This->bufferData, This->bufferLen); data/wine-5.0/dlls/qmgr/file.c:368:45: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). const WCHAR *tmpfile) data/wine-5.0/dlls/qmgr/file.c:374:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/wine-5.0/dlls/qmgr/file.c:396:26: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). handle = CreateFileW(tmpfile, GENERIC_WRITE, 0, NULL, CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL); data/wine-5.0/dlls/qmgr/tests/job.c:314:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b1[256]; data/wine-5.0/dlls/qmgr/tests/job.c:315:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b2[256]; data/wine-5.0/dlls/qmgr/tests/qmgr.c:137:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, secretA, -1, secretW, MAX_PATH); data/wine-5.0/dlls/qmgr/tests/qmgr.c:194:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, argv[0], -1, progname, MAX_PATH); data/wine-5.0/dlls/quartz/avidec.c:270:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->pBihIn, bmi, bih_size); data/wine-5.0/dlls/quartz/avidec.c:271:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->pBihOut, bmi, bih_size); data/wine-5.0/dlls/quartz/avidec.c:290:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(((VIDEOINFOHEADER *)outpmt->pbFormat)->bmiHeader), This->pBihOut, This->pBihOut->biSize); data/wine-5.0/dlls/quartz/avidec.c:292:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(((VIDEOINFOHEADER2 *)outpmt->pbFormat)->bmiHeader), This->pBihOut, This->pBihOut->biSize); data/wine-5.0/dlls/quartz/dsoundrender.c:271:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf1, data, size1); data/wine-5.0/dlls/quartz/dsoundrender.c:273:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf2, data+size1, size2); data/wine-5.0/dlls/quartz/enummoniker.c:64:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pemi->ppMoniker, ppMoniker, nMonikerCount*sizeof(IMoniker*)); data/wine-5.0/dlls/quartz/enumregfilters.c:83:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pRegFilters[i].Name, pInRegFilters[i].Name, (lstrlenW(pInRegFilters[i].Name)+1)*sizeof(WCHAR)); data/wine-5.0/dlls/quartz/enumregfilters.c:178:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(ppRegFilter[i]->Name, This->RegFilters[This->uIndex + i].Name, data/wine-5.0/dlls/quartz/filtergraph.c:606:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszFilterName, pName, (lstrlenW(pName) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/quartz/filtergraph.c:2386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pFormat, &TIME_FORMAT_MEDIA_TIME, sizeof(GUID)); data/wine-5.0/dlls/quartz/filtergraph.c:2399:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pFormat, &This->timeformatseek, sizeof(GUID)); data/wine-5.0/dlls/quartz/filtergraph.c:5726:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&fimpl->timeformatseek, &TIME_FORMAT_MEDIA_TIME, sizeof(GUID)); data/wine-5.0/dlls/quartz/filtermapper.c:153:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(v->pData + v->current, pData, size); data/wine-5.0/dlls/quartz/filtermapper.c:488:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppData, mainStore.pData, mainStore.current); data/wine-5.0/dlls/quartz/filtermapper.c:489:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ppData) + mainStore.current, clsidStore.pData, clsidStore.current); data/wine-5.0/dlls/quartz/filtermapper.c:549:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clsCat, pData + *(DWORD*)(pCurrent), sizeof(CLSID)); data/wine-5.0/dlls/quartz/filtermapper.c:572:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clsMajor, pData + prt->dwOffsetMajor, sizeof(CLSID)); data/wine-5.0/dlls/quartz/filtermapper.c:573:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clsMinor, pData + prt->dwOffsetMinor, sizeof(CLSID)); data/wine-5.0/dlls/quartz/filtermapper.c:592:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpMedium + j, pData + dwOffset, sizeof(REGPINMEDIUM)); data/wine-5.0/dlls/quartz/filtermapper.c:723:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCurrent, szClsidTemp, CHARS_IN_GUID * sizeof(WCHAR)); data/wine-5.0/dlls/quartz/filtermapper.c:790:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbSAData, pData, cbData); data/wine-5.0/dlls/quartz/filtermapper.c:1237:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(regfilters[idx].Name, V_BSTR(&var), len); data/wine-5.0/dlls/quartz/memallocator.c:203:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pProps, &This->props, sizeof(*pProps)); data/wine-5.0/dlls/quartz/memallocator.c:766:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbProperties, &This->props, min(cbProperties, sizeof(This->props))); data/wine-5.0/dlls/quartz/memallocator.c:778:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->props, pbProperties, min(cbProperties, AM_SAMPLE2_PROP_SIZE_WRITABLE)); data/wine-5.0/dlls/quartz/regsvr.c:110:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpClsid + j*2, list->pins[i].mediatypes[j].majortype, sizeof(CLSID)); data/wine-5.0/dlls/quartz/regsvr.c:113:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpClsid + j*2 + 1, list->pins[i].mediatypes[j].subtype, sizeof(CLSID)); data/wine-5.0/dlls/quartz/regsvr.c:116:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpClsid + j*2 + 1, list->pins[i].mediatypes[j].majortype, sizeof(CLSID)); data/wine-5.0/dlls/quartz/tests/avisplit.c:785:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[13]; data/wine-5.0/dlls/quartz/tests/filtergraph.c:4069:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char bogus_data[20] = {0xde, 0xad, 0xbe, 0xef}; data/wine-5.0/dlls/quartz/tests/filtergraph.c:4070:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char midi_data[20] = {'M','T','h','d'}; data/wine-5.0/dlls/quartz/tests/filtermapper.c:511:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbSAData, data_block, sizeof(data_block)); data/wine-5.0/dlls/quartz/videorenderer.c:409:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDIBImage, bmiHeader, bmiHeader->biSize); data/wine-5.0/dlls/quartz/videorenderer.c:411:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pDIBImage + bmiHeader->biSize, ptr, IMediaSample_GetActualDataLength(This->renderer.pMediaSample)); data/wine-5.0/dlls/quartz/videorenderer.c:437:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vih,vih2,sizeof(VIDEOINFOHEADER)); data/wine-5.0/dlls/quartz/videorenderer.c:438:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vih.bmiHeader, &vih2->bmiHeader, sizeof(BITMAPINFOHEADER)); data/wine-5.0/dlls/quartz/vmr9.c:238:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lock.pBits, data, width * bmiHeader->biBitCount / 8); data/wine-5.0/dlls/quartz/vmr9.c:248:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lock.pBits, data, width * bmiHeader->biBitCount / 8); data/wine-5.0/dlls/quartz/vmr9.c:253:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy(lock.pBits, data, size); data/wine-5.0/dlls/quartz/vmr9.c:674:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDIBImage, bmiHeader, bmiHeader->biSize); data/wine-5.0/dlls/quartz/vmr9.c:676:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pDIBImage + bmiHeader->biSize, ptr, IMediaSample_GetActualDataLength(pVMR9->renderer.pMediaSample)); data/wine-5.0/dlls/quartz/vmr9.c:702:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vih,vih2,sizeof(VIDEOINFOHEADER)); data/wine-5.0/dlls/quartz/vmr9.c:703:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&vih.bmiHeader, &vih2->bmiHeader, sizeof(BITMAPINFOHEADER)); data/wine-5.0/dlls/quartz/vmr9.c:2768:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bits, t_vert, sizeof(t_vert)); data/wine-5.0/dlls/rasapi32/rasapi.c:265:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lpRasDevinfo->szDeviceName, "WINE virtmodem"); data/wine-5.0/dlls/riched20/clipboard.c:110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt, This->fmtetc+This->cur, count*sizeof(FORMATETC)); data/wine-5.0/dlls/riched20/clipboard.c:174:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->fmtetc, fmtetc, fmtetc_cnt*sizeof(FORMATETC)); data/wine-5.0/dlls/riched20/clipboard.c:382:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDest + pData->nLength, lpBuff, cb); data/wine-5.0/dlls/riched20/editor.c:290:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char conv_buf[4 + STREAMIN_BUFFER_SIZE]; /* up to 4 additional UTF-8 bytes */ data/wine-5.0/dlls/riched20/editor.c:330:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conv_buf + copy, buf, size); data/wine-5.0/dlls/riched20/editor.c:365:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nWideChars = MultiByteToWideChar(cp, 0, buf, end, wszText, STREAMIN_BUFFER_SIZE); data/wine-5.0/dlls/riched20/editor.c:372:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conv_buf, buf + end, size - end); data/wine-5.0/dlls/riched20/editor.c:521:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, f->rtfFName, -1, fmt.szFaceName, ARRAY_SIZE(fmt.szFaceName)); data/wine-5.0/dlls/riched20/editor.c:711:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->fmt.rgxTabs, fmt.rgxTabs, data/wine-5.0/dlls/riched20/editor.c:2724:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2048]; data/wine-5.0/dlls/riched20/editor.c:2759:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &charA, 1, &wstr, 1); data/wine-5.0/dlls/riched20/editor.c:4233:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, str, nCopy * sizeof(WCHAR)); data/wine-5.0/dlls/riched20/editor.c:4365:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int nChars = MultiByteToWideChar(CP_ACP, 0, ft->lpstrText, -1, NULL, 0); data/wine-5.0/dlls/riched20/editor.c:4369:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ft->lpstrText, -1, tmp, nChars); data/wine-5.0/dlls/riched20/editor.c:4383:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int nChars = MultiByteToWideChar(CP_ACP, 0, ex->lpstrText, -1, NULL, 0); data/wine-5.0/dlls/riched20/editor.c:4387:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ex->lpstrText, -1, tmp, nChars); data/wine-5.0/dlls/riched20/editor.c:5174:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(buffer, str, sizeof(WCHAR) * nLen); data/wine-5.0/dlls/riched20/editor.h:60:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ME_DumpStyleToBuf(CHARFORMAT2W *pFmt, char buf[2048]) DECLSPEC_HIDDEN; data/wine-5.0/dlls/riched20/editor.h:197:53: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ME_DumpParaStyleToBuf(const PARAFORMAT2 *pFmt, char buf[2048]) DECLSPEC_HIDDEN; data/wine-5.0/dlls/riched20/editstr.h:380:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[STREAMIN_BUFFER_SIZE]; data/wine-5.0/dlls/riched20/para.c:415:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cf.szFaceName, bullet_font, sizeof(bullet_font) ); data/wine-5.0/dlls/riched20/para.c:498:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(para->fmt.rgxTabs, pFmt->rgxTabs, pFmt->cTabCount*sizeof(LONG)); data/wine-5.0/dlls/riched20/para.c:819:53: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ME_DumpParaStyleToBuf(const PARAFORMAT2 *pFmt, char buf[2048]) data/wine-5.0/dlls/riched20/para.c:848:28: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case PFA_LEFT : p += sprintf(p, "Alignment: left\n"); break; data/wine-5.0/dlls/riched20/para.c:849:28: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case PFA_RIGHT : p += sprintf(p, "Alignment: right\n"); break; data/wine-5.0/dlls/riched20/para.c:850:28: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case PFA_CENTER : p += sprintf(p, "Alignment: center\n"); break; data/wine-5.0/dlls/riched20/para.c:851:28: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case PFA_JUSTIFY: p += sprintf(p, "Alignment: justify\n"); break; data/wine-5.0/dlls/riched20/para.c:852:28: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default : p += sprintf(p, "Alignment: incorrect %d\n", pFmt->wAlignment); break; data/wine-5.0/dlls/riched20/para.c:855:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else p += sprintf(p, "Alignment: N/A\n"); data/wine-5.0/dlls/riched20/para.c:860:48: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. for (i = 0; i < pFmt->cTabCount; i++) p += sprintf(p, "%x ", pFmt->rgxTabs[i]); data/wine-5.0/dlls/riched20/para.c:931:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(pFmt, ¶->member.para.fmt, pFmt->cbSize); data/wine-5.0/dlls/riched20/reader.c:789:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[rtfBufSiz], *bp; data/wine-5.0/dlls/riched20/reader.c:1029:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[rtfBufSiz], *bp; data/wine-5.0/dlls/riched20/reader.c:2617:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar(info->codePage, 0, info->cpOutputBuffer, data/wine-5.0/dlls/riched20/string.c:80:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s->szData, szText, s->nLen * sizeof(WCHAR)); data/wine-5.0/dlls/riched20/string.c:120:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s->szData + ofs, insert, len * sizeof(WCHAR) ); data/wine-5.0/dlls/riched20/string.c:226:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int nChars = MultiByteToWideChar(codepage, 0, psz, -1, NULL, 0); data/wine-5.0/dlls/riched20/string.c:231:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar(codepage, 0, psz, -1, tmp, nChars) - 1; data/wine-5.0/dlls/riched20/style.c:41:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(to, f, FIELD_OFFSET(CHARFORMATA, szFaceName)); data/wine-5.0/dlls/riched20/style.c:44:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, f->szFaceName, -1, to->szFaceName, ARRAY_SIZE(to->szFaceName)); data/wine-5.0/dlls/riched20/style.c:51:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(to, f, sizeof(*f)); data/wine-5.0/dlls/riched20/style.c:61:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(to, f, FIELD_OFFSET(CHARFORMATA, szFaceName)); data/wine-5.0/dlls/riched20/style.c:64:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, f->szFaceName, -1, to->szFaceName, ARRAY_SIZE(to->szFaceName)); data/wine-5.0/dlls/riched20/style.c:66:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(&to->wWeight, &f->wWeight, sizeof(CHARFORMAT2A)-FIELD_OFFSET(CHARFORMAT2A, wWeight)); data/wine-5.0/dlls/riched20/style.c:72:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(to, from, sizeof(CHARFORMAT2W)); data/wine-5.0/dlls/riched20/style.c:85:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(t, from, FIELD_OFFSET(CHARFORMATA, szFaceName)); data/wine-5.0/dlls/riched20/style.c:95:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(t, from, sizeof(*t)); data/wine-5.0/dlls/riched20/style.c:105:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(t, from, FIELD_OFFSET(CHARFORMATA, szFaceName)); data/wine-5.0/dlls/riched20/style.c:109:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(&t->wWeight, &from->wWeight, sizeof(CHARFORMAT2W)-FIELD_OFFSET(CHARFORMAT2W,wWeight)); data/wine-5.0/dlls/riched20/style.c:115:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(to, from, sizeof(CHARFORMAT2W)); data/wine-5.0/dlls/riched20/style.c:147:5: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(fmt.member, mod->member, sizeof(mod->member));\ data/wine-5.0/dlls/riched20/style.c:245:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2048]; data/wine-5.0/dlls/riched20/style.c:250:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ME_DumpStyleToBuf(CHARFORMAT2W *pFmt, char buf[2048]) data/wine-5.0/dlls/riched20/style.c:256:8: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Font face: "); data/wine-5.0/dlls/riched20/style.c:264:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "N/A"); data/wine-5.0/dlls/riched20/style.c:267:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "\nFont size: %d\n", pFmt->yHeight); data/wine-5.0/dlls/riched20/style.c:269:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "\nFont size: N/A\n"); data/wine-5.0/dlls/riched20/style.c:272:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Char offset: %d\n", pFmt->yOffset); data/wine-5.0/dlls/riched20/style.c:274:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Char offset: N/A\n"); data/wine-5.0/dlls/riched20/style.c:277:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Font charset: %d\n", (int)pFmt->bCharSet); data/wine-5.0/dlls/riched20/style.c:279:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Font charset: N/A\n"); data/wine-5.0/dlls/riched20/style.c:287:8: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "Text color: "); data/wine-5.0/dlls/riched20/style.c:291:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "auto\n"); data/wine-5.0/dlls/riched20/style.c:293:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "%06x\n", (int)pFmt->crTextColor); data/wine-5.0/dlls/riched20/style.c:296:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf(p, "N/A\n"); data/wine-5.0/dlls/riched20/tests/editor.c:233:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/riched20/tests/editor.c:235:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/riched20/tests/editor.c:395:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[1024], origdest[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:426:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expectedbuf[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:427:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resultbuf[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:431:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(resultbuf+strlen(resultbuf), "%02x", dest[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:434:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expectedbuf+strlen(expectedbuf), "%02x", gl[i].text[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:436:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expectedbuf+strlen(expectedbuf), "??"); data/wine-5.0/dlls/riched20/tests/editor.c:438:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expectedbuf+strlen(expectedbuf), "%02x", origdest[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:931:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cf2.szFaceName, "Courier New"); data/wine-5.0/dlls/riched20/tests/editor.c:1003:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cf2.szFaceName, "Courier New"); data/wine-5.0/dlls/riched20/tests/editor.c:1655:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:1722:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:1806:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:1843:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:2052:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:2091:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, templates_delim[j], at_offset); data/wine-5.0/dlls/riched20/tests/editor.c:2142:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, templates_non_delim[j], at_offset); data/wine-5.0/dlls/riched20/tests/editor.c:2183:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, templates_xten_delim[j], at_offset); data/wine-5.0/dlls/riched20/tests/editor.c:2240:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, templates_neutral_delim[j], at_offset); data/wine-5.0/dlls/riched20/tests/editor.c:2449:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, templates_delim[j], at_offset); data/wine-5.0/dlls/riched20/tests/editor.c:2557:7: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "YY"); data/wine-5.0/dlls/riched20/tests/editor.c:2676:7: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "YY"); data/wine-5.0/dlls/riched20/tests/editor.c:3685:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*str, pbBuff, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:3715:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:3800:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*str, pbBuff, cb); data/wine-5.0/dlls/riched20/tests/editor.c:3825:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:3926:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:3978:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024], *p = buf; data/wine-5.0/dlls/riched20/tests/editor.c:4041:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufACP[MAX_BUF_LEN]; data/wine-5.0/dlls/riched20/tests/editor.c:4502:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[1024 + 1]; data/wine-5.0/dlls/riched20/tests/editor.c:4503:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024 + 1]; data/wine-5.0/dlls/riched20/tests/editor.c:4720:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, *str, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:4967:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[MAX_BUF_LEN] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:5003:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[32] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:5047:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:5431:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:5724:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (pbBuff, text, sizeof(text)); data/wine-5.0/dlls/riched20/tests/editor.c:5747:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, *str, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:5763:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, first, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:5767:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, second, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:5784:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, first, *written); data/wine-5.0/dlls/riched20/tests/editor.c:5790:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, second, *written); data/wine-5.0/dlls/riched20/tests/editor.c:5818:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, str->buffer, *pcb); data/wine-5.0/dlls/riched20/tests/editor.c:5831:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}, tmp[16]; data/wine-5.0/dlls/riched20/tests/editor.c:6117:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:6184:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[64]; data/wine-5.0/dlls/riched20/tests/editor.c:6343:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:6396:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:6947:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:8268:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2]; data/wine-5.0/dlls/riched20/tests/editor.c:8285:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(target + 2*i, "%02x", src[i] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:8313:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expectedbuf[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:8314:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resultbuf[1024]; data/wine-5.0/dlls/riched20/tests/editor.c:8317:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched20/tests/editor.c:8414:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/riched20/tests/richole.c:2388:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cf.szFaceName, "Arial"); data/wine-5.0/dlls/riched20/txtsrv.c:44:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char spare[256]; data/wine-5.0/dlls/riched20/undo.c:142:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( undo->u.insert_run.str, str, len * sizeof(WCHAR) ); data/wine-5.0/dlls/riched20/writer.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[STREAMOUT_BUFFER_SIZE]; data/wine-5.0/dlls/riched20/writer.c:126:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[STREAMOUT_BUFFER_SIZE]; /* This is going to be enough */ data/wine-5.0/dlls/riched20/writer.c:143:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[HEX_BYTES_PER_LINE * 2 + 1]; data/wine-5.0/dlls/riched20/writer.c:396:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char props[STREAMOUT_BUFFER_SIZE] = ""; data/wine-5.0/dlls/riched20/writer.c:398:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char sideChar[4] = {'t','l','b','r'}; data/wine-5.0/dlls/riched20/writer.c:408:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\trgaph%d", pFmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:410:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\trleft%d", pFmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:422:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\clbrdr%c", sideChar[i]); data/wine-5.0/dlls/riched20/writer.c:423:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrs"); data/wine-5.0/dlls/riched20/writer.c:424:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrw%d", borders[i]->width); data/wine-5.0/dlls/riched20/writer.c:426:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrcf%u", idx); data/wine-5.0/dlls/riched20/writer.c:429:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\cellx%d", cell->member.cell.nRightBoundary); data/wine-5.0/dlls/riched20/writer.c:441:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\trgaph%d", pFmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:443:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\trleft%d", pFmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:450:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\trbrdr%c", sideChar[i]); data/wine-5.0/dlls/riched20/writer.c:451:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrs"); data/wine-5.0/dlls/riched20/writer.c:452:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrw%d", borders[i]->width); data/wine-5.0/dlls/riched20/writer.c:454:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\brdrcf%u", idx); data/wine-5.0/dlls/riched20/writer.c:459:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\cellx%d", pFmt->rgxTabs[i] & 0x00FFFFFF); data/wine-5.0/dlls/riched20/writer.c:543:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char props[STREAMOUT_BUFFER_SIZE] = ""; data/wine-5.0/dlls/riched20/writer.c:597:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\intbl"); data/wine-5.0/dlls/riched20/writer.c:599:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\itap%d", pStream->nNestingLevel); data/wine-5.0/dlls/riched20/writer.c:602:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\intbl"); data/wine-5.0/dlls/riched20/writer.c:616:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\qr"); data/wine-5.0/dlls/riched20/writer.c:619:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\qc"); data/wine-5.0/dlls/riched20/writer.c:622:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\qj"); data/wine-5.0/dlls/riched20/writer.c:632:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\sl-240\\slmult1"); data/wine-5.0/dlls/riched20/writer.c:635:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\sl-360\\slmult1"); data/wine-5.0/dlls/riched20/writer.c:638:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\sl-480\\slmult1"); data/wine-5.0/dlls/riched20/writer.c:641:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\sl%d\\slmult0", fmt->dyLineSpacing); data/wine-5.0/dlls/riched20/writer.c:644:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\sl-%d\\slmult0", fmt->dyLineSpacing); data/wine-5.0/dlls/riched20/writer.c:647:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\sl-%d\\slmult1", fmt->dyLineSpacing * 240 / 20); data/wine-5.0/dlls/riched20/writer.c:653:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\hyph0"); data/wine-5.0/dlls/riched20/writer.c:655:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\keep"); data/wine-5.0/dlls/riched20/writer.c:657:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\keepn"); data/wine-5.0/dlls/riched20/writer.c:659:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\noline"); data/wine-5.0/dlls/riched20/writer.c:661:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\nowidctlpar"); data/wine-5.0/dlls/riched20/writer.c:663:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\pagebb"); data/wine-5.0/dlls/riched20/writer.c:665:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\rtlpar"); data/wine-5.0/dlls/riched20/writer.c:667:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\sbys"); data/wine-5.0/dlls/riched20/writer.c:673:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\li%d", fmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:675:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\fi%d", fmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:677:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\ri%d", fmt->dxRightIndent); data/wine-5.0/dlls/riched20/writer.c:679:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const leader[6] = { "", "\\tldot", "\\tlhyph", "\\tlul", "\\tlth", "\\tleq" }; data/wine-5.0/dlls/riched20/writer.c:684:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\tqc"); data/wine-5.0/dlls/riched20/writer.c:687:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\tqr"); data/wine-5.0/dlls/riched20/writer.c:690:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\tqdec"); data/wine-5.0/dlls/riched20/writer.c:698:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props+strlen(props), "\\tx%d", fmt->rgxTabs[i]&0x00FFFFFF); data/wine-5.0/dlls/riched20/writer.c:703:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\sa%d", fmt->dySpaceAfter); data/wine-5.0/dlls/riched20/writer.c:705:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\sb%d", fmt->dySpaceBefore); data/wine-5.0/dlls/riched20/writer.c:707:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\s%d", fmt->sStyle); data/wine-5.0/dlls/riched20/writer.c:710:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const style[16] = { "", "\\bgdkhoriz", "\\bgdkvert", "\\bgdkfdiag", data/wine-5.0/dlls/riched20/writer.c:716:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\shading%d", fmt->wShadingWeight); data/wine-5.0/dlls/riched20/writer.c:720:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\cfpat%d", (fmt->wShadingStyle >> 4) & 0xf); data/wine-5.0/dlls/riched20/writer.c:722:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\cbpat%d", (fmt->wShadingStyle >> 8) & 0xf); data/wine-5.0/dlls/riched20/writer.c:737:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char props[STREAMOUT_BUFFER_SIZE] = ""; data/wine-5.0/dlls/riched20/writer.c:771:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\highlight%u", i); data/wine-5.0/dlls/riched20/writer.c:778:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\cf%u", i); data/wine-5.0/dlls/riched20/writer.c:782:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\animtext%u", fmt->bAnimation); data/wine-5.0/dlls/riched20/writer.c:784:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\kerning%u", fmt->wKerning); data/wine-5.0/dlls/riched20/writer.c:790:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\noproof\\lang1024\\langnp1024\\langfe1024\\langfenp1024"); data/wine-5.0/dlls/riched20/writer.c:792:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\lang%u", LOWORD(fmt->lcid)); data/wine-5.0/dlls/riched20/writer.c:798:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\up%d", fmt->yOffset); data/wine-5.0/dlls/riched20/writer.c:800:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\dn%d", -fmt->yOffset); data/wine-5.0/dlls/riched20/writer.c:803:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\fs%d", fmt->yHeight / 10); data/wine-5.0/dlls/riched20/writer.c:805:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\expnd%u\\expndtw%u", fmt->sSpacing / 5, fmt->sSpacing); data/wine-5.0/dlls/riched20/writer.c:809:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\sub"); data/wine-5.0/dlls/riched20/writer.c:811:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\super"); data/wine-5.0/dlls/riched20/writer.c:813:7: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\nosupersub"); data/wine-5.0/dlls/riched20/writer.c:822:11: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\ul"); data/wine-5.0/dlls/riched20/writer.c:825:11: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\uld"); data/wine-5.0/dlls/riched20/writer.c:828:11: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\uldb"); data/wine-5.0/dlls/riched20/writer.c:831:11: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\ulw"); data/wine-5.0/dlls/riched20/writer.c:836:11: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(props, "\\ulnone"); data/wine-5.0/dlls/riched20/writer.c:846:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(props + strlen(props), "\\f%u", i); data/wine-5.0/dlls/riched20/writer.c:870:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[STREAMOUT_BUFFER_SIZE]; data/wine-5.0/dlls/riched20/writer.c:903:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char letter[3]; data/wine-5.0/dlls/riched20/writer.c:913:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf(buffer + pos, "\\u%d?", (short)*text); data/wine-5.0/dlls/riched20/writer.c:920:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf(buffer + pos, "\\'%02x", (BYTE)letter[i]); data/wine-5.0/dlls/riched32/tests/editor.c:109:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:176:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuff, *str, *pcb); data/wine-5.0/dlls/riched32/tests/editor.c:188:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:311:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*str, pbBuff, *pcb); data/wine-5.0/dlls/riched32/tests/editor.c:322:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:395:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[1024], origdest[1024]; data/wine-5.0/dlls/riched32/tests/editor.c:416:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gl_text[1024]; data/wine-5.0/dlls/riched32/tests/editor.c:547:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:1156:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(target + 2*i, "%02x", src[i] & 0xFF); data/wine-5.0/dlls/riched32/tests/editor.c:1182:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expectedbuf[1024]; data/wine-5.0/dlls/riched32/tests/editor.c:1183:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resultbuf[1024]; data/wine-5.0/dlls/riched32/tests/editor.c:1186:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:1356:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufA[MAX_BUF_LEN] = {0}; data/wine-5.0/dlls/riched32/tests/editor.c:1393:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[32] = {0}; data/wine-5.0/dlls/rpcrt4/cstub.c:231:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &block[i], opcodes, sizeof(opcodes) ); data/wine-5.0/dlls/rpcrt4/ndr_contexthandle.c:107:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pBuff, &che->wire_data, sizeof (ndr_context_handle)); data/wine-5.0/dlls/rpcrt4/ndr_es.c:348:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pEsMsg->StubMsg.Buffer, &client_interface->TransferSyntax, sizeof(RPC_SYNTAX_IDENTIFIER)); data/wine-5.0/dlls/rpcrt4/ndr_es.c:350:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pEsMsg->StubMsg.Buffer, &pEsMsg->InterfaceId, sizeof(RPC_SYNTAX_IDENTIFIER)); data/wine-5.0/dlls/rpcrt4/ndr_es.c:384:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pEsMsg->InterfaceId, pEsMsg->StubMsg.Buffer, sizeof(RPC_SYNTAX_IDENTIFIER)); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:745:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, pStubMsg->Buffer, size); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:760:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pStubMsg->Buffer, p, size); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:1791:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory, saved_buffer, size); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:2183:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory, saved_buffer, bufsize); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:2214:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory + offset, saved_buffer, bufsize); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:4821:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory, saved_buffer, pCStructFormat->memory_size + bufsize); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:5030:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory, saved_buffer, pCVStructFormat->memory_size); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:5033:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory + pCVStructFormat->memory_size + offset, data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:5261:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory, saved_buffer, total_size); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:5499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppMemory + offset, saved_buffer, bufsize); data/wine-5.0/dlls/rpcrt4/ndr_ole.c:139:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, This->data + This->pos, cb); data/wine-5.0/dlls/rpcrt4/ndr_ole.c:154:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data + This->pos, pv, cb); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:236:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[160]; data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:239:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.MustSize) strcat(buffer, " MustSize"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:240:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.MustFree) strcat(buffer, " MustFree"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:241:34: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsPipe) strcat(buffer, " IsPipe"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:242:32: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsIn) strcat(buffer, " IsIn"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:243:33: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsOut) strcat(buffer, " IsOut"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:244:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsReturn) strcat(buffer, " IsReturn"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:245:38: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsBasetype) strcat(buffer, " IsBasetype"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:246:37: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsByValue) strcat(buffer, " IsByValue"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:247:39: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsSimpleRef) strcat(buffer, " IsSimpleRef"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:248:46: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.IsDontCallFreeInst) strcat(buffer, " IsDontCallFreeInst"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:249:46: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (param_attributes.SaveForAsyncFinish) strcat(buffer, " SaveForAsyncFinish"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:251:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer + strlen(buffer), " ServerAllocSize = %d", param_attributes.ServerAllocSize * 8); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:257:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[160]; data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:260:34: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.ServerMustSize) strcat(buffer, " ServerMustSize"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:261:34: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.ClientMustSize) strcat(buffer, " ClientMustSize"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:262:29: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.HasReturn) strcat(buffer, " HasReturn"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:263:28: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.HasPipes) strcat(buffer, " HasPipes"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:264:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.Unused) strcat(buffer, " Unused"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:265:32: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.HasAsyncUuid) strcat(buffer, " HasAsyncUuid"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:266:33: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.HasExtensions) strcat(buffer, " HasExtensions"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:267:34: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (Oi2Flags.HasAsyncHandle) strcat(buffer, " HasAsyncHandle"); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:321:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pObject, pArg, pDesc->flag_and_size & 0xf); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:403:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pObject, pArg, pDesc->flag_and_size & 0xf); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:510:40: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memset( *(unsigned char **)pArg, 0, basetype_arg_size( params[i].u.type_format_char )); data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:1224:32: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. pArg, *(unsigned char **)pArg, data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:1658:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pStubMsg->StackTop, stack_top, async_call_data->stack_size); data/wine-5.0/dlls/rpcrt4/ndr_typelib.c:674:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str + *len + 2, iid, sizeof(*iid)); data/wine-5.0/dlls/rpcrt4/ndr_typelib.c:1189:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(type, tfs, tfs_size); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:53:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s, src, len); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:74:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:76:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, s, len); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:85:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src, slen, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:87:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, slen, s, len); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:99:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s, src, len*sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:318:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ndst+len+1, src, slen+1); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:332:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ndst+len+1, src, (slen+1)*sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1299:44: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cred_dst->UserLength = MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->User, cred_src->UserLength, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1300:46: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cred_dst->DomainLength = MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->Domain, cred_src->DomainLength, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1301:48: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cred_dst->PasswordLength = MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->Password, cred_src->PasswordLength, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1306:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->User, cred_src->UserLength, cred_dst->User, cred_dst->UserLength); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1307:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->Domain, cred_src->DomainLength, cred_dst->Domain, cred_dst->DomainLength); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1308:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)cred_src->Password, cred_src->PasswordLength, cred_dst->Password, cred_dst->PasswordLength); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1315:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(http_credentials_dst->AuthnSchemes, http_credentials_src->AuthnSchemes, http_credentials_src->NumberOfAuthnSchemes * sizeof(*http_credentials_dst->AuthnSchemes)); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1962:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, cookie->Buffer, cookie->BufferSize, NULL, 0); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:1966:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cookie->Buffer, cookie->BufferSize, str, len); data/wine-5.0/dlls/rpcrt4/rpc_binding.h:101:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char epm_protocols[2]; /* only floors 3 and 4. see http://www.opengroup.org/onlinepubs/9629399/apdxl.htm */ data/wine-5.0/dlls/rpcrt4/rpc_defs.h:32:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char drep[4]; /* Data representation */ data/wine-5.0/dlls/rpcrt4/rpc_defs.h:82:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char padding[3]; /* Force alignment! */ data/wine-5.0/dlls/rpcrt4/rpc_defs.h:92:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[ANYSIZE_ARRAY]; /* String data in single byte, null terminated form */ data/wine-5.0/dlls/rpcrt4/rpc_defs.h:105:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char reserved[3]; /* Force alignment! */ data/wine-5.0/dlls/rpcrt4/rpc_epmap.c:244:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&entries[i * UuidVector->Count].object, &UuidVector->Uuid[j], sizeof(GUID)); data/wine-5.0/dlls/rpcrt4/rpc_epmap.c:248:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entries[i].annotation, Annotation, data/wine-5.0/dlls/rpcrt4/rpc_epmap.c:390:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&entries[i * UuidVector->Count + j].object, &UuidVector->Uuid[j], sizeof(GUID)); data/wine-5.0/dlls/rpcrt4/rpc_message.c:148:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&header->request + 1, ObjectUuid, sizeof(UUID)); data/wine-5.0/dlls/rpcrt4/rpc_message.c:286:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&results->results[0], Results, ResultCount * sizeof(*Results)); data/wine-5.0/dlls/rpcrt4/rpc_message.c:811:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pkt, Header, hdr_size); data/wine-5.0/dlls/rpcrt4/rpc_message.c:817:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pkt + hdr_size, buffer_pos, Header->common.frag_len - hdr_size - auth_pad_len - alen); data/wine-5.0/dlls/rpcrt4/rpc_message.c:832:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(auth_hdr + 1, Auth, AuthLength); data/wine-5.0/dlls/rpcrt4/rpc_message.c:1319:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*Header, &common_hdr, sizeof(common_hdr)); data/wine-5.0/dlls/rpcrt4/rpc_message.c:1473:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((unsigned char *)pMsg->Buffer + buffer_length, payload, data_length); data/wine-5.0/dlls/rpcrt4/rpc_message.c:1488:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(auth_data, (unsigned char *)payload + data_length, header_auth_len); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:209:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char generated_endpoint[22]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:269:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char generated_endpoint[26]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:499:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tower_data, endpoint, endpoint_size); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:513:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tower_data, networkaddr, networkaddr_size); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:547:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*endpoint, tower_data, smb_floor->count_rhs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:578:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*networkaddr, tower_data, nb_floor->count_rhs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:797:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tower_data, endpoint, endpoint_size); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:831:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*endpoint, tower_data, pipe_floor->count_rhs); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1003:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(*endpoint, "%u", ntohs(tcp_floor->port)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1168:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[256]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1169:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service[256]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1244:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service[NI_MAXSERV]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1255:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[256]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1900:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, cred->Domain, cred->DomainLength * sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1905:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, cred->User, cred->UserLength * sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1977:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, httpc->common.NetworkAddr, -1, servername, strlen(httpc->common.NetworkAddr) + 1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2027:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, async_data->inet_buffers.lpvBuffer, data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2605:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(header, authW, auth_len * sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2607:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, scheme_str, scheme_len * sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2623:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2048]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2777:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url, wszRpcProxyPrefix, sizeof(wszRpcProxyPrefix)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2778:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Connection->NetworkAddr, -1, url+ARRAY_SIZE(wszRpcProxyPrefix)-1, data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2781:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, Connection->Endpoint, -1, url+lstrlenW(url), strlen(Connection->Endpoint)+1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2930:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*Header, &common_hdr, sizeof(common_hdr)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3537:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ps[0x10]; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3622:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (CHAR*)protseq_list[i].name, -1, data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:447:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&Uuid->Data4[2], address, ADDRESS_BYTES_NEEDED); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:521:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( (char*)*StringUuid, "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x", data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:540:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[37]; data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:544:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x", data/wine-5.0/dlls/rpcrt4/tests/cstub.c:78:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Format[ 2 ]; data/wine-5.0/dlls/rpcrt4/tests/cstub.c:84:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Format[ 2 ]; data/wine-5.0/dlls/rpcrt4/tests/cstub.c:1223:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[200]; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:508:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char wiredata[16]; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1079:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char wiredata[28]; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1168:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wiredata, &s1, wiredatalen); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wiredata + 4, &s1, wiredatalen); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1200:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wiredata + 16, &l, 4); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1201:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wiredata + 20, &c, 1); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1831:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[256]; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:1919:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char memsrc[20]; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2163:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char memsrc[10] = "This is"; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2164:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char memsrc2[10] = "This is a"; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2734:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[16]; data/wine-5.0/dlls/rpcrt4/tests/rpc.c:146:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferInvalid [1024]; data/wine-5.0/dlls/rpcrt4/tests/rpc.c:147:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer [1024]; /* The required size is not documented but would data/wine-5.0/dlls/rpcrt4/tests/rpc_async.c:30:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/rpcrt4/tests/server.c:518:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(x, c, sizeof(c)); data/wine-5.0/dlls/rpcrt4/tests/server.c:565:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int n = atoi(p); data/wine-5.0/dlls/rpcrt4/tests/server.c:574:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sum += atoi(p->ps[i]); data/wine-5.0/dlls/rpcrt4/tests/server.c:583:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sum += atoi(p->ps[i]); data/wine-5.0/dlls/rpcrt4/tests/server.c:594:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int n = atoi(tus->us.x); data/wine-5.0/dlls/rpcrt4/tests/server.c:768:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bstr, str, sizeof(str)); data/wine-5.0/dlls/rpcrt4/tests/server.c:775:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name->name, bossman, min(name->size, sizeof(bossman))); data/wine-5.0/dlls/rpcrt4/tests/server.c:787:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(list[0], "Hello"); data/wine-5.0/dlls/rpcrt4/tests/server.c:789:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(list[1], "World!"); data/wine-5.0/dlls/rpcrt4/tests/server.c:857:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[20]; data/wine-5.0/dlls/rpcrt4/tests/server.c:1098:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. make_cmdline(char buffer[MAX_PATH], const char *test) data/wine-5.0/dlls/rpcrt4/tests/server.c:1106:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/rpcrt4/tests/server.c:1387:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int n = atoi(*p); data/wine-5.0/dlls/rpcrt4/tests/server.c:1388:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, &n, sizeof n); data/wine-5.0/dlls/rpcrt4/tests/server.c:1396:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&n, buffer, sizeof n); data/wine-5.0/dlls/rpcrt4/tests/server.c:1398:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(*p, "%d", n); data/wine-5.0/dlls/rpcrt4/tests/server.c:1418:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). wus.x = atoi(pus->x); data/wine-5.0/dlls/rpcrt4/tests/server.c:1419:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, &wus, sizeof wus); data/wine-5.0/dlls/rpcrt4/tests/server.c:1427:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wus, buffer, sizeof wus); data/wine-5.0/dlls/rpcrt4/tests/server.c:1429:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pus->x, "%d", wus.x); data/wine-5.0/dlls/rpcrt4/tests/server.c:1450:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wb->data, *b, wb->n * sizeof wb->data[0]); data/wine-5.0/dlls/rpcrt4/tests/server.c:1460:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data[1], wb->data, wb->n * sizeof data[1]); data/wine-5.0/dlls/rpcrt4/tests/server.c:1634:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char str1[25] = "Hello"; data/wine-5.0/dlls/rpcrt4/tests/server.c:2248:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/rsaenh/des.c:54:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pc1[56] = { data/wine-5.0/dlls/rsaenh/des.c:61:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char totrot[16] = { data/wine-5.0/dlls/rsaenh/des.c:68:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pc2[48] = { data/wine-5.0/dlls/rsaenh/des.c:1288:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pc1m[56], pcr[56]; data/wine-5.0/dlls/rsaenh/des.c:1354:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(keyout, dough, sizeof dough); data/wine-5.0/dlls/rsaenh/handle.c:148:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newEntries, lpTable->paEntries, sizeof(struct handle_table_entry)*lpTable->iEntries); data/wine-5.0/dlls/rsaenh/implglue.c:149:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abKeyValue+16, abKeyValue, 8); data/wine-5.0/dlls/rsaenh/implglue.c:281:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in_reversed, in, inlen); data/wine-5.0/dlls/rsaenh/implglue.c:346:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbTemp, pbSrc, dwKeyLen); data/wine-5.0/dlls/rsaenh/implglue.c:421:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbTemp, pbSrc, min(dwDataLen, 2*dwKeyLen+5*((dwKeyLen+1)>>1))); data/wine-5.0/dlls/rsaenh/rc2.c:34:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char permute[256] = { data/wine-5.0/dlls/rsaenh/rc2.c:56:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp[128]; data/wine-5.0/dlls/rsaenh/rc4.c:63:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char key[256], tmp, *s; data/wine-5.0/dlls/rsaenh/rc4.c:68:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, s, 256); data/wine-5.0/dlls/rsaenh/rsaenh.c:405:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuffer, pbParam, dwParamSize); data/wine-5.0/dlls/rsaenh/rsaenh.c:475:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->pbData, src->pbData, src->cbData); data/wine-5.0/dlls/rsaenh/rsaenh.c:505:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->pbData, src1->pbData, src1->cbData); data/wine-5.0/dlls/rsaenh/rsaenh.c:506:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->pbData + src1->cbData, src2->pbData, src2->cbData); data/wine-5.0/dlls/rsaenh/rsaenh.c:578:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*dst)->pbInnerString, src->pbInnerString, src->cbInnerString); data/wine-5.0/dlls/rsaenh/rsaenh.c:588:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*dst)->pbOuterString, src->pbOuterString, src->cbOuterString); data/wine-5.0/dlls/rsaenh/rsaenh.c:676:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbTemp, pbData, dwDataLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:706:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abHashValue, pCryptHash->abHashValue, pCryptHash->dwHashSize); data/wine-5.0/dlls/rsaenh/rsaenh.c:1557:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abAi, pHMAC->abHashValue, pHMAC->dwHashSize); data/wine-5.0/dlls/rsaenh/rsaenh.c:1577:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abAi, pHMAC->abHashValue, pHMAC->dwHashSize); data/wine-5.0/dlls/rsaenh/rsaenh.c:1633:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pHalfSecret->abKeyValue, pSecret->abKeyValue, dwHalfSecretLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:1640:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pHalfSecret->abKeyValue, pSecret->abKeyValue + (pSecret->dwKeyLen/2), dwHalfSecretLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:1740:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbHashInput, pbSeed, dwSeedLength); data/wine-5.0/dlls/rsaenh/rsaenh.c:1828:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbDb + dwDbLen - dwDataLen, abData, dwDataLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:1842:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abBuffer, pbPadded, dwBufferLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:2011:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abBuffer, pbUnpaddedDb + dwHashLen + dwZeroCount + 1, dwMsgCount); data/wine-5.0/dlls/rsaenh/rsaenh.c:2226:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key_expansion, keyex, sizeof keyex ); data/wine-5.0/dlls/rsaenh/rsaenh.c:2234:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( master_secret, msec, sizeof msec ); data/wine-5.0/dlls/rsaenh/rsaenh.c:2245:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, abKeyValue, 48); data/wine-5.0/dlls/rsaenh/rsaenh.c:2546:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abChainVector, out, pCryptKey->dwBlockLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:2564:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in, out, pCryptKey->dwBlockLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:2675:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abChainVector, in, pCryptKey->dwBlockLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:2693:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in, out, pCryptKey->dwBlockLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:2883:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbKey, pCryptKey->abKeyValue, pCryptKey->dwKeyLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:3246:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, pbDecrypted, dwKeyLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:3297:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, pbKeyStream, *pKeyLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:3326:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, pbKeyStream, *pKeyLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:3737:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abInitVector, pbData, pCryptKey->dwBlockLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:3755:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue + pCryptKey->dwKeyLen, data/wine-5.0/dlls/rsaenh/rsaenh.c:3782:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue + pCryptKey->dwKeyLen, blob->pbData, data/wine-5.0/dlls/rsaenh/rsaenh.c:3835:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pCryptKey->siSChannelInfo.saEncAlg, pbData, sizeof(SCHANNEL_ALG)); data/wine-5.0/dlls/rsaenh/rsaenh.c:3839:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pCryptKey->siSChannelInfo.saMACAlg, pbData, sizeof(SCHANNEL_ALG)); data/wine-5.0/dlls/rsaenh/rsaenh.c:4133:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(provEnumalgs.szName, aProvEnumAlgsEx data/wine-5.0/dlls/rsaenh/rsaenh.c:4173:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (*pdwDataLen >= len) memcpy(pbData, sd, len); data/wine-5.0/dlls/rsaenh/rsaenh.c:4281:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(old_hashval, pCryptHash->abHashValue, RSAENH_MAX_HASH_SIZE); data/wine-5.0/dlls/rsaenh/rsaenh.c:4291:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abHashValue, pCryptHash->abHashValue, pCryptHash->dwHashSize); data/wine-5.0/dlls/rsaenh/rsaenh.c:4296:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abHashValue+pCryptHash->dwHashSize, pCryptHash->abHashValue, data/wine-5.0/dlls/rsaenh/rsaenh.c:4299:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptHash->abHashValue, old_hashval, RSAENH_MAX_HASH_SIZE); data/wine-5.0/dlls/rsaenh/rsaenh.c:4337:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, data/wine-5.0/dlls/rsaenh/rsaenh.c:4343:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abInitVector, data/wine-5.0/dlls/rsaenh/rsaenh.c:4356:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptKey->abKeyValue, data/wine-5.0/dlls/rsaenh/rsaenh.c:4525:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abKeyValue, pKey->abKeyValue, pKey->dwKeyLen); data/wine-5.0/dlls/rsaenh/rsaenh.c:4664:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCryptHash->abHashValue, pbData, pCryptHash->dwHashSize); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:43:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char origstr[32]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:44:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char decstr[32]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char guid[MAX_PATH]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[256]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:123:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(szTemp+6*j, "0x%02x, ", pbData[i]); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:301:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[2000]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:406:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char md2hash[16] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:409:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char md4hash[16] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:412:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char empty_md5hash[16] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:415:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char md5hash[16] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:418:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char sha1hash[20] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:432:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[2048]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:731:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abData, plain, sizeof(plain)); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:826:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[16], enc_data[16], bad_data[16]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:852:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:858:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(enc_data, pbData, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:878:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:883:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bad_data, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:894:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:915:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[16], enc_data[16], bad_data[16]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:956:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:962:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(enc_data, pbData, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:982:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:987:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bad_data, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:998:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1040:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[16], enc_data[16], bad_data[16]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1062:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1068:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(enc_data, pbData, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1088:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1093:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bad_data, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1104:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1125:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[48], enc_data[16], bad_data[16]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1162:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, aes_plain, dwLen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1197:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1203:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(enc_data, pbData, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1223:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1228:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bad_data, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1239:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbData, enc_data, cTestData[i].buflen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1257:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char sha256hash[32] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1263:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char sha384hash[48] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1270:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char sha512hash[64] = { data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1279:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[2048]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1384:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[2000], pbHashValue[16], pszBuffer[256]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1666:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[2000]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1667:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pszBuffer[256]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:2327:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abData, "Wine rocks!", dwLen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:2336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abData, "Wine rocks!", 12); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:2349:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abData, "Wine rocks!", dwLen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:2794:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_bytes, test_case->key, *key_len); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3058:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, test_string, strlen(test_string) + 1); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[MAX_PATH]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3269:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char container[MAX_PATH]; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3544:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pbData[128], dvData[512]; data/wine-5.0/dlls/rsaenh/tomcrypt.h:155:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[256]; data/wine-5.0/dlls/rtutils/tracing.c:53:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int lenW = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0); data/wine-5.0/dlls/rtutils/tracing.c:60:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, lenW); data/wine-5.0/dlls/sane.ds/capability.c:325:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char current_mode[64]; data/wine-5.0/dlls/sane.ds/capability.c:379:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mode, "Grayscale"); data/wine-5.0/dlls/sane.ds/capability.c:403:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mode, "Grayscale"); data/wine-5.0/dlls/sane.ds/capability.c:672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char option_name[64]; data/wine-5.0/dlls/sane.ds/capability.c:679:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(option_name, "tl-%c", cap == ICAP_PHYSICALHEIGHT ? 'y' : 'x'); data/wine-5.0/dlls/sane.ds/capability.c:684:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(option_name, "br-%c", cap == ICAP_PHYSICALHEIGHT ? 'y' : 'x'); data/wine-5.0/dlls/sane.ds/capability.c:1082:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(source, "ADF"); data/wine-5.0/dlls/sane.ds/capability.c:1086:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(source, "Auto"); data/wine-5.0/dlls/sane.ds/capability.c:1102:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(source, "Auto"); data/wine-5.0/dlls/sane.ds/sane_main.c:442:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(out + strlen(out), "(%04X)", signature % 0x10000); data/wine-5.0/dlls/sane.ds/ui.c:65:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,text,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:86:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ptr += MultiByteToWideChar(CP_ACP,0,text,-1,(LPWSTR)ptr,len) * sizeof(WCHAR); data/wine-5.0/dlls/sane.ds/ui.c:106:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,text,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:131:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ptr += MultiByteToWideChar(CP_ACP,0,text,-1,(LPWSTR)ptr,len) * sizeof(WCHAR); data/wine-5.0/dlls/sane.ds/ui.c:168:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,opt->title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:179:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%i",i); data/wine-5.0/dlls/sane.ds/ui.c:186:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:216:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%f",dd); data/wine-5.0/dlls/sane.ds/ui.c:223:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:260:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:266:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,opt->title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:274:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). local_len += MultiByteToWideChar(CP_ACP,0,opt->title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:330:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ptr += MultiByteToWideChar(CP_ACP,0,title,-1,(LPWSTR)ptr,local_len) * sizeof(WCHAR); data/wine-5.0/dlls/sane.ds/ui.c:351:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((LPBYTE)rc) + leading_len + local_len + padding + padding2, data/wine-5.0/dlls/sane.ds/ui.c:435:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(all_controls+control_len,item_tpl,len); data/wine-5.0/dlls/sane.ds/ui.c:448:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(all_controls,item_tpl,len); data/wine-5.0/dlls/sane.ds/ui.c:509:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr,all_controls,control_len); data/wine-5.0/dlls/sane.ds/ui.c:552:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP,0,opt->title,-1,NULL,0); data/wine-5.0/dlls/sane.ds/ui.c:554:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,opt->title,-1,title,len); data/wine-5.0/dlls/sane.ds/ui.c:575:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,activeDS.identity.Manufacturer,-1, data/wine-5.0/dlls/sane.ds/ui.c:578:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,activeDS.identity.ProductName,-1, data/wine-5.0/dlls/sane.ds/ui.c:819:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", opt->constraint.word_list[j]); data/wine-5.0/dlls/sane.ds/ui.c:823:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", val); data/wine-5.0/dlls/sane.ds/ui.c:1014:40: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (UpdateSaneIntOption(index, atoi(value))) data/wine-5.0/dlls/sapi/sapi_private.h:38:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, str, size ); data/wine-5.0/dlls/schedsvc/schedsvc.c:302:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(cp, 0, src, -1, NULL, 0); data/wine-5.0/dlls/schedsvc/schedsvc.c:305:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, src, -1, *xml, size); data/wine-5.0/dlls/schedsvc/schedsvc_private.h:41:34: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((dst = heap_alloc(len))) memcpy(dst, src, len); data/wine-5.0/dlls/schedsvc/tests/rpcapi.c:162:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml1, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/scrobj/scrobj.c:251:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/scrobj/scrobj.c:777:13: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(name, L"get_"); data/wine-5.0/dlls/scrobj/scrobj.c:782:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, L"put", 3 * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1329:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ret, str, len * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1420:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(factory->versioned_progid, factory->progid, (progid_len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:2529:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(key_name, L"CLSID\\"); data/wine-5.0/dlls/scrobj/scrobj.c:2532:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(p, L"\\ScriptletURL"); data/wine-5.0/dlls/scrobj/tests/scrobj.c:719:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, buffer, size); data/wine-5.0/dlls/scrobj/tests/scrobj.c:726:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/scrrun/filesystem.c:411:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, buf, buf_size, NULL, 0); data/wine-5.0/dlls/scrrun/filesystem.c:425:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_buf + stream->read_buf_size, buf, len * sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:427:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buf, buf_size, new_buf + stream->read_buf_size, len); data/wine-5.0/dlls/scrrun/filesystem.c:435:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/scrrun/filesystem.c:3312:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+beg, fdata.cFileName, exp_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3525:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, file, len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3538:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+len, ffd.cFileName, (name_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3584:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, folder, len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3600:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+len, ffd.cFileName, name_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3693:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_path, source, src_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3702:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_path, destination, dst_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3716:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_path+src_len, ffd.cFileName, (name_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3717:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_path+dst_len, ffd.cFileName, (name_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3761:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, destination, (dst_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3780:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, source, src_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3794:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src, source, src_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3818:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst+dst_len, ffd.cFileName, name_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/filesystem.c:3820:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src+src_len, ffd.cFileName, name_len*sizeof(WCHAR)); data/wine-5.0/dlls/scrrun/tests/filesystem.c:853:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/scrrun/tests/filesystem.c:855:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1563:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, utf16bom, -1, buffW, ARRAY_SIZE(buffW)); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1582:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[MAX_PATH]; data/wine-5.0/dlls/scrrun/tests/filesystem.c:1611:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, buffA, r, buffW, ARRAY_SIZE(buffW)); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1697:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, utf16bom, -1, buffW, ARRAY_SIZE(buffW)); data/wine-5.0/dlls/scrrun/tests/filesystem.c:1841:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, utf16bom, -1, buffW, ARRAY_SIZE(buffW)); data/wine-5.0/dlls/secur32/dispatcher.c:268:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, helper->com_buf, *buflen+1); data/wine-5.0/dlls/secur32/dispatcher.c:304:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[80]; data/wine-5.0/dlls/secur32/hmac_md5.c:27:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char inner_padding[64]; data/wine-5.0/dlls/secur32/hmac_md5.c:28:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char temp_key[16]; data/wine-5.0/dlls/secur32/hmac_md5.c:37:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp_key, temp_ctx.digest, 16); data/wine-5.0/dlls/secur32/hmac_md5.c:45:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(inner_padding, key, key_len); data/wine-5.0/dlls/secur32/hmac_md5.c:46:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->outer_padding, key, key_len); data/wine-5.0/dlls/secur32/hmac_md5.c:66:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char inner_digest[16]; data/wine-5.0/dlls/secur32/hmac_md5.c:69:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(inner_digest, ctx->ctx.digest, 16); data/wine-5.0/dlls/secur32/hmac_md5.c:76:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(digest, outer_ctx.digest, 16); data/wine-5.0/dlls/secur32/hmac_md5.h:31:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/secur32/hmac_md5.h:32:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/secur32/hmac_md5.h:38:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char outer_padding[64]; data/wine-5.0/dlls/secur32/lsa.c:238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(client, buf, size); data/wine-5.0/dlls/secur32/lsa.c:245:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, client, size); data/wine-5.0/dlls/secur32/lsa.c:353:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, principal, -1, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:355:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, principal, -1, principalW, len ); data/wine-5.0/dlls/secur32/lsa.c:359:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, package, -1, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:361:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, package, -1, packageW, len ); data/wine-5.0/dlls/secur32/lsa.c:372:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len_user = MultiByteToWideChar( CP_ACP, 0, (char *)id->User, id->UserLength, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:374:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (char *)id->User, id->UserLength, user, len_user ); data/wine-5.0/dlls/secur32/lsa.c:378:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len_domain = MultiByteToWideChar( CP_ACP, 0, (char *)id->Domain, id->DomainLength, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:380:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (char *)id->Domain, id->DomainLength, domain, len_domain ); data/wine-5.0/dlls/secur32/lsa.c:384:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len_passwd = MultiByteToWideChar( CP_ACP, 0, (char *)id->Password, id->PasswordLength, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:386:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (char *)id->Password, id->PasswordLength, passwd, len_passwd ); data/wine-5.0/dlls/secur32/lsa.c:489:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, target_name, -1, NULL, 0 ); data/wine-5.0/dlls/secur32/lsa.c:491:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, target_name, -1, targetW, len ); data/wine-5.0/dlls/secur32/negotiate.c:130:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int package_len = MultiByteToWideChar( CP_ACP, 0, pszPackage, -1, NULL, 0 ); data/wine-5.0/dlls/secur32/negotiate.c:132:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pszPackage, -1, package, package_len ); data/wine-5.0/dlls/secur32/negotiate.c:146:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). user_len = MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->User, data/wine-5.0/dlls/secur32/negotiate.c:149:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->User, identity->UserLength, data/wine-5.0/dlls/secur32/negotiate.c:155:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). domain_len = MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->Domain, data/wine-5.0/dlls/secur32/negotiate.c:158:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->Domain, identity->DomainLength, data/wine-5.0/dlls/secur32/negotiate.c:164:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). passwd_len = MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->Password, data/wine-5.0/dlls/secur32/negotiate.c:167:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPCSTR)identity->Password, identity->PasswordLength, data/wine-5.0/dlls/secur32/negotiate.c:272:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int target_len = MultiByteToWideChar( CP_ACP, 0, pszTargetName, -1, NULL, 0 ); data/wine-5.0/dlls/secur32/negotiate.c:274:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pszTargetName, -1, target, target_len ); data/wine-5.0/dlls/secur32/ntlm.c:98:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(user, username_arg, sizeof(username_arg) - 1); data/wine-5.0/dlls/secur32/ntlm.c:115:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(domain, domain_arg, sizeof(domain_arg) - 1); data/wine-5.0/dlls/secur32/ntlm.c:175:34: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). domain_len = MultiByteToWideChar(CP_ACP, 0, (char *)auth_data->Domain, data/wine-5.0/dlls/secur32/ntlm.c:178:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)auth_data->Domain, auth_data->DomainLength, data/wine-5.0/dlls/secur32/ntlm.c:183:32: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). user_len = MultiByteToWideChar(CP_ACP, 0, (char *)auth_data->User, data/wine-5.0/dlls/secur32/ntlm.c:186:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)auth_data->User, auth_data->UserLength, data/wine-5.0/dlls/secur32/ntlm.c:191:36: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). password_len = MultiByteToWideChar(CP_ACP, 0,(char *)auth_data->Password, data/wine-5.0/dlls/secur32/ntlm.c:194:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (char *)auth_data->Password, auth_data->PasswordLength, data/wine-5.0/dlls/secur32/ntlm.c:274:29: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int package_sizeW = MultiByteToWideChar(CP_ACP, 0, pszPackage, -1, NULL, 0); data/wine-5.0/dlls/secur32/ntlm.c:276:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszPackage, -1, package, package_sizeW); data/wine-5.0/dlls/secur32/ntlm.c:289:30: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). user_sizeW = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->User, id->UserLength, NULL, 0); data/wine-5.0/dlls/secur32/ntlm.c:291:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->User, id->UserLength, user, user_sizeW); data/wine-5.0/dlls/secur32/ntlm.c:297:32: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). domain_sizeW = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->Domain, id->DomainLength, NULL, 0); data/wine-5.0/dlls/secur32/ntlm.c:299:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->Domain, id->DomainLength, domain, domain_sizeW); data/wine-5.0/dlls/secur32/ntlm.c:305:32: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). passwd_sizeW = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->Password, id->PasswordLength, NULL, 0); data/wine-5.0/dlls/secur32/ntlm.c:307:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)id->Password, id->PasswordLength, passwd, passwd_sizeW); data/wine-5.0/dlls/secur32/ntlm.c:406:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszHostOnly, pszHost, (p - pszHost) * sizeof(WCHAR)); data/wine-5.0/dlls/secur32/ntlm.c:576:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). passwd_lenW = MultiByteToWideChar(CP_ACP, 0, data/wine-5.0/dlls/secur32/ntlm.c:581:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, password ? password : ntlm_cred->password, data/wine-5.0/dlls/secur32/ntlm.c:768:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bin, pInput->pBuffers[input_token_idx].pvBuffer, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:852:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOutput->pBuffers[token_idx].pvBuffer, bin, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:894:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(helper->session_key, bin, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:939:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int target_size = MultiByteToWideChar(CP_ACP, 0, pszTargetName, -1, NULL, 0); data/wine-5.0/dlls/secur32/ntlm.c:941:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszTargetName, -1, target, target_size); data/wine-5.0/dlls/secur32/ntlm.c:1094:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bin, pInput->pBuffers[0].pvBuffer, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:1148:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pOutput->pBuffers[0].pvBuffer, bin, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:1183:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bin, pInput->pBuffers[0].pvBuffer, bin_len); data/wine-5.0/dlls/secur32/ntlm.c:1286:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(helper->session_key, bin, 16); data/wine-5.0/dlls/secur32/ntlm.c:1405:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Name, info->Name, size_name ); data/wine-5.0/dlls/secur32/ntlm.c:1407:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Comment, info->Comment, size_comment ); data/wine-5.0/dlls/secur32/ntlm.c:1422:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Name, info->Name, size_name ); data/wine-5.0/dlls/secur32/ntlm.c:1424:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->Comment, info->Comment, size_comment ); data/wine-5.0/dlls/secur32/ntlm.c:1624:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sig+4, digest, 8); data/wine-5.0/dlls/secur32/ntlm.c:1626:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sig+12, seq_no, 4); data/wine-5.0/dlls/secur32/schannel.c:678:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff, b, local_len); data/wine-5.0/dlls/secur32/schannel.c:717:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(b, buff, local_len); data/wine-5.0/dlls/secur32/schannel.c:945:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, pszTargetName, -1, NULL, 0); data/wine-5.0/dlls/secur32/schannel.c:947:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszTargetName, -1, target_name, len); data/wine-5.0/dlls/secur32/schannel.c:1107:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, prefix, sizeof(prefix)-1); data/wine-5.0/dlls/secur32/schannel.c:1109:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, hash, hash_size); data/wine-5.0/dlls/secur32/schannel.c:1228:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, buffer->pvBuffer, data_size); data/wine-5.0/dlls/secur32/schannel.c:1388:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf_ptr + 5, data, received); data/wine-5.0/dlls/secur32/schannel_gnutls.c:206:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char priority[64]; data/wine-5.0/dlls/secur32/schannel_gnutls.c:241:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char priority[128] = "NORMAL:%LATEST_RECORD_VERSION", *p; data/wine-5.0/dlls/secur32/schannel_gnutls.c:259:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ":-VERS-ALL"); data/wine-5.0/dlls/secur32/schannel_gnutls.c:615:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/secur32/schannel_gnutls.c:622:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret + strlenW(ret), len); data/wine-5.0/dlls/secur32/schannel_gnutls.c:694:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, blob_out.pbData, blob_out.cbData); data/wine-5.0/dlls/secur32/secur32.c:196:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int charsNeeded = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/secur32/secur32.c:202:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, charsNeeded); data/wine-5.0/dlls/secur32/secur32.c:253:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fnTableA, inFnTableA, tableSize); data/wine-5.0/dlls/secur32/secur32.c:324:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fnTableW, inFnTableW, tableSize); data/wine-5.0/dlls/secur32/secur32.c:386:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info, inInfoW ? inInfoW : (const SecPkgInfoW *)inInfoA, sizeof(*info)); data/wine-5.0/dlls/secur32/secur32.c:834:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pkgInfo, &info[i], sizeof(SecPkgInfoA)); data/wine-5.0/dlls/secur32/secur32_priv.h:55:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char state[256]; data/wine-5.0/dlls/secur32/tests/main.c:76:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[20]; data/wine-5.0/dlls/secur32/tests/main.c:101:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%08x\n", status); data/wine-5.0/dlls/secur32/tests/negotiate.c:209:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( to->in_buf->pBuffers[0].pvBuffer, from->out_buf->pBuffers[0].pvBuffer, data/wine-5.0/dlls/secur32/tests/ntlm.c:210:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[20]; data/wine-5.0/dlls/secur32/tests/ntlm.c:236:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%08x\n", status); data/wine-5.0/dlls/secur32/tests/ntlm.c:556:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sspi_data->out_buf->pBuffers[0].pvBuffer, native_challenge, data/wine-5.0/dlls/secur32/tests/ntlm.c:562:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sspi_data->out_buf->pBuffers[0].pvBuffer, network_challenge, data/wine-5.0/dlls/secur32/tests/ntlm.c:583:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to->in_buf->pBuffers[0].pvBuffer, data/wine-5.0/dlls/secur32/tests/ntlm.c:1091:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data[1].pvBuffer, message, data[1].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1105:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data[0].pvBuffer, crypt_trailer_client, data[0].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1113:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data[0].pvBuffer, message_signature, data[0].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1154:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data[0].pvBuffer, crypt_trailer_server, data[0].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1155:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data[1].pvBuffer, crypt_message_server, data[1].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(complex_data[1].pvBuffer, message, complex_data[1].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1228:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(complex_data[1].pvBuffer, crypt_message_server2, complex_data[1].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1229:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(complex_data[3].pvBuffer, crypt_trailer_server2, complex_data[3].cbBuffer); data/wine-5.0/dlls/secur32/tests/ntlm.c:1472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char user[256]; data/wine-5.0/dlls/secur32/tests/schannel.c:101:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[12]; data/wine-5.0/dlls/secur32/tests/schannel.c:153:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%x", alg); data/wine-5.0/dlls/secur32/tests/schannel.c:969:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->pvBuffer, http_request, sizeof(http_request) - 1); data/wine-5.0/dlls/secur32/tests/secur32.c:65:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/secur32/tests/secur32.c:156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/secur32/thunks.c:380:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, infoW, sizeof(SecPkgInfoA)); data/wine-5.0/dlls/secur32/thunks.c:590:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nameLen = MultiByteToWideChar(CP_ACP, 0, infoA->Name, -1, data/wine-5.0/dlls/secur32/thunks.c:596:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). commentLen = MultiByteToWideChar(CP_ACP, 0, infoA->Comment, -1, data/wine-5.0/dlls/secur32/thunks.c:605:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, infoA, sizeof(SecPkgInfoA)); data/wine-5.0/dlls/secur32/thunks.c:609:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, infoA->Name, -1, nextString, data/wine-5.0/dlls/secur32/thunks.c:618:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, infoA->Comment, -1, nextString, data/wine-5.0/dlls/secur32/util.c:40:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/secur32/util.c:41:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/secur32/util.c:49:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char in[64]; data/wine-5.0/dlls/secur32/util.c:50:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char digest[16]; data/wine-5.0/dlls/secur32/util.c:71:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ntlm_hash, ctx.digest, 0x10); data/wine-5.0/dlls/secur32/util.c:77:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(session_key, ctx.digest, 0x10); data/wine-5.0/dlls/secur32/util.c:90:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(subkey, ctx.digest, 16); data/wine-5.0/dlls/secur32/wrapper.c:721:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppPackageInfo, &package->infoW, sizeof(package->infoW)); data/wine-5.0/dlls/serialui/confdlg.c:410:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/serialui/confdlg.c:412:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, strW, len ); data/wine-5.0/dlls/serialui/tests/confdlg.c:168:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, -1, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/serialui/tests/confdlg.c:349:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, -1, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/setupapi/devinst.c:1534:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/setupapi/devinst.c:1853:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, section, -1, sectionW, ARRAY_SIZE(sectionW)); data/wine-5.0/dlls/setupapi/devinst.c:2051:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, enumstr, -1, NULL, 0); data/wine-5.0/dlls/setupapi/devinst.c:2058:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, enumstr, -1, enumstrW, len); data/wine-5.0/dlls/setupapi/devinst.c:2085:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, enumstr, -1, NULL, 0); data/wine-5.0/dlls/setupapi/devinst.c:2092:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, enumstr, -1, enumstrW, len); data/wine-5.0/dlls/setupapi/devinst.c:2096:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, machine, -1, NULL, 0); data/wine-5.0/dlls/setupapi/devinst.c:2104:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, machine, -1, machineW, len); data/wine-5.0/dlls/setupapi/devinst.c:3419:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, instance_id, -1, instance_idW, ARRAY_SIZE(instance_idW)); data/wine-5.0/dlls/setupapi/devinst.c:3800:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, params->DriverPath, -1, paramsW.DriverPath, ARRAY_SIZE(paramsW.DriverPath)); data/wine-5.0/dlls/setupapi/dirid.c:155:56: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((str = HeapAlloc( GetProcessHeap(), 0, len ))) memcpy( str, buffer, len ); data/wine-5.0/dlls/setupapi/dirid.c:170:56: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((str = HeapAlloc( GetProcessHeap(), 0, len ))) memcpy( str, buffer, len ); data/wine-5.0/dlls/setupapi/dirid.c:292:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, dir, len ); data/wine-5.0/dlls/setupapi/diskspace.c:234:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, DriveSpec, -1, NULL, 0); data/wine-5.0/dlls/setupapi/diskspace.c:243:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, DriveSpec, -1, DriveSpecW, len); data/wine-5.0/dlls/setupapi/fakedll.c:284:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dos + 1, fakedll_signature, sizeof(fakedll_signature) ); data/wine-5.0/dlls/setupapi/fakedll.c:402:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy( buffer - len, str, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/fakedll.c:638:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos = MultiByteToWideChar( CP_UTF8, 0, arch->ptr, arch->len, buffer, size ); data/wine-5.0/dlls/setupapi/fakedll.c:640:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos += MultiByteToWideChar( CP_UTF8, 0, name->ptr, name->len, buffer + pos, size - pos ); data/wine-5.0/dlls/setupapi/fakedll.c:642:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos += MultiByteToWideChar( CP_UTF8, 0, key->ptr, key->len, buffer + pos, size - pos ); data/wine-5.0/dlls/setupapi/fakedll.c:644:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos += MultiByteToWideChar( CP_UTF8, 0, version->ptr, version->len, buffer + pos, size - pos ); data/wine-5.0/dlls/setupapi/fakedll.c:646:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pos += MultiByteToWideChar( CP_UTF8, 0, lang->ptr, lang->len, buffer + pos, size - pos ); data/wine-5.0/dlls/setupapi/fakedll.c:647:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer + pos, trailerW, sizeof(trailerW) ); data/wine-5.0/dlls/setupapi/fakedll.c:671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + pos, winsxsW, sizeof(winsxsW) ); data/wine-5.0/dlls/setupapi/fakedll.c:706:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + pos, winsxsW, sizeof(winsxsW) ); data/wine-5.0/dlls/setupapi/fakedll.c:791:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_buffer, manifest, arch.ptr - manifest ); data/wine-5.0/dlls/setupapi/fakedll.c:793:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_buffer + strlen(new_buffer), arch.ptr, len - (arch.ptr - manifest) ); data/wine-5.0/dlls/setupapi/fakedll.c:820:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar( CP_UTF8, 0, str, lenA, NULL, 0 ) + 1; data/wine-5.0/dlls/setupapi/fakedll.c:822:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, str, lenA, buffer, lenW ); data/wine-5.0/dlls/setupapi/fakedll.c:885:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( destname, name, (end - name) * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/install.c:251:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, strings, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/install.c:289:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/install.c:1254:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s, nt_platformW, sizeof(nt_platformW) ); data/wine-5.0/dlls/setupapi/install.c:1257:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s, nt_genericW, sizeof(nt_genericW) ); data/wine-5.0/dlls/setupapi/misc.c:238:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nLength = MultiByteToWideChar(uCodePage, 0, lpMultiByteStr, data/wine-5.0/dlls/setupapi/misc.c:247:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(uCodePage, 0, lpMultiByteStr, data/wine-5.0/dlls/setupapi/misc.c:878:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer1[2048]; data/wine-5.0/dlls/setupapi/misc.c:879:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer2[2048]; data/wine-5.0/dlls/setupapi/parser.c:350:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dirid_str, str, *len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:381:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, start, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:396:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, subst, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:407:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, start, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:998:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( codepage, 0, (char *)buffer + offset, data/wine-5.0/dlls/setupapi/parser.c:1072:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, dir, len1 * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:1300:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, file->sections[index]->name, len * sizeof(WCHAR) ); data/wine-5.0/dlls/setupapi/parser.c:1775:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char localbuff[20]; data/wine-5.0/dlls/setupapi/query.c:138:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, InfSpec, -1, NULL, 0); data/wine-5.0/dlls/setupapi/query.c:145:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, InfSpec, -1, inf, len); data/wine-5.0/dlls/setupapi/queue.c:192:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/setupapi/queue.c:225:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buffer, -1, (WCHAR *)old_param2, MAX_PATH ); data/wine-5.0/dlls/setupapi/queue.c:258:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/queue.c:270:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, (WCHAR *)param2, MAX_PATH); data/wine-5.0/dlls/setupapi/queue.c:638:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, src_rootA, -1, src_rootW, ARRAY_SIZE(src_rootW) ); data/wine-5.0/dlls/setupapi/queue.c:639:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, src_fileA, -1, src_fileW, ARRAY_SIZE(src_fileW) ); data/wine-5.0/dlls/setupapi/queue.c:640:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, dst_fileA, -1, dst_fileW, ARRAY_SIZE(dst_fileW) ); data/wine-5.0/dlls/setupapi/setupapi_private.h:59:60: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((ret = HeapAlloc( GetProcessHeap(), 0, len ))) memcpy( ret, str, len ); data/wine-5.0/dlls/setupapi/setupapi_private.h:81:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/setupapi/setupapi_private.h:83:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/setupapi/setupcab.c:426:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz3, -1, buf, MAX_PATH); data/wine-5.0/dlls/setupapi/setupcab.c:430:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz2, -1, buf2, MAX_PATH); data/wine-5.0/dlls/setupapi/setupcab.c:449:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz1, -1, buf2, MAX_PATH); data/wine-5.0/dlls/setupapi/setupcab.c:507:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz1, -1, phsc->most_recent_cabinet_name, MAX_PATH); data/wine-5.0/dlls/setupapi/setupcab.c:511:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz3, -1, buf, MAX_PATH); data/wine-5.0/dlls/setupapi/setupcab.c:515:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = 1 + MultiByteToWideChar(CP_ACP, 0, pfdin->psz2, -1, buf2, MAX_PATH); data/wine-5.0/dlls/setupapi/stringtable.c:234:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->data, src->data, src->allocated); data/wine-5.0/dlls/setupapi/stringtable.c:273:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extra, extraptr, extra_size); data/wine-5.0/dlls/setupapi/stringtable.c:322:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extra, get_extradata_ptr(table, offset), extra_size); data/wine-5.0/dlls/setupapi/stringtable.c:428:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(get_extradata_ptr(table, id), extra, extra_size); data/wine-5.0/dlls/setupapi/stringtable.c:495:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extraptr, extra, extra_size); data/wine-5.0/dlls/setupapi/tests/devinst.c:144:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char curr[MAX_PATH] = { 0 }; data/wine-5.0/dlls/setupapi/tests/devinst.c:145:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:164:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfile[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:164:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char tmpfile[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:177:5: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). tmpfile[0] = '.'; data/wine-5.0/dlls/setupapi/tests/devinst.c:178:5: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). tmpfile[1] = '\\'; data/wine-5.0/dlls/setupapi/tests/devinst.c:201:38: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ret = SetupDiInstallClassA(NULL, tmpfile, 0, NULL); data/wine-5.0/dlls/setupapi/tests/devinst.c:206:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/setupapi/tests/devinst.c:212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[50]; data/wine-5.0/dlls/setupapi/tests/devinst.c:239:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[MAX_DEVICE_ID_LEN + 2]; data/wine-5.0/dlls/setupapi/tests/devinst.c:357:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(id, "Root\\LEGACY_BOGUS\\", strlen("Root\\LEGACY_BOGUS\\")); data/wine-5.0/dlls/setupapi/tests/devinst.c:734:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[200]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1060:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1268:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driver_path[50], data[4]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1818:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cn[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1819:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1963:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[50]; data/wine-5.0/dlls/setupapi/tests/devinst.c:1987:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5]; data/wine-5.0/dlls/setupapi/tests/devinst.c:2084:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(params.DriverPath, "C:\\windows"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2147:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inf_path[MAX_PATH], section[LINE_LEN], *extptr; data/wine-5.0/dlls/setupapi/tests/devinst.c:2153:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf_path, "setupapi_test.inf"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inf_dir[MAX_PATH], inf_path[MAX_PATH], inf_path2[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/devinst.c:2314:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf_path, "setupapi_test.inf"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2384:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf_dir, "setupapi_test"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2497:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regdata[200]; data/wine-5.0/dlls/setupapi/tests/devinst.c:2507:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll,class_success"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2555:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll,class_error"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2583:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll,class_default"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2609:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2639:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regdata[200]; data/wine-5.0/dlls/setupapi/tests/devinst.c:2647:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll,co_success"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2701:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll,co_error"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2726:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(regdata, "winetest_coinst.dll"); data/wine-5.0/dlls/setupapi/tests/devinst.c:2814:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[50]; data/wine-5.0/dlls/setupapi/tests/dialog.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/dialog.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char CURR_DIR[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:235:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:236:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:312:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cmdline, -1, cmdlinew, MAX_PATH*2); data/wine-5.0/dlls/setupapi/tests/install.c:333:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:369:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:399:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:438:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inf[2048]; data/wine-5.0/dlls/setupapi/tests/install.c:439:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:445:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(inf, "[Version]\nSignature=\"$Chicago$\"\n"); data/wine-5.0/dlls/setupapi/tests/install.c:460:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "[Winetest.Services]\n"); data/wine-5.0/dlls/setupapi/tests/install.c:472:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "AddService=Winetest,,Winetest.Service\n"); data/wine-5.0/dlls/setupapi/tests/install.c:484:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "[Winetest.Service]\n"); data/wine-5.0/dlls/setupapi/tests/install.c:496:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "ServiceBinary=%12%\\winetest.sys\n"); data/wine-5.0/dlls/setupapi/tests/install.c:508:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "ServiceType=1\n"); data/wine-5.0/dlls/setupapi/tests/install.c:520:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "StartType=4\n"); data/wine-5.0/dlls/setupapi/tests/install.c:532:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "ErrorControl=1"); data/wine-5.0/dlls/setupapi/tests/install.c:563:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(inf, "[Version]\nSignature=\"$Chicago$\"\n"); data/wine-5.0/dlls/setupapi/tests/install.c:564:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "[XSP.InstallPerVer]\n"); data/wine-5.0/dlls/setupapi/tests/install.c:565:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "AddReg=AspEventlogMsg.Reg,Perf.Reg,AspVersions.Reg,FreeADO.Reg,IndexServer.Reg\n"); data/wine-5.0/dlls/setupapi/tests/install.c:577:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(inf, "[Version]\nSignature=\"$Chicago$\"\n"); data/wine-5.0/dlls/setupapi/tests/install.c:578:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "[Winetest.Services]\n"); data/wine-5.0/dlls/setupapi/tests/install.c:579:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inf, "AddService=,2\n"); data/wine-5.0/dlls/setupapi/tests/install.c:599:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], windir[MAX_PATH], driver[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:668:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], commonprogs[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:734:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH] = { 0 }; data/wine-5.0/dlls/setupapi/tests/install.c:735:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dir[MAX_PATH], *p; data/wine-5.0/dlls/setupapi/tests/install.c:797:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dirA[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:838:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, dirA, -1, dir, MAX_PATH); data/wine-5.0/dlls/setupapi/tests/install.c:842:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "\\not_existent", -1, ptr, MAX_PATH - lstrlenW(dir)); data/wine-5.0/dlls/setupapi/tests/install.c:858:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, invalid_inf, -1, ptr+1, MAX_PATH - lstrlenW(dir)); data/wine-5.0/dlls/setupapi/tests/install.c:949:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(dirid_inf)+11]; data/wine-5.0/dlls/setupapi/tests/install.c:950:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], actual[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:984:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expected[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:994:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expected, "\\unknown"); data/wine-5.0/dlls/setupapi/tests/install.c:1030:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:1255:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src\\alpha"); data/wine-5.0/dlls/setupapi/tests/install.c:1259:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src\\alpha"); data/wine-5.0/dlls/setupapi/tests/install.c:1263:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src"); data/wine-5.0/dlls/setupapi/tests/install.c:1278:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src\\alpha"); data/wine-5.0/dlls/setupapi/tests/install.c:1288:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src"); data/wine-5.0/dlls/setupapi/tests/install.c:1291:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src"); data/wine-5.0/dlls/setupapi/tests/install.c:1303:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src\\alpha"); data/wine-5.0/dlls/setupapi/tests/install.c:1309:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "fake2"); data/wine-5.0/dlls/setupapi/tests/install.c:1311:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "src\\alpha"); data/wine-5.0/dlls/setupapi/tests/install.c:1352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:1451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/install.c:2045:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH], prev_path[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char expect[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:84:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(expect, "\\inf\\"); data/wine-5.0/dlls/setupapi/tests/misc.c:131:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH * 2], dest[MAX_PATH], tmpfile[MAX_PATH], orig_dest[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:131:46: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char path[MAX_PATH * 2], dest[MAX_PATH], tmpfile[MAX_PATH], orig_dest[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:132:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *filepart, pnf[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:170:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\nonexistent"); data/wine-5.0/dlls/setupapi/tests/misc.c:177:23: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). get_temp_filename(tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:178:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). create_file(tmpfile, inf_data1); data/wine-5.0/dlls/setupapi/tests/misc.c:182:28: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). res = SetupCopyOEMInfA(tmpfile, NULL, 0, SP_COPY_NOOVERWRITE, NULL, 0, NULL, NULL); data/wine-5.0/dlls/setupapi/tests/misc.c:191:20: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:196:20: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ok(file_exists(tmpfile), "Expected tmpfile to exist\n"); data/wine-5.0/dlls/setupapi/tests/misc.c:204:20: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ok(file_exists(tmpfile), "Expected source inf to exist\n"); data/wine-5.0/dlls/setupapi/tests/misc.c:209:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcat(path, tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:215:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:243:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dest, "aaa"); data/wine-5.0/dlls/setupapi/tests/misc.c:258:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dest, "aaa"); data/wine-5.0/dlls/setupapi/tests/misc.c:301:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). create_file(tmpfile, inf_data1); data/wine-5.0/dlls/setupapi/tests/misc.c:309:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). create_file(tmpfile, inf_data2); data/wine-5.0/dlls/setupapi/tests/misc.c:334:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(orig_dest, "\\inf\\"); data/wine-5.0/dlls/setupapi/tests/misc.c:335:23: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcat(orig_dest, tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:336:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). res = CopyFileA(tmpfile, orig_dest, TRUE); data/wine-5.0/dlls/setupapi/tests/misc.c:346:51: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ok(res, "Failed to delete '%s', error %u.\n", tmpfile, GetLastError()); data/wine-5.0/dlls/setupapi/tests/misc.c:348:23: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). res = DeleteFileA(tmpfile); data/wine-5.0/dlls/setupapi/tests/misc.c:349:51: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ok(res, "Failed to delete '%s', error %u.\n", tmpfile, GetLastError()); data/wine-5.0/dlls/setupapi/tests/misc.c:436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], temp[MAX_PATH], *name; data/wine-5.0/dlls/setupapi/tests/misc.c:478:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], temp[MAX_PATH], name[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/misc.c:542:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], target[MAX_PATH], temp[MAX_PATH], *p; data/wine-5.0/dlls/setupapi/tests/parser.c:87:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_INF_STRING_LENGTH+32]; data/wine-5.0/dlls/setupapi/tests/parser.c:94:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_INF_STRING_LENGTH+32]; data/wine-5.0/dlls/setupapi/tests/parser.c:268:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/setupapi/tests/parser.c:313:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *fields[10]; data/wine-5.0/dlls/setupapi/tests/parser.c:413:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_INF_STRING_LENGTH+32]; data/wine-5.0/dlls/setupapi/tests/parser.c:644:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_INF_STRING_LENGTH]; data/wine-5.0/dlls/setupapi/tests/parser.c:694:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_INF_STRING_LENGTH]; data/wine-5.0/dlls/setupapi/tests/query.c:312:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH] = "not empty", inf_filename[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/query.c:360:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], inf_filename[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/query.c:406:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH], inf_filename[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/query.c:407:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char destfile[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/setupcab.c:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], temp[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/setupcab.c:242:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], temp[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/setupcab.c:341:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_PATH], temp[MAX_PATH]; data/wine-5.0/dlls/setupapi/tests/stringtable.c:229:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4]; data/wine-5.0/dlls/setupx.dll16/infparse.c:101:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *get_string_subst( HINF hinf, const char *str, unsigned int *len, data/wine-5.0/dlls/setupx.dll16/infparse.c:101:55: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *get_string_subst( HINF hinf, const char *str, unsigned int *len, data/wine-5.0/dlls/setupx.dll16/infparse.c:102:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char subst[MAX_INF_STRING_LENGTH], BOOL no_trailing_slash ) data/wine-5.0/dlls/setupx.dll16/infparse.c:107:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_INF_STRING_LENGTH]; data/wine-5.0/dlls/setupx.dll16/infparse.c:114:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, str, *len ); data/wine-5.0/dlls/setupx.dll16/infparse.c:141:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_INF_STRING_LENGTH]; data/wine-5.0/dlls/setupx.dll16/infparse.c:151:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, start, len ); data/wine-5.0/dlls/setupx.dll16/infparse.c:166:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, subst, len ); data/wine-5.0/dlls/setupx.dll16/infparse.c:177:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer) memcpy( buffer + total, start, len ); data/wine-5.0/dlls/setupx.dll16/setupx16.h:501:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[LINE_LEN]; data/wine-5.0/dlls/setupx.dll16/setupx16.h:504:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szRegSubkey[MAX_DEVNODE_ID_LEN]; data/wine-5.0/dlls/setupx.dll16/setupx16.h:505:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szClassName[MAX_CLASS_NAME_LEN]; data/wine-5.0/dlls/setupx.dll16/setupx16.h:535:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szClassGUID[MAX_GUID_STR]; data/wine-5.0/dlls/setupx.dll16/setupx_main.c:299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/setupx.dll16/setupx_main.c:323:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "X:\\FIXME"); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:333:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "C:\\"); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:437:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pldd, pCurr->pldd, pldd->cbSize); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:564:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pldd, pCurr->pldd, pldd->cbSize); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:389:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_PATH]; /* FIXME: is this how it's done ? */ data/wine-5.0/dlls/setupx.dll16/virtcopy.c:412:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Unknown error"); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:437:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fn_src[MAX_PATH], fn_dst[MAX_PATH]; data/wine-5.0/dlls/setupx.dll16/virtcopy.c:530:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char BackupDir[12]; data/wine-5.0/dlls/setupx.dll16/virtcopy.c:609:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; /* plenty */ data/wine-5.0/dlls/setupx.dll16/virtcopy.c:647:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(BackupDir, "VCM"); data/wine-5.0/dlls/shcore/main.c:805:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->u.mem.buffer, data, data_len); data/wine-5.0/dlls/shcore/main.c:950:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[1024]; data/wine-5.0/dlls/shcore/main.c:1016:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(statstg->pwcsName, stream->u.file.path, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shcore/main.c:1026:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&statstg->clsid, &IID_IStream, sizeof(CLSID)); data/wine-5.0/dlls/shcore/main.c:1127:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream->u.file.path, path, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shcore/main.c:1164:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/shcore/main.c:1169:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, pathW, len); data/wine-5.0/dlls/shcore/main.c:1665:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*dest, src, len); data/wine-5.0/dlls/shcore/main.c:1682:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/shcore/main.c:1687:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, *dest, len); data/wine-5.0/dlls/shcore/main.c:1769:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, src, -1, dest, dest_len); data/wine-5.0/dlls/shcore/main.c:2088:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, buff, length); data/wine-5.0/dlls/shcore/main.c:2136:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, buff, length); data/wine-5.0/dlls/shcore/tests/shcore.c:56:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char test_exp_path1[MAX_PATH]; data/wine-5.0/dlls/shcore/tests/shcore.c:57:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char test_exp_path2[MAX_PATH]; data/wine-5.0/dlls/shcore/tests/shcore.c:171:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/shcore/tests/shcore.c:177:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abc"); data/wine-5.0/dlls/shcore/tests/shcore.c:188:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "test"); data/wine-5.0/dlls/shcore/tests/shcore.c:258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/shcore/tests/shcore.c:264:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abcdefghijklm"); data/wine-5.0/dlls/shcore/tests/shcore.c:270:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abcdefghijklm"); data/wine-5.0/dlls/shcore/tests/shcore.c:276:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abcdefghijklm"); data/wine-5.0/dlls/shcore/tests/shcore.c:282:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abcdefghijklm"); data/wine-5.0/dlls/shcore/tests/shcore.c:288:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "abcdefghijklm"); data/wine-5.0/dlls/shcore/tests/shcore.c:432:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shcore/tests/shcore.c:460:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[MAX_PATH]; data/wine-5.0/dlls/shcore/tests/shcore.c:499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shcore/tests/shcore.c:623:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shdocvw/shdocvw_main.c:126:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szCommandLine, -1, NULL, 0); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:130:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szCommandLine, -1, cmdline, len); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:437:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, url, -1, NULL, 0); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:439:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url, -1, urlW, len); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:494:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, url, -1, NULL, 0); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:496:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url, -1, urlW, len); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:581:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, initDir, -1, NULL, 0); data/wine-5.0/dlls/shdocvw/shdocvw_main.c:583:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, initDir, -1, initDirW, len); data/wine-5.0/dlls/shdocvw/tests/shdocvw.c:302:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ParseURL_table[0].url, -1, urlW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/shdocvw/tests/shdocvw.c:306:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, -1, bufferW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/shdocvw/tests/shdocvw.c:323:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, -1, bufferW, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/shell.dll16/shell.c:206:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p,&lpDropFileStruct->ptMousePos,sizeof(POINT16)); data/wine-5.0/dlls/shell.dll16/shell.c:435:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer + bufCnt, lpKey, l); data/wine-5.0/dlls/shell.dll16/shell.c:441:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer + bufCnt, lpstr, envKeyLen + 2); data/wine-5.0/dlls/shell.dll16/shell.c:449:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str,lpBuffer, bufCnt); data/wine-5.0/dlls/shell.dll16/shell.c:648:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sCmd[MAX_PATH]; data/wine-5.0/dlls/shell32/assoc.c:435:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, data, datalen); data/wine-5.0/dlls/shell32/assoc.c:477:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, data, len*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/autocomplete.c:376:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, str, str_len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/autocomplete.c:539:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, text, len * sizeof(*tmp)); data/wine-5.0/dlls/shell32/autocomplete.c:540:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp[len], &str[len], (size - len) * sizeof(*tmp)); data/wine-5.0/dlls/shell32/autocomplete.c:1099:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, pwzsRegKeyPath, len * sizeof(*key)); data/wine-5.0/dlls/shell32/autocomplete.c:1132:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->quickComplete, pwszQuickComplete, len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/autocomplete.c:1249:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppwszString, str, size); data/wine-5.0/dlls/shell32/brsfolder.c:598:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_path, old_path, (p-new_path)*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/brsfolder.c:1011:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ((length = MultiByteToWideChar(CP_ACP, 0, selection, -1, NULL, 0)) && data/wine-5.0/dlls/shell32/brsfolder.c:1013:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, selection, -1, selectionW, length)) data/wine-5.0/dlls/shell32/brsfolder.c:1194:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpbi->lpszTitle, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/brsfolder.c:1196:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpbi->lpszTitle, -1, title, len ); data/wine-5.0/dlls/shell32/changenotify.c:390:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(notification->data, Pidls[0], size1); data/wine-5.0/dlls/shell32/changenotify.c:392:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(notification->data+offset, Pidls[1], size2); data/wine-5.0/dlls/shell32/classes.c:89:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[MAX_EXTENSION_LENGTH + 2]; data/wine-5.0/dlls/shell32/classes.c:212:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char xriid[50]; data/wine-5.0/dlls/shell32/classes.c:213:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( xriid, "CLSID\\{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}", data/wine-5.0/dlls/shell32/classes.c:250:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/classes.c:251:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sNum[5]; data/wine-5.0/dlls/shell32/classes.c:261:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *picon_idx=atoi(sNum); data/wine-5.0/dlls/shell32/classes.c:300:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/classes.c:442:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&wszShellFolderKey[6], pwszCLSID, 38 * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/clipboard.c:139:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((LPBYTE)pcida)+offset, pidlRoot, sizePidl); data/wine-5.0/dlls/shell32/clipboard.c:146:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((LPBYTE)pcida)+offset, apidl[i], sizePidl); data/wine-5.0/dlls/shell32/clipboard.c:157:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[MAX_PATH], *szFileName; data/wine-5.0/dlls/shell32/clipboard.c:180:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szFileName, szTemp, size); data/wine-5.0/dlls/shell32/clipboard.c:212:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szFileName, szTemp, size); data/wine-5.0/dlls/shell32/control.c:157:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(applet->info[i].name, newinfo.szName, sizeof(newinfo.szName)); data/wine-5.0/dlls/shell32/control.c:159:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(applet->info[i].info, newinfo.szInfo, sizeof(newinfo.szInfo)); data/wine-5.0/dlls/shell32/control.c:160:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(applet->info[i].helpfile, newinfo.szHelpFile, sizeof(newinfo.szHelpFile)); data/wine-5.0/dlls/shell32/control.c:165:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, infoA->szName, ARRAY_SIZE(infoA->szName), data/wine-5.0/dlls/shell32/control.c:168:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, infoA->szInfo, ARRAY_SIZE(infoA->szInfo), data/wine-5.0/dlls/shell32/control.c:170:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, infoA->szHelpFile, ARRAY_SIZE(infoA->szHelpFile), data/wine-5.0/dlls/shell32/control.c:842:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, cmd, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/control.c:844:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (wszCmd && MultiByteToWideChar(CP_ACP, 0, cmd, -1, wszCmd, len )) data/wine-5.0/dlls/shell32/cpanelfolder.c:259:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pidl->mkid.abID, &tmp, 2+size0); data/wine-5.0/dlls/shell32/cpanelfolder.c:299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char displayName[MAX_PATH]; data/wine-5.0/dlls/shell32/cpanelfolder.c:300:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comment[MAX_PATH]; data/wine-5.0/dlls/shell32/cpanelfolder.c:304:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, MAX_PATH); data/wine-5.0/dlls/shell32/cpanelfolder.c:335:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/shell32/cpanelfolder.c:336:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value[MAX_PATH]; data/wine-5.0/dlls/shell32/cpanelfolder.c:364:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/shell32/cpanelfolder.c:415:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "*.cpl"); data/wine-5.0/dlls/shell32/cpanelfolder.c:931:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pcpanel->szName, -1, szIconFile, cchMax); data/wine-5.0/dlls/shell32/cpanelfolder.c:996:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). l = MultiByteToWideChar(CP_ACP, 0, pcpanel->szName, -1, path+1, MAX_PATH-1); data/wine-5.0/dlls/shell32/cpanelfolder.c:1002:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pcpanel->szName+pcpanel->offsDispName, -1, params, MAX_PATH); data/wine-5.0/dlls/shell32/cpanelfolder.c:1066:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/dataobject.c:186:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ef->pFmt, afmt, size); data/wine-5.0/dlls/shell32/dataobject.c:290:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[256]; data/wine-5.0/dlls/shell32/debughlp.c:250:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( szOut, "{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}", data/wine-5.0/dlls/shell32/debughlp.c:284:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[MAX_PATH]; data/wine-5.0/dlls/shell32/debughlp.c:301:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[MAX_PATH]; data/wine-5.0/dlls/shell32/debughlp.c:329:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szHex[max_line*3+1], szAscii[max_line+1]; data/wine-5.0/dlls/shell32/debughlp.c:337:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( &szHex[ (i%max_line)*3 ], "%02X ", p[i] ); data/wine-5.0/dlls/shell32/debughlp.c:421:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clsidbuf[100]; data/wine-5.0/dlls/shell32/dialogs.c:454:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpstrTitle, -1, title, MAX_PATH); data/wine-5.0/dlls/shell32/dialogs.c:456:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpstrDescription, -1, description, MAX_PATH); data/wine-5.0/dlls/shell32/dialogs.c:458:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, lpstrDirectory, -1, directory, MAX_PATH)) data/wine-5.0/dlls/shell32/folders.c:195:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/folders.c:307:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, sTemp, -1, szIconFile, cchMax); data/wine-5.0/dlls/shell32/folders.c:441:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, pszFile, -1, NULL, 0); data/wine-5.0/dlls/shell32/folders.c:446:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszFile, -1, lpwstrFile, len); data/wine-5.0/dlls/shell32/iconcache.c:135:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( file, found->sSourceFile, needed ); data/wine-5.0/dlls/shell32/iconcache.c:760:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, szPath, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/iconcache.c:762:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, szPath, -1, szTemp, len ); data/wine-5.0/dlls/shell32/iconcache.c:804:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, lpszFile, -1, NULL, 0); data/wine-5.0/dlls/shell32/iconcache.c:811:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszFile, -1, lpwstrFile, len); data/wine-5.0/dlls/shell32/iconcache.c:827:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, lpIconPath, -1, NULL, 0); data/wine-5.0/dlls/shell32/iconcache.c:839:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpIconPath, -1, lpIconPathW, len); data/wine-5.0/dlls/shell32/iconcache.c:910:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar( CP_ACP, 0, lpIconPath, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/iconcache.c:915:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpIconPath, -1, lpwstrFile, len ); data/wine-5.0/dlls/shell32/iconcache.c:957:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, pszIconFile, -1, NULL, 0); data/wine-5.0/dlls/shell32/iconcache.c:962:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszIconFile, -1, lpwstrFile, len); data/wine-5.0/dlls/shell32/pidl.c:242:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newpidl,pidl,len); data/wine-5.0/dlls/shell32/pidl.c:270:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pidlNew,pidl,len+2); /* 2 -> mind a desktop pidl */ data/wine-5.0/dlls/shell32/pidl.c:389:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, path, -1, lpszDisplayName, MAX_PATH)) data/wine-5.0/dlls/shell32/pidl.c:474:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newpidl,pidl,len); data/wine-5.0/dlls/shell32/pidl.c:488:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData1[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData2[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:551:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData1[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:552:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData2[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:605:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData1[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szData2[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:697:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pidlNew,pidl1,len1); data/wine-5.0/dlls/shell32/pidl.c:698:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((BYTE *)pidlNew)+len1,pidl2,len2); data/wine-5.0/dlls/shell32/pidl.c:1065:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszPath, -1, NULL, 0); data/wine-5.0/dlls/shell32/pidl.c:1067:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszPath, -1, wPath, len); data/wine-5.0/dlls/shell32/pidl.c:1194:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). else if (!MultiByteToWideChar(CP_ACP, 0, filename, -1, pfd->cFileName, MAX_PATH)) data/wine-5.0/dlls/shell32/pidl.c:1199:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). else if (!MultiByteToWideChar(CP_ACP, 0, shortname, -1, pfd->cAlternateFileName, 14)) data/wine-5.0/dlls/shell32/pidl.c:1676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[MAX_PATH + 14 +1]; /* see WIN32_FIND_DATA */ data/wine-5.0/dlls/shell32/pidl.c:1706:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fs->szNames, buff, alen); data/wine-5.0/dlls/shell32/pidl.c:1712:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fsw->wszName, wfd->cFileName, wlen * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/pidl.c:1755:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pszDest, "x:\\"); data/wine-5.0/dlls/shell32/pidl.c:1775:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pData->u.network.szNames, "Entire Network"); data/wine-5.0/dlls/shell32/pidl.c:1930:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:2041:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szSrc, -1, szTemp, MAX_PATH); data/wine-5.0/dlls/shell32/pidl.c:2372:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/pidl.c:2420:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sTemp[64]; data/wine-5.0/dlls/shell32/pidl.c:2433:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (pOut, " file"); data/wine-5.0/dlls/shell32/recyclebin.c:844:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszRootPath, -1, wszRootPath, MAX_PATH); data/wine-5.0/dlls/shell32/recyclebin.c:876:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszRootPath, -1, wszRootPath, MAX_PATH); data/wine-5.0/dlls/shell32/shell32_main.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[4]; data/wine-5.0/dlls/shell32/shell32_main.c:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp[MAX_PATH]; data/wine-5.0/dlls/shell32/shell32_main.c:285:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ftype[80]; data/wine-5.0/dlls/shell32/shell32_main.c:288:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ftype, -1, psfi->szTypeName, 80 ); data/wine-5.0/dlls/shell32/shell32_main.c:525:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/shell32/shell32_main.c:527:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, temppath, len); data/wine-5.0/dlls/shell32/shell32_main.c:889:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sizeW = MultiByteToWideChar( CP_UTF8, 0, strA, sizeA, NULL, 0 ) + 1; data/wine-5.0/dlls/shell32/shell32_main.c:891:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, strA, sizeA, strW, sizeW ); data/wine-5.0/dlls/shell32/shell32_main.c:939:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, wine_get_build_id(), -1, version, ARRAY_SIZE(version) ); data/wine-5.0/dlls/shell32/shell32_main.c:1004:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szApp, -1, NULL, 0); data/wine-5.0/dlls/shell32/shell32_main.c:1006:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szApp, -1, appW, len); data/wine-5.0/dlls/shell32/shell32_main.c:1010:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szOtherStuff, -1, NULL, 0); data/wine-5.0/dlls/shell32/shell32_main.c:1012:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szOtherStuff, -1, otherW, len); data/wine-5.0/dlls/shell32/shell32_main.h:170:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, source, -1, NULL, 0); data/wine-5.0/dlls/shell32/shell32_main.h:172:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, source, -1, *target, len); data/wine-5.0/dlls/shell32/shell32_main.h:249:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shell32_main.h:262:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/shell32/shell32_main.h:265:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/shell32/shellitem.c:820:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, first_file, -1, filename, MAX_PATH); data/wine-5.0/dlls/shell32/shellitem.c:1252:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->array, items, count*sizeof(IShellItem*)); data/wine-5.0/dlls/shell32/shelllink.c:211:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/shelllink.c:215:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, p, len ); data/wine-5.0/dlls/shell32/shelllink.c:533:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar( CP_ACP, 0, temp, len, NULL, 0 ); data/wine-5.0/dlls/shell32/shelllink.c:540:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, temp, len, str, count ); data/wine-5.0/dlls/shell32/shelllink.c:562:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[1]; data/wine-5.0/dlls/shell32/shelllink.c:607:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, label, len, volume->label, label_sz-1); data/wine-5.0/dlls/shell32/shelllink.c:620:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wlen = MultiByteToWideChar(CP_ACP, 0, p, len, NULL, 0); data/wine-5.0/dlls/shell32/shelllink.c:622:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, p, len, path, wlen); data/wine-5.0/dlls/shell32/shelllink.c:1276:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/shelllink.c:1947:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sIcoPath, path, len); data/wine-5.0/dlls/shell32/shelllink.c:2031:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, str, sizeof(WCHAR)*len ); data/wine-5.0/dlls/shell32/shelllink.c:2064:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( szGuid, str, sizeof(WCHAR)*len ); data/wine-5.0/dlls/shell32/shellole.c:261:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, clsid, -1, buffer, ARRAY_SIZE(buffer) )) data/wine-5.0/dlls/shell32/shellole.c:652:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszFileA, -1, lpszwFile, lLength); data/wine-5.0/dlls/shell32/shellord.c:481:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szText[100],szTitle[100]; data/wine-5.0/dlls/shell32/shellord.c:1058:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, new_lnk_filepath, -1, data/wine-5.0/dlls/shell32/shellord.c:1535:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszString, dst, len); data/wine-5.0/dlls/shell32/shellord.c:1579:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pszString, dst, len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shellord.c:1984:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszLinkTo, -1, wszLinkTo, MAX_PATH); data/wine-5.0/dlls/shell32/shellord.c:1985:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszDir, -1, wszDir, MAX_PATH); data/wine-5.0/dlls/shell32/shellpath.c:3633:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char InfoBuffer[64]; data/wine-5.0/dlls/shell32/shellpath.c:4015:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar(CP_ACP, 0, pszSubPath, -1, NULL, 0); data/wine-5.0/dlls/shell32/shellpath.c:4021:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pszSubPath, -1, pszSubPathW, length); data/wine-5.0/dlls/shell32/shellpath.c:4493:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPersonalTarget[FILENAME_MAX], *pszPersonal; data/wine-5.0/dlls/shell32/shellpath.c:4494:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szMyStuffTarget[FILENAME_MAX], *pszMyStuff; data/wine-5.0/dlls/shell32/shellpath.c:4495:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDesktopTarget[FILENAME_MAX], *pszDesktop; data/wine-5.0/dlls/shell32/shellpath.c:5825:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppKFId, fm->ids, fm->num_ids * sizeof(KNOWNFOLDERID)); data/wine-5.0/dlls/shell32/shellpath.c:6188:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&kfd.fidParent, folder->fidParent, sizeof(KNOWNFOLDERID)); data/wine-5.0/dlls/shell32/shellpath.c:6197:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&kfd.ftidType, folder->ftidType, sizeof(FOLDERTYPEID)); data/wine-5.0/dlls/shell32/shellstring.c:105:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, src->u.cStr, -1, dest, len) && len) data/wine-5.0/dlls/shell32/shellstring.c:109:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_ACP, 0, ((LPCSTR)&pidl->mkid)+src->u.uOffset, -1, dest, len) data/wine-5.0/dlls/shell32/shellstring.c:150:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(CP_ACP, 0, lpMultiByteString, -1, lpWideCharStr, MAX_PATH); data/wine-5.0/dlls/shell32/shellstring.c:177:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar (CP_ACP, 0, lpStrA, nStr, lpWide, nWide); data/wine-5.0/dlls/shell32/shellstring.c:250:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, string, len, wString, len); data/wine-5.0/dlls/shell32/shfldr.h:61:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. return sprintf(str, "{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}", data/wine-5.0/dlls/shell32/shfldr_fs.c:555:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extensionA[20]; data/wine-5.0/dlls/shell32/shfldr_fs.c:568:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, extensionA, -1, extensionW, 20); data/wine-5.0/dlls/shell32/shfldr_fs.c:1431:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sPathTarget, wszTemp, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shfldr_fs.c:1507:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sPathTarget, wszTemp, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shfldr_fs.c:1514:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sPathTarget, ppfti->szTargetParsingName, data/wine-5.0/dlls/shell32/shfldr_fs.c:1522:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->sPathTarget, wszTemp, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shfldr_mycomp.c:821:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPath[MAX_PATH]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:263:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cWideChars = MultiByteToWideChar(CP_ACP, 0, pszText, -1, NULL, 0); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:269:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cWideChars = MultiByteToWideChar(CP_ACP, 0, pszText, -1, pwszPathElement, cWideChars); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:315:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cWideChars = MultiByteToWideChar(CP_UNIXCP, 0, szPathElement, -1, NULL, 0); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:321:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). cWideChars = MultiByteToWideChar(CP_UNIXCP, 0, szPathElement, -1, pwszPathElement, cWideChars); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *pPathTail, *pElement, *pCanonicalTail, szPath[FILENAME_MAX], *pszUnixPath, mb_path[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:477:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pCanonicalTail, pElement, pPathTail - pElement + 1); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:523:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&findData, pFindData, sizeof(WIN32_FIND_DATAW)); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:572:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIDLData->u.file.szNames, pszComponentA, cComponentALen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:611:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *pSlash, *pNextSlash, szCompletePath[FILENAME_MAX], *pNextPathElement, *pszAPath; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:642:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szCompletePath, pUnixFolder->m_pszPath, cBasePathLen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1139:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAbsolutePath[FILENAME_MAX], *pszRelativePath; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1163:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ext[MAX_PATH]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1246:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). UINT len = MultiByteToWideChar(CP_UNIXCP, 0, This->m_pszPath, -1, NULL, 0); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1249:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, This->m_pszPath, -1, lpName->u.pOleStr, len); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSrc[FILENAME_MAX], szDest[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1370:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szSrc, This->m_pszPath, cBasePathLen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1374:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szDest, This->m_pszPath, cBasePathLen); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1501:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPath[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1622:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBasePath[FILENAME_MAX] = "/"; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1693:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTargetPath[FILENAME_MAX] = ""; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1897:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szNewDir[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1913:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szMessage[256 + FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1914:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szCaption[256]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1947:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAbsolute[FILENAME_MAX], *pszRelative; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2001:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAbsolute[FILENAME_MAX], *pszRelative; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2028:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAbsolute[FILENAME_MAX], *pszRelative; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2069:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAbsoluteDst[FILENAME_MAX], *pszRelativeDst; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2087:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSrc[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2377:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char m_szFolder[FILENAME_MAX]; data/wine-5.0/dlls/shell32/shlexec.c:415:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p2, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/shell32/shlexec.c:851:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(command, start, idx*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlexec.c:1534:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpstrProtocol, lpFile, iSize*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlexec.c:1625:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszApplicationName, sei_tmp.lpFile+1, len*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlexec.c:1633:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszApplicationName, sei_tmp.lpFile, l*sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlexec.c:1819:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wcmd+1, wszApplicationName, len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlexec.c:1952:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&seiW, sei, sizeof(SHELLEXECUTEINFOW)); data/wine-5.0/dlls/shell32/shlfileop.c:321:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, aPath, -1, NULL, 0); data/wine-5.0/dlls/shell32/shlfileop.c:329:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, aPath, -1, *wPath, len); data/wine-5.0/dlls/shell32/shlfileop.c:839:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)*pWToFrom, aSize, *wString, 0); data/wine-5.0/dlls/shell32/shlfileop.c:842:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)*pWToFrom, aSize, *wString, size); data/wine-5.0/dlls/shell32/shlfileop.c:1618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drv_path[3]; data/wine-5.0/dlls/shell32/shlfileop.c:1622:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(drv_path, "A:"); data/wine-5.0/dlls/shell32/shlfileop.c:1655:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char drv_path[3]; data/wine-5.0/dlls/shell32/shlfileop.c:1659:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(drv_path, "A:"); data/wine-5.0/dlls/shell32/shlfileop.c:1713:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char root[4]; data/wine-5.0/dlls/shell32/shlfileop.c:1714:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(root, "A:\\"); data/wine-5.0/dlls/shell32/shlfileop.c:1736:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, path, -1, wpath, MAX_PATH); data/wine-5.0/dlls/shell32/shlfolder.c:468:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ext[MAX_PATH]; data/wine-5.0/dlls/shell32/shlfolder.c:487:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp1[MAX_PATH]; data/wine-5.0/dlls/shell32/shlfolder.c:488:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTemp2[MAX_PATH]; data/wine-5.0/dlls/shell32/shlmenu.c:403:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, lpText, -1, NULL, 0 ); data/wine-5.0/dlls/shell32/shlmenu.c:406:4: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpText, -1, lpszText, len ); data/wine-5.0/dlls/shell32/shlmenu.c:1047:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->menus,menus,menu_count*sizeof(IContextMenu*)); data/wine-5.0/dlls/shell32/shlview.c:479:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strName1[MAX_PATH], strName2[MAX_PATH]; data/wine-5.0/dlls/shell32/shlview.c:3279:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((PITEMID_CHILD*)*pidl, This->apidl, *items*sizeof(LPITEMIDLIST)); data/wine-5.0/dlls/shell32/shlview_cmenu.c:362:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, desc, dlen * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/shlview_cmenu.c:650:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sTemp[64]; data/wine-5.0/dlls/shell32/shlview_cmenu.c:655:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, sTemp, -1, wszFiletype, MAX_PATH); data/wine-5.0/dlls/shell32/shpolicy.c:825:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regstr[256]; data/wine-5.0/dlls/shell32/systray.c:98:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pnid->szTip, -1, nidW.szTip, ARRAY_SIZE(nidW.szTip)); data/wine-5.0/dlls/shell32/systray.c:108:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pnid->szInfo, -1, nidW.szInfo, ARRAY_SIZE(nidW.szInfo)); data/wine-5.0/dlls/shell32/systray.c:109:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pnid->szInfoTitle, -1, nidW.szInfoTitle, ARRAY_SIZE(nidW.szInfoTitle)); data/wine-5.0/dlls/shell32/systray.c:147:9: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(&newNid, nid, NOTIFYICONDATAW_V1_SIZE); data/wine-5.0/dlls/shell32/tests/autocomplete.c:247:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*)lParam, HijackerWndProc_txt, len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/tests/autocomplete.c:339:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(strings[i], this->data[this->cur], len * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/tests/autocomplete.c:410:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->last_expand, expand, min((lstrlenW(expand) + 1)*sizeof(WCHAR), sizeof(this->last_expand))); data/wine-5.0/dlls/shell32/tests/brsfolder.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_search_string[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/brsfolder.c:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_folder_path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/brsfolder.c:165:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char selected_folder[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/brsfolder.c:207:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, test_folder_path, -1, data/wine-5.0/dlls/shell32/tests/ebrowser.c:760:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:90:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ProgramsDir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:94:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char commonprograms[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:95:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char programs[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:136:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char data[2000]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:154:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:398:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char programs[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/progman_dde.c:405:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(programs, "/*"); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:59:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:61:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/shell32/tests/shelldispatch.c:363:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/dlls/shell32/tests/shelldispatch.c:391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cstr[64]; data/wine-5.0/dlls/shell32/tests/shelldispatch.c:700:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(cstr, "\\..\\"); data/wine-5.0/dlls/shell32/tests/shelllink.c:72:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len=MultiByteToWideChar(CP_ACP, 0, path, -1, NULL, 0); data/wine-5.0/dlls/shell32/tests/shelllink.c:74:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, pathW, len); data/wine-5.0/dlls/shell32/tests/shelllink.c:93:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mypath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:94:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INFOTIPSIZE]; data/wine-5.0/dlls/shell32/tests/shelllink.c:108:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:117:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:125:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:131:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:140:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:146:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:151:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:169:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:179:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:184:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:194:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mypath, "\\regedit.exe"); data/wine-5.0/dlls/shell32/tests/shelllink.c:204:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:238:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:243:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:262:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:267:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:282:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:304:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:313:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:318:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:325:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:348:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:491:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INFOTIPSIZE]; data/wine-5.0/dlls/shell32/tests/shelllink.c:542:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:551:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:560:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:587:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:613:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lnkfileA[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:617:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mypath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mydir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:619:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char realpath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:627:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lnkfileA, -1, lnkfile, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shelllink.c:693:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(realpath, ".exe"); data/wine-5.0/dlls/shell32/tests/shelllink.c:738:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mypath, "\\test.txt"); data/wine-5.0/dlls/shell32/tests/shelllink.c:760:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(realpath, "\\test.txt"); data/wine-5.0/dlls/shell32/tests/shelllink.c:761:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mypath, "\\\\test.txt"); data/wine-5.0/dlls/shell32/tests/shelllink.c:782:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mypath, "\\test.bat"); data/wine-5.0/dlls/shell32/tests/shelllink.c:914:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INFOTIPSIZE], mypath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:926:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:937:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:944:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mypath, "\\regedit.exe"); data/wine-5.0/dlls/shell32/tests/shelllink.c:951:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "garbage"); data/wine-5.0/dlls/shell32/tests/shelllink.c:1177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:1205:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "\\extracticon_test.txt"); data/wine-5.0/dlls/shell32/tests/shelllink.c:1275:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathA[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shelllink.c:1292:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathA, "shell32.dll"); data/wine-5.0/dlls/shell32/tests/shelllink.c:1301:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathA, "user32.dll"); data/wine-5.0/dlls/shell32/tests/shelllink.c:1313:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathA, "dummy.exe"); data/wine-5.0/dlls/shell32/tests/shelllink.c:1326:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/shell32/tests/shelllink.c:1333:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). value = atoi( buf ); data/wine-5.0/dlls/shell32/tests/shellole.c:223:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&statpsstg->fmtid, &FMTID_Test, sizeof(FMTID)); data/wine-5.0/dlls/shell32/tests/shellole.c:768:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH] = "dummy"; data/wine-5.0/dlls/shell32/tests/shellole.c:860:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, DROPTEST_FILENAME, -1, data/wine-5.0/dlls/shell32/tests/shellpath.c:224:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char unknown[32]; data/wine-5.0/dlls/shell32/tests/shellpath.c:289:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(unknown, "unknown (0x%04x)", folder); data/wine-5.0/dlls/shell32/tests/shellpath.c:1303:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1413:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1487:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1609:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsShellPath[MAX_PATH], windowsDir[MAX_PATH] = { 0 }; data/wine-5.0/dlls/shell32/tests/shellpath.c:1630:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char systemShellPath[MAX_PATH], systemDir[MAX_PATH], systemDirx86[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1659:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char base[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1660:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char selfname[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1716:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "\\desktop.ini"); data/wine-5.0/dlls/shell32/tests/shellpath.c:1751:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char originalPath[MAX_PATH], modifiedPath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1771:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(modifiedPath, originalPath, len); data/wine-5.0/dlls/shell32/tests/shellpath.c:1778:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+20]; data/wine-5.0/dlls/shell32/tests/shellpath.c:1946:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, hay, -1, wstr, ARRAY_SIZE(wstr)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2000:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_ACP, 0, known_folder->sName, -1, sName, ARRAY_SIZE(sName)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2585:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, MAX_PATH, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2616:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, MAX_PATH, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2637:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, MAX_PATH, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2660:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, MAX_PATH, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/shell32/tests/shellpath.c:2681:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufferA, MAX_PATH, bufferW, ARRAY_SIZE(bufferW)); data/wine-5.0/dlls/shell32/tests/shlexec.c:54:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char argv0[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:57:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmpdir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:58:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char child_file[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:74:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char encoded[2*1024+1]; data/wine-5.0/dlls/shell32/tests/shlexec.c:87:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&ptr[i * 2], "%02x", (unsigned char)str[i]); data/wine-5.0/dlls/shell32/tests/shlexec.c:102:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char decoded[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:123:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:134:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:154:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ddeExec[MAX_PATH], ddeApplication[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:215:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *filename, buffer[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:321:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[18]; data/wine-5.0/dlls/shell32/tests/shlexec.c:331:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(key, "argvA%d", i); data/wine-5.0/dlls/shell32/tests/shlexec.c:353:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char shell_call[2048]; data/wine-5.0/dlls/shell32/tests/shlexec.c:357:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2048]; data/wine-5.0/dlls/shell32/tests/shlexec.c:369:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char assoc_desc[2048]; data/wine-5.0/dlls/shell32/tests/shlexec.c:442:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char altpath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:488:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(str, ", "); data/wine-5.0/dlls/shell32/tests/shlexec.c:490:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(str, "=\""); data/wine-5.0/dlls/shell32/tests/shlexec.c:508:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shell_call, "ShellExecute("); data/wine-5.0/dlls/shell32/tests/shlexec.c:582:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char smask[11]; data/wine-5.0/dlls/shell32/tests/shlexec.c:590:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shell_call, "ShellExecuteEx("); data/wine-5.0/dlls/shell32/tests/shlexec.c:591:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(smask, "0x%x", mask); data/wine-5.0/dlls/shell32/tests/shlexec.c:720:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char class[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:812:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char classname[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:825:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shell[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:829:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(assoc_desc, " Assoc "); data/wine-5.0/dlls/shell32/tests/shlexec.c:832:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(shell, "%d", rawcmd); data/wine-5.0/dlls/shell32/tests/shlexec.c:937:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmplongpath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1099:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fileA[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1332:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->cmd, -1, cmdW, ARRAY_SIZE(cmdW)); data/wine-5.0/dlls/shell32/tests/shlexec.c:1352:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->args[i], -1, argW, ARRAY_SIZE(argW)); data/wine-5.0/dlls/shell32/tests/shlexec.c:1552:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fileA[MAX_PATH], params[2*MAX_PATH+12]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1610:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1650:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char quoted[MAX_PATH + 2]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1698:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char attrib[18]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1703:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(attrib, "argvA%d", count); data/wine-5.0/dlls/shell32/tests/shlexec.c:1793:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH], fileurl[MAX_PATH], longtmpdir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1794:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char command[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char url[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1970:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char notepad_path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1971:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1972:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char command[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:1985:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(command, "your word"); data/wine-5.0/dlls/shell32/tests/shlexec.c:1994:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( notepad_path, "\\notepad.exe" ); data/wine-5.0/dlls/shell32/tests/shlexec.c:1997:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(command, "your word"); data/wine-5.0/dlls/shell32/tests/shlexec.c:2003:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(command, "your word"); data/wine-5.0/dlls/shell32/tests/shlexec.c:2008:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(command, "your word"); data/wine-5.0/dlls/shell32/tests/shlexec.c:2117:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2118:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2211:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2389:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH], defApplication[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2556:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2658:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2660:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[1024]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2690:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(argv0, ".so"); data/wine-5.0/dlls/shell32/tests/shlexec.c:2698:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(filename, "c:\\"); data/wine-5.0/dlls/shell32/tests/shlexec.c:2733:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, lnkfile, ARRAY_SIZE(lnkfile)); data/wine-5.0/dlls/shell32/tests/shlexec.c:2747:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, filename, -1, lnkfile, ARRAY_SIZE(lnkfile)); data/wine-5.0/dlls/shell32/tests/shlexec.c:2787:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2815:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], curdir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlexec.c:2816:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char params[1024], dirpath[1024]; data/wine-5.0/dlls/shell32/tests/shlfileop.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char notepad[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfileop.c:225:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:242:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:248:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi2.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:262:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:268:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi2.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:280:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi.szDisplayName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:281:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(shfi.szTypeName, "dummy"); data/wine-5.0/dlls/shell32/tests/shlfileop.c:761:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&shfo2, &shfo, sizeof(SHFILEOPSTRUCTA)); data/wine-5.0/dlls/shell32/tests/shlfileop.c:914:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&shfo2, &shfo, sizeof(SHFILEOPSTRUCTA)); data/wine-5.0/dlls/shell32/tests/shlfileop.c:1996:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&shfo2, &shfo, sizeof(SHFILEOPSTRUCTA)); data/wine-5.0/dlls/shell32/tests/shlfolder.c:74:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/shell32/tests/shlfolder.c:82:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/shell32/tests/shlfolder.c:413:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSystemDir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:414:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:463:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szSystemDir, -1, wszSystemDir, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:507:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:546:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:570:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:594:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:613:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pathA, -1, path, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:634:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTestFile[MAX_PATH], szTestDir[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:686:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szTestFile, -1, wszTestFile, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:932:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cCurrDirA [MAX_PATH] = {0}; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1003:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cCurrDirA, -1, cCurrDirW, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1033:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cCurrDirA, -1, cCurrDirW, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cCurrDirA [MAX_PATH] = {0}; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1221:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cCurrDirA, -1, cTestDirW, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1705:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1706:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_x86[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1707:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_key[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1791:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char appdata[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1792:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char testpath[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1793:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char toolongpath[MAX_PATH+1]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1887:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cCurrDirA[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1893:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char resourcefile[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:1934:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, cCurrDirA, -1, cCurrDirW, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1993:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdirA[MAX_PATH]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:2016:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, curdirA, -1, curdirW, MAX_PATH); data/wine-5.0/dlls/shell32/tests/shlfolder.c:4380:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[255], buf2[255]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:4813:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char id[256]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:4817:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char path_1[256]; data/wine-5.0/dlls/shell32/tests/shlfolder.c:4818:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char path_2[256]; data/wine-5.0/dlls/shell32/tests/string.c:39:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/shell32/tests/string.c:41:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, szTemp, len); data/wine-5.0/dlls/shell32/tests/string.c:83:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)&iidl, " Test"); data/wine-5.0/dlls/shell32/trash.c:76:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pidl->mkid.abID+1, data, sizeof(WIN32_FIND_DATAW)); data/wine-5.0/dlls/shell32/trash.c:141:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(trash_path, user->pw_dir, home_size); data/wine-5.0/dlls/shell32/trash.c:142:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(trash_path+home_size, "/.Trash", sizeof("/.Trash")); data/wine-5.0/dlls/shell32/trash.c:239:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, trash_path, trash_path_length); data/wine-5.0/dlls/shell32/trash.c:241:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+trash_path_length+1, name, name_length+1); data/wine-5.0/dlls/shell32/trash.c:251:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_UNIXCP, 0, name, -1, data->cFileName, MAX_PATH)) data/wine-5.0/dlls/shell32/trash.c:468:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char datebuf[200]; data/wine-5.0/dlls/shell32/trash.c:475:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). writer = open(path, O_CREAT|O_WRONLY|O_TRUNC|O_EXCL, 0600); data/wine-5.0/dlls/shell32/trash.c:635:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path, O_RDONLY); data/wine-5.0/dlls/shell32/trash.c:673:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, file, -1, data->cFileName, MAX_PATH); data/wine-5.0/dlls/shell32/xdg.c:103:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *path_values[ARRAY_SIZE(paths)] = { data/wine-5.0/dlls/shell32/xdg.c:762:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(*config_file, "/.config/user-dirs.dirs"); data/wine-5.0/dlls/shell32/xdg.c:771:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(*config_file, "/user-dirs.dirs"); data/wine-5.0/dlls/shell32/xdg.c:893:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/dlls/shell32/xdg.c:914:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(config_file, "r"); data/wine-5.0/dlls/shlwapi/assoc.c:49:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD dwStrLen = MultiByteToWideChar(CP_ACP, 0, lpszParam, -1, NULL, 0); data/wine-5.0/dlls/shlwapi/assoc.c:63:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszParam, -1, *lpszOut, dwStrLen); data/wine-5.0/dlls/shlwapi/clist.c:131:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDest, lpNewItem, lpNewItem->cbSize); data/wine-5.0/dlls/shlwapi/msgbox.c:147:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszName, -1, szNameBuff, MAX_PATH); data/wine-5.0/dlls/shlwapi/msgbox.c:149:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszId, -1, szIdBuff, MAX_PATH); data/wine-5.0/dlls/shlwapi/msgbox.c:256:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszTitle, -1, szTitleBuff, MAX_PATH); data/wine-5.0/dlls/shlwapi/msgbox.c:260:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). iLen = MultiByteToWideChar(CP_ACP, 0, lpszText, -1, NULL, 0); data/wine-5.0/dlls/shlwapi/msgbox.c:262:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszText, -1, szTextBuff, iLen); data/wine-5.0/dlls/shlwapi/msgbox.c:265:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszId, -1, szIdBuff, MAX_PATH); data/wine-5.0/dlls/shlwapi/ordinal.c:179:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) pMapped + sizeof(dwSize), lpvData, dwSize); data/wine-5.0/dlls/shlwapi/ordinal.c:318:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szKeyBuff[128], szValueBuff[128]; data/wine-5.0/dlls/shlwapi/ordinal.c:459:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char xguid[40]; data/wine-5.0/dlls/shlwapi/ordinal.c:464:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(xguid, "{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}", data/wine-5.0/dlls/shlwapi/ordinal.c:473:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, xguid, iLen); data/wine-5.0/dlls/shlwapi/ordinal.c:508:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, xguid, iLen*sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/ordinal.c:1858:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->mem, old_mem, info->blocks_alloced * info->block_size); data/wine-5.0/dlls/shlwapi/ordinal.c:1870:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)info->mem + where * info->block_size, block, info->block_size); data/wine-5.0/dlls/shlwapi/ordinal.c:1963:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(string, "CLSID\\"); data/wine-5.0/dlls/shlwapi/ordinal.c:1965:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(string, "\\InProcServer32"); data/wine-5.0/dlls/shlwapi/ordinal.c:2280:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, idstr, -1, wClsid, ARRAY_SIZE(wClsid)); data/wine-5.0/dlls/shlwapi/ordinal.c:3889:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, key, size_key); data/wine-5.0/dlls/shlwapi/ordinal.c:3891:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+size_key/sizeof(WCHAR), subkey, size_subkey); data/wine-5.0/dlls/shlwapi/ordinal.c:3893:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+(size_key+size_subkey)/sizeof(WCHAR), sub_key, size_user); data/wine-5.0/dlls/shlwapi/path.c:226:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:339:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszFile,-1,szFile,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:349:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,*lpszOtherPath,-1,szOther,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:469:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:510:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, lpszPath, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/path.c:530:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, lpszFile, cchMax * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/path.c:560:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, lpszFile, cchMax * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/path.c:567:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, lpszPath, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/path.c:716:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shlwapi/path.c:890:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:1070:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:1184:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:1299:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszPath,-1,szPath,MAX_PATH); data/wine-5.0/dlls/shlwapi/path.c:1507:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszFile, -1, szFile, MAX_PATH); data/wine-5.0/dlls/shlwapi/reg.c:114:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[MAX_PATH]; data/wine-5.0/dlls/shlwapi/reg.c:726:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer, szMimeDbContentA, dwLenMimeDbContent); data/wine-5.0/dlls/shlwapi/reg.c:727:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer + dwLenMimeDbContent, lpszType, dwStrLen + 1); data/wine-5.0/dlls/shlwapi/reg.c:749:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer, szMimeDbContentW, dwLenMimeDbContent * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/reg.c:750:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer + dwLenMimeDbContent, lpszType, (dwStrLen + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/reg.c:779:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSubKey[MAX_PATH]; data/wine-5.0/dlls/shlwapi/reg.c:844:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szKey[MAX_PATH]; data/wine-5.0/dlls/shlwapi/reg.c:898:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szKey[MAX_PATH]; data/wine-5.0/dlls/shlwapi/reg.c:980:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszValue, -1, szValue, ARRAY_SIZE(szValue)); data/wine-5.0/dlls/shlwapi/reg.c:1002:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szKey, szClassIdKey, sizeof(szClassIdKey)); data/wine-5.0/dlls/shlwapi/string.c:269:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src->u.pOleStr, min(dst_len, len-1) * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/string.c:281:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, src->u.cStr, -1, dest, len )) data/wine-5.0/dlls/shlwapi/string.c:288:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, ((LPCSTR)&pidl->mkid)+src->u.uOffset, -1, data/wine-5.0/dlls/shlwapi/string.c:380:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/shlwapi/string.c:385:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, szTemp, len); data/wine-5.0/dlls/shlwapi/string.c:588:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpszStr, -1, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/shlwapi/string.c:596:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszStr, -1, *lppszDest, len/sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/string.c:652:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*dest, src, len); data/wine-5.0/dlls/shlwapi/string.c:1038:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dwRet = MultiByteToWideChar(dwCp, 0, lpSrcStr, -1, lpDstStr, iLen); data/wine-5.0/dlls/shlwapi/string.c:1133:27: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (reqLen > 0) memcpy(lpDstStr, mem, reqLen-1); data/wine-5.0/dlls/shlwapi/tests/assoc.c:37:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static const WCHAR open[] = { 'o','p','e','n',0 }; data/wine-5.0/dlls/shlwapi/tests/assoc.c:54:59: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, NULL, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:59:61: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, badBad, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:66:61: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, dotBad, open, buf, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:84:62: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, dotHtml, open, NULL, NULL); data/wine-5.0/dlls/shlwapi/tests/assoc.c:90:64: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, NULL, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:95:66: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, badBad, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:102:66: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, dotBad, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:119:67: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, dotHtml, open, NULL, NULL); data/wine-5.0/dlls/shlwapi/tests/assoc.c:138:62: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, dotHtml, open, NULL, &len); data/wine-5.0/dlls/shlwapi/tests/assoc.c:155:62: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_EXECUTABLE, dotHtml, open, data/wine-5.0/dlls/shlwapi/tests/assoc.c:162:67: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, dotHtml, open, NULL, data/wine-5.0/dlls/shlwapi/tests/assoc.c:185:67: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = pAssocQueryStringW(0, ASSOCSTR_FRIENDLYAPPNAME, dotHtml, open, data/wine-5.0/dlls/shlwapi/tests/clist.c:560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/shlwapi/tests/clist.c:578:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/shlwapi/tests/clsid.c:105:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[256]; data/wine-5.0/dlls/shlwapi/tests/clsid.c:155:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(szBuff, "{xxx-"); data/wine-5.0/dlls/shlwapi/tests/istream.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[256]; data/wine-5.0/dlls/shlwapi/tests/istream.c:78:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(data, "Hello"); data/wine-5.0/dlls/shlwapi/tests/istream.c:86:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(data, "Hello"); data/wine-5.0/dlls/shlwapi/tests/istream.c:94:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(data, "Hello"); data/wine-5.0/dlls/shlwapi/tests/istream.c:102:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(data, "Hello"); data/wine-5.0/dlls/shlwapi/tests/istream.c:192:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[16]; data/wine-5.0/dlls/shlwapi/tests/istream.c:288:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/istream.c:404:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_fileA, -1, test_file, MAX_PATH); data/wine-5.0/dlls/shlwapi/tests/istream.c:520:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_fileA, -1, test_file, MAX_PATH); data/wine-5.0/dlls/shlwapi/tests/istream.c:698:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char srcContents[1]; data/wine-5.0/dlls/shlwapi/tests/istream.c:741:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[10]; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:189:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char original[512]; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:190:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char language[32]; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:191:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:460:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1170:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIID,&iface->id,sizeof(GUID)); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2467:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char classA[20]; data/wine-5.0/dlls/shlwapi/tests/path.c:195:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, ret, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/shlwapi/tests/path.c:210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, p, len); data/wine-5.0/dlls/shlwapi/tests/path.c:269:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ret_path[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/shlwapi/tests/path.c:450:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:456:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "C:\\A LONG FILE NAME WITH \\SPACES.TXT"); data/wine-5.0/dlls/shlwapi/tests/path.c:461:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "C:\\A LONG FILE NAME WITH \\MixedCase.TXT"); data/wine-5.0/dlls/shlwapi/tests/path.c:466:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "TEST"); data/wine-5.0/dlls/shlwapi/tests/path.c:561:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:562:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char too_long[LONG_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char one[HALF_LEN], two[HALF_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:756:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:757:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char too_long[LONG_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:817:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:818:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char too_long[LONG_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:819:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char half[HALF_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:944:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[LONG_LEN + MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:945:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char too_long[LONG_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:1073:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:1074:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char too_long[LONG_LEN]; data/wine-5.0/dlls/shlwapi/tests/path.c:1139:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[10]; data/wine-5.0/dlls/shlwapi/tests/path.c:1140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char root_expected[26][4]; data/wine-5.0/dlls/shlwapi/tests/path.c:1146:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(root_expected[drive - 'A'], "%c:\\", drive); data/wine-5.0/dlls/shlwapi/tests/path.c:1194:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[MAX_PATH], path2[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:1195:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/path.c:1470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], buff[MAX_PATH], sysdrvA[3], envvarA[30]; data/wine-5.0/dlls/shlwapi/tests/path.c:1494:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "somepath_name"); data/wine-5.0/dlls/shlwapi/tests/path.c:1495:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "xx"); data/wine-5.0/dlls/shlwapi/tests/path.c:1508:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "xx"); data/wine-5.0/dlls/shlwapi/tests/path.c:1515:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "xx"); data/wine-5.0/dlls/shlwapi/tests/path.c:1694:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufa[MAX_PATH], expect[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:50:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char sExpTestpath1[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:51:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char sExpTestpath2[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:120:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:147:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:183:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/shreg.c:200:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/shlwapi/tests/string.c:240:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[129]; data/wine-5.0/dlls/shlwapi/tests/string.c:291:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[129]; data/wine-5.0/dlls/shlwapi/tests/string.c:345:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[129]; data/wine-5.0/dlls/shlwapi/tests/string.c:415:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->byte_size_64, -1, szSrc, ARRAY_SIZE(szSrc)); data/wine-5.0/dlls/shlwapi/tests/string.c:479:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->string, -1, szBuff, ARRAY_SIZE(szBuff)); data/wine-5.0/dlls/shlwapi/tests/string.c:529:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->string, -1, szBuff, ARRAY_SIZE(szBuff)); data/wine-5.0/dlls/shlwapi/tests/string.c:543:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->string, -1, szBuff, ARRAY_SIZE(szBuff)); data/wine-5.0/dlls/shlwapi/tests/string.c:608:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->string, -1, szBuff, ARRAY_SIZE(szBuff)); data/wine-5.0/dlls/shlwapi/tests/string.c:622:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, result->string, -1, szBuff, ARRAY_SIZE(szBuff)); data/wine-5.0/dlls/shlwapi/tests/string.c:661:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[256]; data/wine-5.0/dlls/shlwapi/tests/string.c:685:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[256]; data/wine-5.0/dlls/shlwapi/tests/string.c:707:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[256]; data/wine-5.0/dlls/shlwapi/tests/string.c:732:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBuff[256]; data/wine-5.0/dlls/shlwapi/tests/string.c:809:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/shlwapi/tests/string.c:811:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, src, -1, szTemp, len); data/wine-5.0/dlls/shlwapi/tests/string.c:846:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)&iidl, " Test"); data/wine-5.0/dlls/shlwapi/tests/string.c:859:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[8]; data/wine-5.0/dlls/shlwapi/tests/string.c:888:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, lpInit, sizeof(lpInit)); data/wine-5.0/dlls/shlwapi/tests/string.c:936:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dest[8]; data/wine-5.0/dlls/shlwapi/tests/string.c:978:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, lpInit, sizeof(lpInit)); data/wine-5.0/dlls/shlwapi/tests/string.c:1529:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, deadbeefW, sizeof(deadbeefW)); data/wine-5.0/dlls/shlwapi/tests/string.c:1587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, deadbeefW, sizeof(deadbeefW)); data/wine-5.0/dlls/shlwapi/tests/string.c:1588:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + 9, deadW, sizeof(deadW)); data/wine-5.0/dlls/shlwapi/tests/string.c:1607:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, deadbeefW, sizeof(deadbeefW)); data/wine-5.0/dlls/shlwapi/tests/url.c:451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char url[30]; data/wine-5.0/dlls/shlwapi/tests/url.c:515:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szString, -1, wszString, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/shlwapi/tests/url.c:558:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, newurl, -1, newurlW, len); data/wine-5.0/dlls/shlwapi/tests/url.c:559:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TEST_APPLY[i].url, -1, urlW, len); data/wine-5.0/dlls/shlwapi/tests/url.c:1108:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(longurl, winehqA, sizeof(winehqA)-1); data/wine-5.0/dlls/shlwapi/tests/url.c:1188:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "http://www.winehq.org/X", -1, szUrl, ARRAY_SIZE(szUrl)); data/wine-5.0/dlls/shlwapi/tests/url.c:1281:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ret_url[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/shlwapi/tests/url.c:1346:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TEST_PATH_IS_URL[i].path, -1, wurl, ARRAY_SIZE(wurl)); data/wine-5.0/dlls/shlwapi/tests/url.c:1361:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, TEST_URLIS_ATTRIBS[i].url, -1, wurl, ARRAY_SIZE(wurl)); data/wine-5.0/dlls/shlwapi/tests/url.c:1519:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->url, -1, url, ARRAY_SIZE(url)); data/wine-5.0/dlls/shlwapi/thread.c:191:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szBuff, szPrefix, (iPrefixLen + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/thread.c:222:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszName, -1, szBuff, MAX_PATH); data/wine-5.0/dlls/shlwapi/thread.c:242:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[40]; data/wine-5.0/dlls/shlwapi/url.c:86:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszLibName, -1, szLibName, ARRAY_SIZE(szLibName)); data/wine-5.0/dlls/shlwapi/url.c:89:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpszRes, -1, szRes, ARRAY_SIZE(szRes)); data/wine-5.0/dlls/shlwapi/url.c:124:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest, szRes, sizeof(szRes)); data/wine-5.0/dlls/shlwapi/url.c:143:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest + szResLen, szBuff, dwPathLen * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/url.c:149:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszDest + szResLen + dwPathLen, lpszRes, dwResLen * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/wsprintf.c:278:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20], *p = buffer, *dst = number; data/wine-5.0/dlls/shlwapi/wsprintf.c:382:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, argData.lpcstr_view, len ); data/wine-5.0/dlls/shlwapi/wsprintf.c:410:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, number + sign, len - sign ); data/wine-5.0/dlls/shlwapi/wsprintf.c:495:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (len) memcpy( p, argData.lpcwstr_view, len * sizeof(WCHAR) ); data/wine-5.0/dlls/snmpapi/main.c:55:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stream, src->asnValue.string.stream, length); data/wine-5.0/dlls/snmpapi/main.c:306:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy(ids, dst->ids, dst->idLength * sizeof(UINT)); data/wine-5.0/dlls/snmpapi/main.c:499:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char one[10], oid[514], null_oid[] = "<null oid>"; data/wine-5.0/dlls/snmpapi/main.c:509:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(one, "%d", ids[i]); data/wine-5.0/dlls/snmpapi/tests/util.c:379:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(oid1.ids, oid2.ids, sizeof(UINT) * 4); data/wine-5.0/dlls/spoolss/router.c:171:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, p, len); data/wine-5.0/dlls/sspicli/main.c:60:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, username, (len_username + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:67:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, domainname, (len_domainname + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:74:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, creds, (len_password + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:162:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, id->Domain, id->DomainLength * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:164:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str + id->DomainLength + 1, id->User, id->UserLength * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:171:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, id->User, id->UserLength * sizeof(WCHAR) ); data/wine-5.0/dlls/sspicli/main.c:189:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( password, id->Password, len ); data/wine-5.0/dlls/storage.dll16/storage.c:380:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(block, MapSL(args[3]), BIGSIZE); data/wine-5.0/dlls/storage.dll16/storage.c:540:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sblock,((LPBYTE)block)+SMALLSIZE*(blocknr&(SMALLBLOCKS_PER_BIGBLOCK-1)),SMALLSIZE); data/wine-5.0/dlls/storage.dll16/storage.c:564:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((LPBYTE)block)+SMALLSIZE*(blocknr&(SMALLBLOCKS_PER_BIGBLOCK-1)),sblock,SMALLSIZE); data/wine-5.0/dlls/storage.dll16/storage.c:706:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/wine-5.0/dlls/storage.dll16/storage.c:746:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sth->magic,STORAGE_magic,8); data/wine-5.0/dlls/storage.dll16/storage.c:773:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, "RootEntry", -1, stde->pps_rawname, data/wine-5.0/dlls/storage.dll16/storage.c:1235:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbv,block+(This->offset.u.LowPart&(SMALLSIZE-1)),cc); data/wine-5.0/dlls/storage.dll16/storage.c:1255:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbv,block+(This->offset.u.LowPart&(BIGSIZE-1)),cc); data/wine-5.0/dlls/storage.dll16/storage.c:1492:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ((LPBYTE)block)+(This->offset.u.LowPart&(SMALLSIZE-1)), data/wine-5.0/dlls/storage.dll16/storage.c:1520:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ((LPBYTE)block)+(This->offset.u.LowPart&(BIGSIZE-1)), data/wine-5.0/dlls/storage.dll16/storage.c:1747:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pwcsName, -1, lpstg->stde.pps_rawname, data/wine-5.0/dlls/storage.dll16/storage.c:1810:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pwcsName, -1, lpstr->stde.pps_rawname, data/wine-5.0/dlls/storage.dll16/storage.c:1852:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pwcsName, -1, name, ARRAY_SIZE(name)); data/wine-5.0/dlls/storage.dll16/storage.c:1894:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pwcsName, -1, name, ARRAY_SIZE(name)); data/wine-5.0/dlls/strmbase/dllfunc.c:346:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[MAX_PATH]; data/wine-5.0/dlls/strmbase/dllfunc.c:348:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dllname, "???"); data/wine-5.0/dlls/strmbase/mediatype.c:58:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[4] = {fourcc, fourcc >> 8, fourcc >> 16, fourcc >> 24}; data/wine-5.0/dlls/strmbase/mediatype.c:131:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->pbFormat, src->pbFormat, src->cbFormat); data/wine-5.0/dlls/strmbase/strmbase_private.h:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[22], rev[22]; data/wine-5.0/dlls/sxs/cache.c:104:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + len, winsxsW, sizeof(winsxsW) ); data/wine-5.0/dlls/sxs/cache.c:557:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src, manifest, len * sizeof(WCHAR) ); data/wine-5.0/dlls/sxs/name.c:306:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, str + 1, (*len - 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/sxs/name.c:320:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name->name, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/sxs/sxs.c:171:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret_strings, ptr_identity, len_identity); data/wine-5.0/dlls/sxs/sxs.c:175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret_strings, ptr_name, len_name); data/wine-5.0/dlls/sxs/sxs.c:181:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret_strings, ptr_version, len_version); data/wine-5.0/dlls/sxs/tests/cache.c:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comctl_path1[MAX_PATH], comctl_path2[MAX_PATH], comctl_path3[MAX_PATH], comctl_path4[MAX_PATH]; data/wine-5.0/dlls/sxs/tests/sxs.c:114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_tmp[MAX_PATH]; data/wine-5.0/dlls/sxs/tests/sxs.c:115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_dll[MAX_PATH]; data/wine-5.0/dlls/sxs/tests/sxs.c:116:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_manifest_exe[MAX_PATH]; data/wine-5.0/dlls/sxs/tests/sxs.c:176:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/sxs/tests/sxs.c:177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exe[MAX_PATH]; data/wine-5.0/dlls/t2embed/tests/t2embed.c:112:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(logfont.lfFaceName, "Tahoma"); data/wine-5.0/dlls/t2embed/tests/t2embed.c:179:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(logfont.lfFaceName, "Tahoma"); data/wine-5.0/dlls/tapi32/assisted.c:104:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, countrycode, -1, NULL, 0 ); data/wine-5.0/dlls/tapi32/assisted.c:106:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, countrycode, -1, country, len ); data/wine-5.0/dlls/tapi32/assisted.c:108:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, citycode, -1, NULL, 0 ); data/wine-5.0/dlls/tapi32/assisted.c:110:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, citycode, -1, city, len ); data/wine-5.0/dlls/tapi32/line.c:380:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(dwCountryID && (atoi(subkey_name) != dwCountryID)) data/wine-5.0/dlls/tapi32/line.c:418:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpLCE[i].dwCountryID = atoi(subkey_name); data/wine-5.0/dlls/tapi32/line.c:872:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/tapi32/line.c:877:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). dwval = atoi(buf); data/wine-5.0/dlls/tapi32/line.c:995:48: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). pLocEntry->dwPermanentLocationID = atoi( loc_key_name + 8); data/wine-5.0/dlls/tapi32/line.c:1087:48: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). pCardEntry->dwPermanentCardID= atoi( card_key_name + 4); data/wine-5.0/dlls/taskschd/task.c:3568:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, xml, lstrlenW(xml) * sizeof(WCHAR)); data/wine-5.0/dlls/taskschd/taskschd_private.h:40:34: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((dst = heap_alloc(len))) memcpy(dst, src, len); data/wine-5.0/dlls/taskschd/tests/scheduler.c:781:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml1, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:848:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml2, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1585:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml1, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1589:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml2, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1593:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml3, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1598:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml4, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1602:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml5, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1607:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml6, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1611:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml7, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1620:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml1, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/taskschd/tests/scheduler.c:1713:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, xml4, -1, xmlW, ARRAY_SIZE(xmlW)); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:392:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpme->szModule, name + 1, min(*name, MAX_MODULE_NAME) ); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:555:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(notifys+i,notifys+(i+1),sizeof(struct notify)*(nrofnotifys-i-1)); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:641:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, base + offset, count ); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.c:656:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base + offset, buffer, count ); data/wine-5.0/dlls/toolhelp.dll16/toolhelp.h:221:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szModule[MAX_MODULE_NAME + 1]; data/wine-5.0/dlls/toolhelp.dll16/toolhelp.h:224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szExePath[MAX_PATH16 + 1]; data/wine-5.0/dlls/toolhelp.dll16/toolhelp.h:249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szModule[MAX_MODULE_NAME + 1]; data/wine-5.0/dlls/toolhelp.dll16/toolhelp.h:309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szClassName[MAX_CLASSNAME + 1]; data/wine-5.0/dlls/typelib.dll16/typelib.c:77:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char xguid[80]; data/wine-5.0/dlls/typelib.dll16/typelib.c:78:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char typelibkey[100],pathname[260]; data/wine-5.0/dlls/typelib.dll16/typelib.c:85:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( typelibkey, "SOFTWARE\\Classes\\Typelib\\{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}\\%d.%d\\%x\\win16", data/wine-5.0/dlls/typelib.dll16/typelib.c:91:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(xguid,"<guid 0x%08x>",(DWORD)guid); data/wine-5.0/dlls/ucrtbase/tests/cpp.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mangled[32]; data/wine-5.0/dlls/ucrtbase/tests/cpp.c:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:109:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_wday[7]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:110:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *wday[7]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:111:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *short_mon[12]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:112:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *mon[12]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:119:11: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t *short_wdayW[7]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:120:11: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t *wdayW[7]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:121:11: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t *short_monW[12]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:122:11: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const wchar_t *monW[12]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:468:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH+32]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&exception, e, sizeof(MSVCRT__exception)); data/wine-5.0/dlls/ucrtbase/tests/misc.c:676:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char func[16]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:758:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char func[16]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:794:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char func[16]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:818:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char func[16]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1091:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *ret[7]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1139:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1232:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1333:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1368:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[2*MAX_PATH]; data/wine-5.0/dlls/ucrtbase/tests/misc.c:1381:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+len, test_file, sizeof(test_file)); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1382:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if((fd = open(path, O_WRONLY | O_CREAT | O_BINARY, _S_IREAD |_S_IWRITE)) >= 0) data/wine-5.0/dlls/ucrtbase/tests/misc.c:1393:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+len, test_dir, sizeof(test_dir)); data/wine-5.0/dlls/ucrtbase/tests/printf.c:157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:231:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t buffer[8]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:232:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char narrow[8], narrow_fmt[16]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:385:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t bufw[1024]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:386:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufa[1024]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:487:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[14] = { 0 }; data/wine-5.0/dlls/ucrtbase/tests/printf.c:585:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:586:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wbuffer[20]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:603:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[50]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:629:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:641:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[30]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:682:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/ucrtbase/tests/printf.c:683:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wbuffer[20]; data/wine-5.0/dlls/ucrtbase/tests/scanf.c:65:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100], buffer1[100]; data/wine-5.0/dlls/ucrtbase/tests/scanf.c:137:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%f %f", float1, float2); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:143:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%lf", 32.715); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:167:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "foo"); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:168:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer1, "bar"); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:248:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "foo"); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:249:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer1, "bar"); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:262:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "foo"); data/wine-5.0/dlls/ucrtbase/tests/scanf.c:263:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer1, "bar"); data/wine-5.0/dlls/urlmon/axinstall.c:93:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->install_file, ctx->tmp_dir, path_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/axinstall.c:95:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->install_file+path_len+1, ctx->file_name, (file_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/axinstall.c:100:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, infW, sizeof(infW)); data/wine-5.0/dlls/urlmon/axinstall.c:106:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dllW, sizeof(dllW)); data/wine-5.0/dlls/urlmon/axinstall.c:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, ocxW, sizeof(ocxW)); data/wine-5.0/dlls/urlmon/axinstall.c:154:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+len, prev_ptr, ptr-prev_ptr); data/wine-5.0/dlls/urlmon/axinstall.c:160:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+len, ctx->tmp_dir, len2*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/binding.c:204:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key_name, mime_keyW, sizeof(mime_keyW)); data/wine-5.0/dlls/urlmon/binding.c:1248:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ppwzStr[0], wszMimes, sizeof(wszMimes)); data/wine-5.0/dlls/urlmon/binding.c:1274:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppwzStr, This->url, size); data/wine-5.0/dlls/urlmon/bindprot.c:758:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, This->buf, read); data/wine-5.0/dlls/urlmon/bindprot.c:966:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->buf+This->buf_size, buf, read); data/wine-5.0/dlls/urlmon/bindprot.c:1233:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, pProtocolData, sizeof(PROTOCOLDATA)); data/wine-5.0/dlls/urlmon/format.c:105:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgelt, This->fetc+This->it, cnt*sizeof(FORMATETC)); data/wine-5.0/dlls/urlmon/format.c:169:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->fetc, rgfmtetc, cfmtetc*sizeof(FORMATETC)); data/wine-5.0/dlls/urlmon/http.c:420:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->full_header, addl_header, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/http.c:422:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->full_header+len, default_headersW, sizeof(default_headersW)); data/wine-5.0/dlls/urlmon/internet.c:170:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result, url, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/internet.c:382:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result, url, (url_info.cchProtocol+3)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/mimefilter.c:446:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ret, mime, size); data/wine-5.0/dlls/urlmon/mimefilter.c:476:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext, ptr, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/mimefilter.c:577:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ret_mime, proposed_mime, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/mimefilter.c:671:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ret_mime, ret, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/mk.c:297:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(display_name, path, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/sec_mgr.c:549:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(root, path_start, (ptr-path_start+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/sec_mgr.c:602:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(secur_url, url, size); data/wine-5.0/dlls/urlmon/sec_mgr.c:1967:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(alloc_url, url, size * sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/session.c:88:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszKey, wszProtocolsKey, sizeof(wszProtocolsKey)); data/wine-5.0/dlls/urlmon/session.c:89:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszKey + ARRAY_SIZE(wszProtocolsKey), schema, (schema_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/session.c:572:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, buf, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/session.c:595:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret+len, buf, value_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/session.c:698:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, buf, len, NULL, 0); data/wine-5.0/dlls/urlmon/session.c:702:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buf, len, new_user_agent, size); data/wine-5.0/dlls/urlmon/tests/misc.c:90:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/urlmon/tests/misc.c:102:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/urlmon/tests/misc.c:104:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/urlmon/tests/misc.c:117:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/urlmon/tests/misc.c:119:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/urlmon/tests/misc.c:896:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, url1, sizeof(url1)); data/wine-5.0/dlls/urlmon/tests/misc.c:1779:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/misc.c:1934:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/misc.c:2358:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "test"); data/wine-5.0/dlls/urlmon/tests/misc.c:2575:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "test"); data/wine-5.0/dlls/urlmon/tests/protocol.c:235:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/urlmon/tests/protocol.c:344:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addl_headers, wszHeaders, sizeof(wszHeaders)); data/wine-5.0/dlls/urlmon/tests/protocol.c:382:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbSecurityId, sec_id, sizeof(sec_id)); data/wine-5.0/dlls/urlmon/tests/protocol.c:537:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, post_data, sizeof(post_data)-1); data/wine-5.0/dlls/urlmon/tests/protocol.c:974:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/urlmon/tests/protocol.c:984:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buf, "connection"); data/wine-5.0/dlls/urlmon/tests/protocol.c:994:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, connectionW, sizeof(connectionW)); data/wine-5.0/dlls/urlmon/tests/protocol.c:1447:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, post_data, sizeof(post_data)); data/wine-5.0/dlls/urlmon/tests/protocol.c:1473:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppwzStr, acc_mimeW, sizeof(acc_mimeW)); data/wine-5.0/dlls/urlmon/tests/protocol.c:1485:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppwzStr, user_agentW, sizeof(user_agentW)); data/wine-5.0/dlls/urlmon/tests/protocol.c:1504:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*ppwzStr, binding_urls[tested_protocol], size); data/wine-5.0/dlls/urlmon/tests/protocol.c:1791:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&exp_bindinfo, &bindinfo, sizeof(bindinfo)); data/wine-5.0/dlls/urlmon/tests/protocol.c:2184:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, "gif87a", 6); data/wine-5.0/dlls/urlmon/tests/protocol.c:2203:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, "gif87a", 6); data/wine-5.0/dlls/urlmon/tests/protocol.c:3107:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, wszFile, sizeof(wszFile)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3111:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+len, wszIndexHtml, sizeof(wszIndexHtml)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3119:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, wszFile2, sizeof(wszFile2)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3122:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_name_buf+len, wszIndexHtml, sizeof(wszIndexHtml)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3133:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, wszFile3, sizeof(wszFile3)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3137:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+len, wszIndexHtml, sizeof(wszIndexHtml)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3145:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, wszFile4, sizeof(wszFile4)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3148:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_name_buf+len, wszIndexHtml, sizeof(wszIndexHtml)); data/wine-5.0/dlls/urlmon/tests/protocol.c:3188:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_path[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:185:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:187:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:857:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:858:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/sec_mgr.c:1475:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, ret, (*pcchResult)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/tests/stream.c:265:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char INDEX_HTML_A[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/stream.c:269:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, INDEX_HTML_A, -1, INDEX_HTML, MAX_PATH); data/wine-5.0/dlls/urlmon/tests/stream.c:297:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/urlmon/tests/uri.c:7692:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_UTF8, 0, str, -1, NULL, 0); data/wine-5.0/dlls/urlmon/tests/uri.c:7694:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, str, -1, ret, len); data/wine-5.0/dlls/urlmon/tests/uri.c:10664:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, parse_resultW, sizeof(parse_resultW)); data/wine-5.0/dlls/urlmon/tests/uri.c:10683:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwzResult, combine_resultW, sizeof(combine_resultW)); data/wine-5.0/dlls/urlmon/tests/uri.c:11020:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(longurl, http_urlW, sizeof(http_urlW)); data/wine-5.0/dlls/urlmon/tests/uri.c:11026:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy, longurl, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/tests/url.c:1167:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, data, sizeof(data)); data/wine-5.0/dlls/urlmon/tests/url.c:1292:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbSecurityId, sec_id, sizeof(sec_id)); data/wine-5.0/dlls/urlmon/tests/url.c:2883:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, url_a, -1, current_url, ARRAY_SIZE(current_url)); data/wine-5.0/dlls/urlmon/tests/url.c:3655:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file_urlA, -1, file_url, INTERNET_MAX_URL_LENGTH); data/wine-5.0/dlls/urlmon/tests/url.c:3689:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[6500], curdir[MAX_PATH]; data/wine-5.0/dlls/urlmon/tests/url.c:3708:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, curdir, -1, cache_file_name, MAX_PATH); data/wine-5.0/dlls/urlmon/umon.c:830:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szURL, -1, NULL, 0); data/wine-5.0/dlls/urlmon/umon.c:832:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szURL, -1, url, len); data/wine-5.0/dlls/urlmon/umstream.c:271:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szURL, -1, NULL, 0); data/wine-5.0/dlls/urlmon/umstream.c:278:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szURL, -1, szURLW, len); data/wine-5.0/dlls/urlmon/umstream.c:323:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, szURL, -1, NULL, 0); data/wine-5.0/dlls/urlmon/umstream.c:327:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szURL, -1, szURLW, len); data/wine-5.0/dlls/urlmon/uri.c:2414:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->host, data->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:2512:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->host, data->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:2568:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->host, data->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:2705:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->host, data->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:2757:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->port, data->port_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:2777:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->port, data->port_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:3012:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri->canon_uri+uri->canon_len, data->path, data->path_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:3461:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*component, source, source_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:3502:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*component+pos, new_value, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4047:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri, data->scheme, data->scheme_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4076:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length, data->username, data->username_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4083:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length+1, data->password, data->password_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4106:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length, data->host, data->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4161:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length, data->path, data->path_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4168:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length, data->query, data->query_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4174:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uri+length, data->fragment, data->fragment_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4317:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty, This->canon_uri, This->userinfo_start*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4320:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty+This->userinfo_start, This->canon_uri+This->userinfo_start+1, data/wine-5.0/dlls/urlmon/uri.c:4328:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty, This->canon_uri, This->userinfo_start*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4329:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty+This->userinfo_start, This->canon_uri+This->userinfo_start+2, data/wine-5.0/dlls/urlmon/uri.c:4373:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty, This->canon_uri, This->userinfo_start*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:4375:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*pbstrProperty+This->userinfo_start, data/wine-5.0/dlls/urlmon/uri.c:5250:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, data, len); data/wine-5.0/dlls/urlmon/uri.c:5835:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uriW, pwzURI, uri_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:5838:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(uriW+uri_len, pwzFragment, (frag_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6438:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, base, base_copy_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6441:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, relative, relative_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6597:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, base->canon_uri+base->path_start, 3*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6601:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, relative->canon_uri+relative->path_start, relative->path_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6955:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, display, (display_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6992:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, uri->canon_uri+uri->scheme_start, uri->scheme_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:6996:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, colon_slashesW, sizeof(colon_slashesW)); data/wine-5.0/dlls/urlmon/uri.c:7000:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, uri->canon_uri+uri->authority_start, uri->authority_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7039:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, uri->canon_uri, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7062:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, slash_slashW, sizeof(slash_slashW)); data/wine-5.0/dlls/urlmon/uri.c:7064:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, uri->canon_uri+uri->host_start, uri->host_len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7098:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, buffer, (*result_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7125:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, received, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7154:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, received, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7182:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, received, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, received, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/uri.c:7238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, received, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/urlmon_main.c:615:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->u.lpszFileName, src->u.lpszFileName, size); data/wine-5.0/dlls/urlmon/urlmon_main.c:636:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, src_ptr, size); data/wine-5.0/dlls/urlmon/urlmon_main.c:668:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pcbiDest, pcbiSrc, pcbiSrc->cbSize); data/wine-5.0/dlls/urlmon/urlmon_main.c:671:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pcbiDest, pcbiSrc, size); data/wine-5.0/dlls/urlmon/urlmon_main.c:681:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pcbiDest->szExtraInfo, pcbiSrc->szExtraInfo, size); data/wine-5.0/dlls/urlmon/urlmon_main.c:702:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pcbiDest->szCustomVerb, pcbiSrc->szCustomVerb, size); data/wine-5.0/dlls/urlmon/urlmon_main.h:249:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/urlmon/urlmon_main.h:262:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/urlmon/urlmon_main.h:275:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/urlmon/urlmon_main.h:278:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/user.exe16/bidi.c:179:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( lpszName, "English" ); data/wine-5.0/dlls/user.exe16/comm.c:714:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. stol = (unsigned char *)COM[cid].unknown + COMM_MSR_OFFSET; data/wine-5.0/dlls/user.exe16/comm.c:761:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. stol = (unsigned char *)COM[cid].unknown + COMM_MSR_OFFSET; data/wine-5.0/dlls/user.exe16/comm.c:1009:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpvBuf, ptr->inbuf + ptr->ibuf_tail, status); data/wine-5.0/dlls/user.exe16/comm.c:1061:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpvBuf, ptr->outbuf + ptr->obuf_head, status); data/wine-5.0/dlls/user.exe16/dialog.c:110:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[10]; data/wine-5.0/dlls/user.exe16/dialog.c:124:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x80: strcpy( buffer, "BUTTON" ); break; data/wine-5.0/dlls/user.exe16/dialog.c:125:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x81: strcpy( buffer, "EDIT" ); break; data/wine-5.0/dlls/user.exe16/dialog.c:126:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x82: strcpy( buffer, "STATIC" ); break; data/wine-5.0/dlls/user.exe16/dialog.c:127:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x83: strcpy( buffer, "LISTBOX" ); break; data/wine-5.0/dlls/user.exe16/dialog.c:128:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x84: strcpy( buffer, "SCROLLBAR" ); break; data/wine-5.0/dlls/user.exe16/dialog.c:129:24: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0x85: strcpy( buffer, "COMBOBOX" ); break; data/wine-5.0/dlls/user.exe16/message.c:268:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &args.u, MapSL(lParam), size ); data/wine-5.0/dlls/user.exe16/message.c:541:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ptr16 != NULL && ptr32 != NULL) memcpy(ptr32, ptr16, sz); data/wine-5.0/dlls/user.exe16/message.c:558:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ptr16 != NULL && ptr32 != NULL) memcpy(ptr16, ptr32, sz); data/wine-5.0/dlls/user.exe16/message.c:867:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2]; data/wine-5.0/dlls/user.exe16/message.c:1245:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2]; data/wine-5.0/dlls/user.exe16/message.c:2110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, text, size ); data/wine-5.0/dlls/user.exe16/message.c:2136:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, text, size ); data/wine-5.0/dlls/user.exe16/message.c:2183:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( textA, LocalLock( hloc ), alloc_size ); data/wine-5.0/dlls/user.exe16/message.c:2210:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( LocalLock(hloc32), text, count ); data/wine-5.0/dlls/user.exe16/network.c:184:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[32]; data/wine-5.0/dlls/user.exe16/user.c:69:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[1]; data/wine-5.0/dlls/user.exe16/user.c:301:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)(ptr + 1) + and_size + xor_size, &icon, sizeof(icon) ); data/wine-5.0/dlls/user.exe16/user.c:343:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)(ptr + 1) + xor_size + and_size, &ret, sizeof(ret) ); data/wine-5.0/dlls/user.exe16/user.c:927:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr32, ptr16, size ); data/wine-5.0/dlls/user.exe16/user.c:999:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr16, ptr32, size ); data/wine-5.0/dlls/user.exe16/user.c:1055:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (HIWORD(name) && name[0] == '#') name = ULongToPtr(atoi( name + 1 )); data/wine-5.0/dlls/user.exe16/user.c:1215:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, p + 1, ret); data/wine-5.0/dlls/user.exe16/user.c:1333:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->str, str16, cch ); data/wine-5.0/dlls/user.exe16/user.c:2377:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, info, sizeof(*info) ); data/wine-5.0/dlls/user.exe16/user.c:2378:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + 1, lpANDbits, sizeAnd ); data/wine-5.0/dlls/user.exe16/user.c:2379:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)(ptr + 1) + sizeAnd, lpXORbits, sizeXor ); data/wine-5.0/dlls/user.exe16/user.c:2510:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. len = sprintf( number, "%d", int_view ); data/wine-5.0/dlls/user.exe16/user.c:2515:19: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. len = sprintf( number, "%u", int_view ); data/wine-5.0/dlls/user.exe16/user.c:2543:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (len) memcpy( p, lpcstr_view, len ); data/wine-5.0/dlls/user.exe16/user.c:2564:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (len > sign) memcpy( p, number + sign, len - sign ); data/wine-5.0/dlls/user.exe16/user.c:3194:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(from,"Systemmessage, messageid = 0x%08x\n",dwMessageId); data/wine-5.0/dlls/user.exe16/user.c:3269:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( fmtstr, "%s" ); data/wine-5.0/dlls/user.exe16/user.c:3329:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( allocstring,target,talloced); data/wine-5.0/dlls/user.exe16/window.c:213:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[ATOM_BUFFER_SIZE]; data/wine-5.0/dlls/user.exe16/window.c:1895:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/user.exe16/window.c:1930:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, className, -1, bufferW, ARRAY_SIZE(bufferW))) data/wine-5.0/dlls/user.exe16/window.c:2139:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char caption[256], text[256]; data/wine-5.0/dlls/user32/class.c:225:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &req->extra_value, &newlong, sizeof(LONG) ); data/wine-5.0/dlls/user32/class.c:228:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &req->extra_value, &newval, sizeof(LONG_PTR) ); data/wine-5.0/dlls/user32/class.c:272:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD lenW = MultiByteToWideChar( CP_ACP, 0, name, lenA, NULL, 0 ); data/wine-5.0/dlls/user32/class.c:274:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, lenA, classPtr->menuName, lenW ); data/wine-5.0/dlls/user32/class.c:275:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( classPtr->menuName + lenW, name, lenA ); data/wine-5.0/dlls/user32/class.c:294:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( classPtr->menuName, name, lenW*sizeof(WCHAR) ); data/wine-5.0/dlls/user32/class.c:369:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(combined, ret, *basename_offset * sizeof(WCHAR)); data/wine-5.0/dlls/user32/class.c:694:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, wc->lpszClassName, -1, name, MAX_ATOM_LEN + 1 )) return 0; data/wine-5.0/dlls/user32/class.c:787:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, className, -1, name, MAX_ATOM_LEN + 1 )) data/wine-5.0/dlls/user32/class.c:910:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retdword, &reply->old_extra_value, sizeof(DWORD) ); data/wine-5.0/dlls/user32/class.c:914:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retvalue, &reply->old_extra_value, data/wine-5.0/dlls/user32/class.c:933:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retdword, (char *)(class + 1) + offset, sizeof(DWORD) ); data/wine-5.0/dlls/user32/class.c:937:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retvalue, (char *)(class + 1) + offset, sizeof(ULONG_PTR) ); data/wine-5.0/dlls/user32/class.c:1030:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &req->extra_value, &newval, sizeof(newval) ); data/wine-5.0/dlls/user32/class.c:1035:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &newval, sizeof(newval) ); data/wine-5.0/dlls/user32/class.c:1066:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retdword, ptr, sizeof(DWORD) ); data/wine-5.0/dlls/user32/class.c:1067:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &newlong, sizeof(LONG) ); data/wine-5.0/dlls/user32/class.c:1072:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &retval, ptr, sizeof(ULONG_PTR) ); data/wine-5.0/dlls/user32/class.c:1073:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &newval, sizeof(LONG_PTR) ); data/wine-5.0/dlls/user32/class.c:1225:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, tmpbuf, ret * sizeof(WCHAR)); data/wine-5.0/dlls/user32/class.c:1329:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, ARRAY_SIZE( nameW ))) data/wine-5.0/dlls/user32/clipboard.c:414:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( from_codepage, 0, src, size, NULL, 0 ); data/wine-5.0/dlls/user32/clipboard.c:416:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( from_codepage, 0, src, size, srcW, len ); data/wine-5.0/dlls/user32/clipboard.c:443:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ((len = MultiByteToWideChar( codepage, 0, src, size, NULL, 0 ))) data/wine-5.0/dlls/user32/clipboard.c:446:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( codepage, 0, src, size, ret, len ); data/wine-5.0/dlls/user32/clipboard.c:491:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmi, &header, header.bV5Size ); data/wine-5.0/dlls/user32/clipboard.c:515:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmi, src, min( header_size, src_size )); data/wine-5.0/dlls/user32/clipboard.c:518:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)bmi + header_size, (char *)src + src_size, bits_size ); data/wine-5.0/dlls/user32/combo.c:1724:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len + 1); data/wine-5.0/dlls/user32/cursoricon.c:215:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, png->buffer + png->pos, length); data/wine-5.0/dlls/user32/cursoricon.c:229:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char c[4]; data/wine-5.0/dlls/user32/cursoricon.c:243:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char png_sig[8] = { 0x89,'P','N','G',0x0d,0x0a,0x1a,0x0a }; data/wine-5.0/dlls/user32/cursoricon.c:244:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char png_IHDR[8] = { 0,0,0,0x0d,'I','H','D','R' }; data/wine-5.0/dlls/user32/cursoricon.c:247:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char png_sig[8]; data/wine-5.0/dlls/user32/cursoricon.c:248:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ihdr_sig[8]; data/wine-5.0/dlls/user32/cursoricon.c:1234:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bmi_copy, bmi, size ); data/wine-5.0/dlls/user32/cursoricon.c:2926:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fix_info, info, size); data/wine-5.0/dlls/user32/cursoricon.c:2931:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(scaled_info, fix_info, size); data/wine-5.0/dlls/user32/cursoricon.c:3010:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/user32/cursoricon.c:3012:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, u_name, len ); data/wine-5.0/dlls/user32/cursoricon.c:3146:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bi, &ds.dsBmih, sizeof(BITMAPINFOHEADER)); data/wine-5.0/dlls/user32/dde_client.c:584:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). memSize = MultiByteToWideChar( CP_ACP, 0, pData, cbData, NULL, 0) * sizeof(WCHAR); data/wine-5.0/dlls/user32/dde_client.c:599:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDst, pData, cbData); data/wine-5.0/dlls/user32/dde_client.c:609:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pData, cbData, (LPWSTR)pDst, memSize/sizeof(WCHAR)); data/wine-5.0/dlls/user32/dde_client.c:748:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ddePoke->Value, pData, cbData); data/wine-5.0/dlls/user32/dde_client.c:1303:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/dde_misc.c:1341:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pByte, pSrc + cbOff, cb); data/wine-5.0/dlls/user32/dde_misc.c:1374:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDst + cbOff, pSrc, cb); data/wine-5.0/dlls/user32/dde_misc.c:1421:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pDst, pByte + cbOff, dwRet); data/wine-5.0/dlls/user32/dde_misc.c:1529:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (p) memcpy(p, pDd, sizeof(WINE_DDEHEAD)); data/wine-5.0/dlls/user32/dde_misc.c:1600:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wdh + 1, pDdh + 1, dwSize); data/wine-5.0/dlls/user32/dde_misc.c:1617:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wdh + 1, &bmp, sizeof(bmp)); data/wine-5.0/dlls/user32/dde_misc.c:2473:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpConvInfo, &ci, min((size_t)lpConvInfo->cb, sizeof(ci))); data/wine-5.0/dlls/user32/dde_server.c:412:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/dde_server.c:780:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, ptr, size, NULL, 0 ); data/wine-5.0/dlls/user32/dde_server.c:782:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ptr, size, (WCHAR *)DdeAccessData(ret, NULL), len ); data/wine-5.0/dlls/user32/defwnd.c:98:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar( CP_ACP, 0, text, -1, NULL, 0 ); data/wine-5.0/dlls/user32/defwnd.c:105:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, text, -1, textW, count ); data/wine-5.0/dlls/user32/defwnd.c:916:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &ch, 1, &wch, 1); data/wine-5.0/dlls/user32/desktop.c:217:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/user32/dialog.c:1410:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[20]; data/wine-5.0/dlls/user32/dialog.c:1412:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (fSigned) sprintf( str, "%d", (INT)value ); data/wine-5.0/dlls/user32/dialog.c:1413:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf( str, "%u", value ); data/wine-5.0/dlls/user32/dialog.c:1425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[30]; data/wine-5.0/dlls/user32/dialog.c:1919:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT ret, len = MultiByteToWideChar( CP_ACP, 0, spec, -1, NULL, 0 ); data/wine-5.0/dlls/user32/dialog.c:1921:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, spec, -1, specW, len ); data/wine-5.0/dlls/user32/driver.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char driver_load_error[80]; data/wine-5.0/dlls/user32/driver.c:65:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( driver_load_error, "The explorer process failed to start." ); /* default error */ data/wine-5.0/dlls/user32/driver.c:72:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key, key_pathW, sizeof(key_pathW) ); data/wine-5.0/dlls/user32/edit.c:1257:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). UINT countW_new = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/edit.c:1273:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, es->text, es->buffer_size + 1); data/wine-5.0/dlls/user32/edit.c:2497:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, dst_len * sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:2502:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, line_len * sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:2595:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, es->text + s, bufl * sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:2663:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->undo_text + utl, buf, (e - s)*sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:2676:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->undo_text, buf, (e - s)*sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:2787:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). countW = MultiByteToWideChar(CP_ACP, 0, textA, countA, NULL, 0); data/wine-5.0/dlls/user32/edit.c:2794:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, countA, textW, countW); data/wine-5.0/dlls/user32/edit.c:2999:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(es->tabs, tabs, count * sizeof(INT)); data/wine-5.0/dlls/user32/edit.c:3131:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, es->text + s, len * sizeof(WCHAR)); data/wine-5.0/dlls/user32/edit.c:3913:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/edit.c:3916:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/edit.c:4789:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/edit.c:4791:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/edit.c:4840:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &charA, 1, &charW, 1); data/wine-5.0/dlls/user32/edit.c:4965:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (strng[0]) MultiByteToWideChar(CP_ACP, 0, strng, 2, &charW, 1); data/wine-5.0/dlls/user32/edit.c:4966:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). else MultiByteToWideChar(CP_ACP, 0, &strng[1], 1, &charW, 1); data/wine-5.0/dlls/user32/edit.c:4980:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &charA, 1, &charW, 1); data/wine-5.0/dlls/user32/edit.c:5035:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, nameA, -1, NULL, 0); data/wine-5.0/dlls/user32/edit.c:5037:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, nameA, -1, nameW, countW); data/wine-5.0/dlls/user32/exticon.c:244:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpID->idEntries[i], &lpcid->idEntries[i], sizeof(CURSORICONDIRENTRY) - 2); data/wine-5.0/dlls/user32/exticon.c:603:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, lpstrFile, -1, NULL, 0); data/wine-5.0/dlls/user32/exticon.c:606:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpstrFile, -1, lpwstrFile, len); data/wine-5.0/dlls/user32/exticon.c:680:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, lpstrFile, -1, NULL, 0); data/wine-5.0/dlls/user32/exticon.c:685:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpstrFile, -1, lpwstrFile, len); data/wine-5.0/dlls/user32/hook.c:99:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const hook_names[WH_WINEVENT - WH_MINHOOK + 1] = data/wine-5.0/dlls/user32/input.c:629:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &cChar, 1, &wChar, 1); data/wine-5.0/dlls/user32/input.c:650:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &cChar, 1, &wChar, 1); data/wine-5.0/dlls/user32/listbox.c:857:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( descr->tabs, tabs, descr->nb_tabs * sizeof(INT) ); data/wine-5.0/dlls/user32/listbox.c:2714:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2716:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:2736:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2738:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:2757:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2759:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:2901:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2903:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:2920:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2922:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:2943:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:2945:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:3027:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT countW = MultiByteToWideChar(CP_ACP, 0, textA, -1, NULL, 0); data/wine-5.0/dlls/user32/listbox.c:3029:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, textA, -1, textW, countW); data/wine-5.0/dlls/user32/listbox.c:3225:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &charA, 1, &charW, 1); data/wine-5.0/dlls/user32/lstr.c:83:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, s, len, bufW, len ); data/wine-5.0/dlls/user32/lstr.c:134:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_OEMCP, 0, s, len, bufW, len ); data/wine-5.0/dlls/user32/lstr.c:148:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_OEMCP, MB_PRECOMPOSED | MB_USEGLYPHCHARS, s, len, d, len ); data/wine-5.0/dlls/user32/mdi.c:568:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_child, ci->child, i * sizeof(HWND)); data/wine-5.0/dlls/user32/mdi.c:570:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_child + i, ci->child + i + 1, (ci->nActiveChildren - i - 1) * sizeof(HWND)); data/wine-5.0/dlls/user32/mdi.c:1269:29: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, (LPSTR)lParam, -1, NULL, 0 ); data/wine-5.0/dlls/user32/mdi.c:1271:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (LPSTR)lParam, -1, text, len ); data/wine-5.0/dlls/user32/menu.c:2177:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (pos > 0) memcpy( newItems, menu->items, pos * sizeof(MENUITEM) ); data/wine-5.0/dlls/user32/menu.c:2178:26: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (pos < menu->nItems) memcpy( &newItems[pos+1], &menu->items[pos], data/wine-5.0/dlls/user32/menu.c:4042:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/user32/menu.c:4046:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, newstr, len ); data/wine-5.0/dlls/user32/menu.c:4176:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/user32/menu.c:4180:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, newstr, len ); data/wine-5.0/dlls/user32/menu.c:4859:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &mii, lpmii, lpmii->cbSize); data/wine-5.0/dlls/user32/menu.c:4864:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpmii, &mii, mii.cbSize); data/wine-5.0/dlls/user32/menu.c:4881:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &mii, lpmii, lpmii->cbSize); data/wine-5.0/dlls/user32/menu.c:4885:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpmii, &mii, mii.cbSize); data/wine-5.0/dlls/user32/menu.c:4903:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/user32/menu.c:4905:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, menu->text, len ); data/wine-5.0/dlls/user32/menu.c:5026:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( pmii_out, pmii_in, pmii_in->cbSize); data/wine-5.0/dlls/user32/menu.c:5687:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, &ch, 1, &wch, 1); data/wine-5.0/dlls/user32/message.c:608:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch[2]; data/wine-5.0/dlls/user32/message.c:629:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, ch, 2, wch, 2 ); data/wine-5.0/dlls/user32/message.c:637:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, ch, 2, wch, 2 ); data/wine-5.0/dlls/user32/message.c:644:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, ch, 1, wch, 2 ); data/wine-5.0/dlls/user32/message.c:672:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, ch, 2, wch, 2 ); data/wine-5.0/dlls/user32/message.c:678:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ch[0]) MultiByteToWideChar( cp, 0, ch, 2, wch, 2 ); data/wine-5.0/dlls/user32/message.c:679:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). else MultiByteToWideChar( cp, 0, ch + 1, 1, wch, 1 ); data/wine-5.0/dlls/user32/message.c:1140:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->cs, &cs, sizeof(cs) ); data/wine-5.0/dlls/user32/message.c:1174:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->dis, &dis, sizeof(dis) ); data/wine-5.0/dlls/user32/message.c:1187:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->mis, &mis, sizeof(mis) ); data/wine-5.0/dlls/user32/message.c:1199:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->dls, &dls, sizeof(dls) ); data/wine-5.0/dlls/user32/message.c:1214:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->cis, &cis, sizeof(cis) ); data/wine-5.0/dlls/user32/message.c:1230:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->wp, &wp, sizeof(wp) ); data/wine-5.0/dlls/user32/message.c:1249:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->cds, &cds, sizeof(cds) ); data/wine-5.0/dlls/user32/message.c:1265:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->hi, &hi, sizeof(hi) ); data/wine-5.0/dlls/user32/message.c:1290:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->ncp, &ncp, sizeof(ncp) ); data/wine-5.0/dlls/user32/message.c:1305:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->msg, &msg, sizeof(msg) ); data/wine-5.0/dlls/user32/message.c:1390:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->mnm, &mnm, sizeof(mnm) ); data/wine-5.0/dlls/user32/message.c:1426:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->mcs, &mcs, sizeof(mcs) ); data/wine-5.0/dlls/user32/message.c:1446:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ps->hook, &h_extra, sizeof(h_extra) ); data/wine-5.0/dlls/user32/message.c:1687:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (WCHAR *)lparam, buffer, min( wparam*sizeof(WCHAR), size )); data/wine-5.0/dlls/user32/message.c:1690:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (MINMAXINFO *)lparam, buffer, min( sizeof(MINMAXINFO), size )); data/wine-5.0/dlls/user32/message.c:1731:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (SCROLLINFO *)lparam, buffer, min( sizeof(SCROLLINFO), size )); data/wine-5.0/dlls/user32/message.c:1734:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (SCROLLBARINFO *)lparam, buffer, min( sizeof(SCROLLBARINFO), size )); data/wine-5.0/dlls/user32/message.c:1741:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (RECT *)lparam, buffer, min( sizeof(RECT), size )); data/wine-5.0/dlls/user32/message.c:1745:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (WCHAR *)lparam, buffer, size ); data/wine-5.0/dlls/user32/message.c:1748:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (UINT *)lparam, buffer, min( wparam*sizeof(UINT), size )); data/wine-5.0/dlls/user32/message.c:1752:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (WCHAR *)lparam, buffer, size ); data/wine-5.0/dlls/user32/message.c:1764:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (lparam) memcpy( (BOOL *)lparam, buffer, min( sizeof(BOOL), size )); data/wine-5.0/dlls/user32/message.c:1768:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (RECT *)lparam, buffer, min( sizeof(RECT), size )); data/wine-5.0/dlls/user32/message.c:1789:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (DWORD *)wparam, buffer, min( sizeof(DWORD), size )); data/wine-5.0/dlls/user32/message.c:1794:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (lparam) memcpy( (DWORD *)lparam, buffer, min( sizeof(DWORD), size )); data/wine-5.0/dlls/user32/message.c:2133:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &hpack, *buffer, size ); data/wine-5.0/dlls/user32/message.c:2157:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, *buffer, size ); data/wine-5.0/dlls/user32/message.c:2177:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, *buffer, size ); data/wine-5.0/dlls/user32/message.c:2855:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( module, &msg_data->winevent + 1, size ); data/wine-5.0/dlls/user32/msgbox.c:93:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, ptr, len * sizeof(WCHAR) ); data/wine-5.0/dlls/user32/msgbox.c:105:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, ptr, len * sizeof(WCHAR) ); data/wine-5.0/dlls/user32/nonclient.c:201:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/user32/nonclient.c:204:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, strW, len ); data/wine-5.0/dlls/user32/painting.c:777:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/user32/property.c:122:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, str, -1, buffer, ATOM_BUFFER_SIZE )) return 0; data/wine-5.0/dlls/user32/property.c:154:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, str, -1, buffer, ATOM_BUFFER_SIZE )) return FALSE; data/wine-5.0/dlls/user32/property.c:187:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, str, -1, buffer, ATOM_BUFFER_SIZE )) return 0; data/wine-5.0/dlls/user32/property.c:224:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[ATOM_BUFFER_SIZE]; data/wine-5.0/dlls/user32/rawinput.c:346:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, ri, s); data/wine-5.0/dlls/user32/rawinput.c:499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, to_copy, to_copy_bytes); data/wine-5.0/dlls/user32/resource.c:72:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( accel->table, table, count * sizeof(*table) ); data/wine-5.0/dlls/user32/resource.c:90:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpTableName, -1, NULL, 0 ); data/wine-5.0/dlls/user32/resource.c:93:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpTableName, -1, uni, len ); data/wine-5.0/dlls/user32/resource.c:173:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, &ch, 1, &accel->table[i].key, 1 ); data/wine-5.0/dlls/user32/resource.c:278:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, p + 1, i * sizeof (WCHAR)); data/wine-5.0/dlls/user32/spy.c:63:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const MessageTypeNames[SPY_MAX_MSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:764:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const LVMMessageTypeNames[SPY_MAX_LVMMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:953:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const TVMessageTypeNames[SPY_MAX_TVMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1025:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const HDMMessageTypeNames[SPY_MAX_HDMMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1051:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const TCMMessageTypeNames[SPY_MAX_TCMMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1119:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const PGMMessageTypeNames[SPY_MAX_PGMMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1139:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const CCMMessageTypeNames[SPY_MAX_CCMMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1154:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const WINEMessageTypeNames[SPY_MAX_WINEMSGNUM + 1] = data/wine-5.0/dlls/user32/spy.c:1169:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const VK_KeyNames[SPY_MAX_VKKEYSNUM + 1] = data/wine-5.0/dlls/user32/spy.c:2045:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg_name[60]; /* message name (see SPY_GetMsgName) */ data/wine-5.0/dlls/user32/spy.c:2203:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( sp_e->msg_name, "WM_USER+%d", sp_e->msgnum - WM_USER ); data/wine-5.0/dlls/user32/spy.c:2205:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( sp_e->msg_name, "%04x", sp_e->msgnum ); data/wine-5.0/dlls/user32/spy.c:2572:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/user32/spy.c:2616:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). exclude[SPY_MAX_MSGNUM + 1] = atoi(buffer); data/wine-5.0/dlls/user32/spy.c:2659:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char taskName[20]; data/wine-5.0/dlls/user32/spy.c:2662:46: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (tid == GetCurrentThreadId()) strcpy( taskName, "self" ); data/wine-5.0/dlls/user32/spy.c:2663:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf( taskName, "tid %04x", GetCurrentThreadId() ); data/wine-5.0/dlls/user32/sysparams.c:333:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char spi_loaded[SPI_INDEX_COUNT]; data/wine-5.0/dlls/user32/sysparams.c:441:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, font16->lfFaceName, -1, font32->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/user32/sysparams.c:479:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, font32A->lfFaceName, -1, font32W->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/user32/sysparams.c:1196:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( entry->bin.ptr, buffer, entry->bin.size ); data/wine-5.0/dlls/user32/sysparams.c:1201:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr_param, entry->bin.ptr, min( int_param, entry->bin.size ) ); data/wine-5.0/dlls/user32/sysparams.c:1211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, entry->bin.ptr, entry->bin.size ); data/wine-5.0/dlls/user32/sysparams.c:1212:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, ptr_param, min( int_param, entry->bin.size )); data/wine-5.0/dlls/user32/sysparams.c:1216:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( entry->bin.ptr, buffer, entry->bin.size ); data/wine-5.0/dlls/user32/sysparams.c:2522:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, pvParam, -1, buffer, ARRAY_SIZE( buffer ))) data/wine-5.0/dlls/user32/sysparams.c:4239:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceName, DEFAULT_ADAPTER_NAME, sizeof(DEFAULT_ADAPTER_NAME) ); data/wine-5.0/dlls/user32/sysparams.c:4240:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceString, DEFAULT_ADAPTER_STRING, sizeof(DEFAULT_ADAPTER_STRING) ); data/wine-5.0/dlls/user32/sysparams.c:4248:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceID, DEFAULT_ADAPTER_ID, sizeof(DEFAULT_ADAPTER_ID) ); data/wine-5.0/dlls/user32/sysparams.c:4257:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceName, DEFAULT_MONITOR_NAME, sizeof(DEFAULT_MONITOR_NAME) ); data/wine-5.0/dlls/user32/sysparams.c:4258:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceString, DEFAULT_MONITOR_STRING, sizeof(DEFAULT_MONITOR_STRING) ); data/wine-5.0/dlls/user32/sysparams.c:4263:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceID, DEFAULT_MONITOR_INTERFACE_ID, sizeof(DEFAULT_MONITOR_INTERFACE_ID) ); data/wine-5.0/dlls/user32/sysparams.c:4265:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->DeviceID, DEFAULT_MONITOR_ID, sizeof(DEFAULT_MONITOR_ID) ); data/wine-5.0/dlls/user32/tests/class.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x10]; data/wine-5.0/dlls/user32/tests/class.c:930:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char name[9]; data/wine-5.0/dlls/user32/tests/class.c:1090:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/user32/tests/class.c:1103:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, path, MAX_PATH); data/wine-5.0/dlls/user32/tests/class.c:1134:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/user32/tests/class.c:1141:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "comctl32_class.manifest"); data/wine-5.0/dlls/user32/tests/class.c:1168:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/user32/tests/class.c:1194:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/user32/tests/class.c:1213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/user32/tests/class.c:1267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char module_name[MAX_PATH], *ptr; data/wine-5.0/dlls/user32/tests/class.c:1325:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[64]; data/wine-5.0/dlls/user32/tests/class.c:1327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/user32/tests/class.c:1330:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(path, "actctx_classes.manifest"); data/wine-5.0/dlls/user32/tests/clipboard.c:164:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH]; data/wine-5.0/dlls/user32/tests/clipboard.c:373:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/clipboard.c:489:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, "test\0\0\0\0\0", 10); data/wine-5.0/dlls/user32/tests/clipboard.c:499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, testW, sizeof(testW)); data/wine-5.0/dlls/user32/tests/clipboard.c:2013:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strA[12]; data/wine-5.0/dlls/user32/tests/clipboard.c:2038:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[16]; data/wine-5.0/dlls/user32/tests/clipboard.c:2039:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[12]; data/wine-5.0/dlls/user32/tests/clipboard.c:2055:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, test_data[i].strA, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2057:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bufferA, test_data[i].strA, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2064:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, test_data[i].strW, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2066:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bufferW, test_data[i].strW, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2073:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( cmd, "string_data %u", i ); data/wine-5.0/dlls/user32/tests/clipboard.c:2083:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[12]; data/wine-5.0/dlls/user32/tests/clipboard.c:2094:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bufferA, test_data[i].strA, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2100:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len2 = MultiByteToWideChar( CP_ACP, 0, bufferA, test_data[i].len, bufferW, 12 ); data/wine-5.0/dlls/user32/tests/clipboard.c:2110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bufferW, test_data[i].strW, test_data[i].len ); data/wine-5.0/dlls/user32/tests/clipboard.c:2148:37: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). set_clipboard_data_process( atoi( argv[3] )); data/wine-5.0/dlls/user32/tests/clipboard.c:2153:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). grab_clipboard_process( atoi( argv[3] )); data/wine-5.0/dlls/user32/tests/clipboard.c:2173:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). test_string_data_process( atoi( argv[3] )); data/wine-5.0/dlls/user32/tests/combo.c:207:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char list[20], edit[20]; data/wine-5.0/dlls/user32/tests/combo.c:477:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edit[20]; data/wine-5.0/dlls/user32/tests/combo.c:610:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16] = {0}; data/wine-5.0/dlls/user32/tests/combo.c:823:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2]; data/wine-5.0/dlls/user32/tests/combo.c:824:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", i); data/wine-5.0/dlls/user32/tests/cursoricon.c:399:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_name[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:971:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gifimage[35] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:978:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char jpgimage[285] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:1000:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char pngimage[285] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:1012:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char bmpimage[70] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:1021:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char bmpcoreimage[38] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:1028:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char gif4pixel[42] = { data/wine-5.0/dlls/user32/tests/cursoricon.c:1087:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[64]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1089:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(filename, "test."); data/wine-5.0/dlls/user32/tests/cursoricon.c:1245:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_icon[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path_image[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1284:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char old_working_dir[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1285:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_dir_current[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1286:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_dir_PATH[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1287:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char executable_path[MAX_PATH]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1289:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char old_PATH[10000]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1290:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_PATH[10000]; data/wine-5.0/dlls/user32/tests/cursoricon.c:1296:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(temp_dir_current, "wine-test-dir-current\\"); data/wine-5.0/dlls/user32/tests/cursoricon.c:1298:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(temp_dir_PATH, "wine-test-dir-path\\"); data/wine-5.0/dlls/user32/tests/cursoricon.c:1722:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &empty_anicursor.frames[0].data.bmi_data.data[0], &frame_identifier[0], sizeof(DWORD) ); data/wine-5.0/dlls/user32/tests/cursoricon.c:1748:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &empty_anicursor3.frames[i].data.bmi_data.data[0], &frame_identifier[i], sizeof(DWORD) ); data/wine-5.0/dlls/user32/tests/cursoricon.c:1842:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &empty_anicursor3_seq.frames[i].data.bmi_data.data[0], &frame_identifier[i], sizeof(DWORD) ); data/wine-5.0/dlls/user32/tests/cursoricon.c:1917:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, color, colorSize); data/wine-5.0/dlls/user32/tests/cursoricon.c:2956:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmi->bmiColors, tests[test_index].bmi_colors, tests[test_index].bmi_colors_size); data/wine-5.0/dlls/user32/tests/cursoricon.c:2963:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmi_output, bmi, bmi_size); data/wine-5.0/dlls/user32/tests/cursoricon.c:2969:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bits, tests[test_index].test_bits, tests[test_index].test_bits_size); data/wine-5.0/dlls/user32/tests/dde.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[200]; data/wine-5.0/dlls/user32/tests/dde.c:114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_PATH], *ptr; data/wine-5.0/dlls/user32/tests/dde.c:299:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/user32/tests/dde.c:590:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_PATH], *ptr; data/wine-5.0/dlls/user32/tests/dde.c:853:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_PATH]; data/wine-5.0/dlls/user32/tests/dde.c:1531:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const cmd_type[15] = { data/wine-5.0/dlls/user32/tests/dde.c:1766:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/dde.c:2359:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_PATH]; data/wine-5.0/dlls/user32/tests/dde.c:2408:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_cmd_w_to_a[64]; data/wine-5.0/dlls/user32/tests/dde.c:2435:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size_a_to_w = MultiByteToWideChar( CP_ACP, 0, test_cmd_a_to_a, -1, test_cmd_a_to_w, data/wine-5.0/dlls/user32/tests/dde.c:2483:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD nt_size = MultiByteToWideChar( CP_ACP, 0, (char *)cmd_w, size_w, test_cmd_a_to_w, data/wine-5.0/dlls/user32/tests/dde.c:2485:33: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD xp_size = MultiByteToWideChar( CP_ACP, 0, (char *)cmd_w, -1, NULL, 0 ) * sizeof(WCHAR); data/wine-5.0/dlls/user32/tests/dde.c:2509:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_cmd_w_to_a, size_w, test_cmd_a_to_w, data/wine-5.0/dlls/user32/tests/dde.c:2517:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_cmd_w_to_a, size_w, test_cmd_a_to_w, data/wine-5.0/dlls/user32/tests/dialog.c:163:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ctrlname[16]; data/wine-5.0/dlls/user32/tests/dialog.c:190:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (ctrlname, "ctrl%4.4ld", p->id); data/wine-5.0/dlls/user32/tests/dialog.c:1149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[64]; data/wine-5.0/dlls/user32/tests/dialog.c:1152:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(string, "Overwrite Me"); data/wine-5.0/dlls/user32/tests/dialog.c:1164:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[64]; data/wine-5.0/dlls/user32/tests/dialog.c:1354:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/dialog.c:1525:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[64]; data/wine-5.0/dlls/user32/tests/dialog.c:1633:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[64]; data/wine-5.0/dlls/user32/tests/dialog.c:2130:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[64]; data/wine-5.0/dlls/user32/tests/edit.c:739:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/user32/tests/edit.c:808:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/user32/tests/edit.c:812:8: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(szLocalString, "bar"); data/wine-5.0/dlls/user32/tests/edit.c:1348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAXLEN]; data/wine-5.0/dlls/user32/tests/edit.c:1484:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Tahoma"); data/wine-5.0/dlls/user32/tests/edit.c:1867:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Arial"); data/wine-5.0/dlls/user32/tests/edit.c:2100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/user32/tests/edit.c:2148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/user32/tests/edit.c:2204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/user32/tests/edit.c:2271:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/dlls/user32/tests/edit.c:2726:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLocalString[MAXLEN]; data/wine-5.0/dlls/user32/tests/edit.c:2734:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName,"Arial"); data/wine-5.0/dlls/user32/tests/edit.c:3185:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/wine-5.0/dlls/user32/tests/input.c:227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/user32/tests/input.c:1259:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[256]; data/wine-5.0/dlls/user32/tests/input.c:1263:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buff, "----"); data/wine-5.0/dlls/user32/tests/input.c:1643:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nameA[128]; data/wine-5.0/dlls/user32/tests/input.c:2073:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char klid[KL_NAMELENGTH]; data/wine-5.0/dlls/user32/tests/input.c:2093:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[40]; data/wine-5.0/dlls/user32/tests/listbox.c:40:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const strings[4] = { data/wine-5.0/dlls/user32/tests/listbox.c:54:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/user32/tests/listbox.c:923:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], curdir[MAX_PATH]; data/wine-5.0/dlls/user32/tests/listbox.c:931:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathBuffer[MAX_PATH]; data/wine-5.0/dlls/user32/tests/listbox.c:996:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1053:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1157:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1232:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1296:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1343:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1444:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathBuffer[MAX_PATH]; data/wine-5.0/dlls/user32/tests/listbox.c:1445:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char itemBuffer[MAX_PATH]; data/wine-5.0/dlls/user32/tests/listbox.c:1446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempBuffer[MAX_PATH]; data/wine-5.0/dlls/user32/tests/listbox.c:1477:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1514:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1561:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1603:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1650:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1679:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "w*.c"); data/wine-5.0/dlls/user32/tests/listbox.c:1852:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\"); data/wine-5.0/dlls/user32/tests/listbox.c:1858:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\*"); data/wine-5.0/dlls/user32/tests/listbox.c:1866:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(pathBuffer, "C:\\INVALID$$DIR"); data/wine-5.0/dlls/user32/tests/menu.c:160:25: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100], *p; data/wine-5.0/dlls/user32/tests/menu.c:408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[80]; data/wine-5.0/dlls/user32/tests/menu.c:409:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char found[0x200]; data/wine-5.0/dlls/user32/tests/menu.c:480:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "test" ); data/wine-5.0/dlls/user32/tests/menu.c:554:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "test" ); data/wine-5.0/dlls/user32/tests/menu.c:870:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/user32/tests/menu.c:1085:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1086:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string2[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1088:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strback[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1116:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(string, "Dummy string"); data/wine-5.0/dlls/user32/tests/menu.c:1125:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(string,"Garbage"); data/wine-5.0/dlls/user32/tests/menu.c:1182:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(string2, "string2"); data/wine-5.0/dlls/user32/tests/menu.c:1406:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stringA[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1895:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strback[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1896:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strIn[0x80]; data/wine-5.0/dlls/user32/tests/menu.c:1907:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(strIn, "Case 1 MenuItem"); data/wine-5.0/dlls/user32/tests/menu.c:1949:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(strIn, "Case 2 SubMenu"); data/wine-5.0/dlls/user32/tests/menu.c:1990:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(strIn, "Case 2 MenuItem 1"); data/wine-5.0/dlls/user32/tests/menu.c:2016:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(strIn, "Case 2 MenuItem 2"); data/wine-5.0/dlls/user32/tests/menu.c:2832:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/user32/tests/menu.c:2938:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/user32/tests/menu.c:3822:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/user32/tests/monitor.c:68:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/user32/tests/monitor.c:128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char monitor_name[32]; data/wine-5.0/dlls/user32/tests/monitor.c:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/user32/tests/monitor.c:136:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(monitor_name + strlen(monitor_name), "\\Monitor%d", monitor_index); data/wine-5.0/dlls/user32/tests/monitor.c:179:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char primary_device_name[32]; data/wine-5.0/dlls/user32/tests/monitor.c:180:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char primary_monitor_device_name[32]; data/wine-5.0/dlls/user32/tests/monitor.c:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char adapter_name[32]; data/wine-5.0/dlls/user32/tests/msg.c:169:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[512]; /* trace output */ data/wine-5.0/dlls/user32/tests/msg.c:2051:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[300]; data/wine-5.0/dlls/user32/tests/msg.c:2070:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (flags) sprintf(buffer + strlen(buffer),"|0x%04x", flags); data/wine-5.0/dlls/user32/tests/msg.c:2141:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const CBT_code_name[10] = data/wine-5.0/dlls/user32/tests/msg.c:2296:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( seq->output + strlen(seq->output), " (flags %x)", msg->flags ); data/wine-5.0/dlls/user32/tests/msg.c:6401:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(logfont.lfFaceName, "Tahoma"); data/wine-5.0/dlls/user32/tests/msg.c:6411:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char desc[64]; data/wine-5.0/dlls/user32/tests/msg.c:6519:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_SETTEXT on a visible button", i); data/wine-5.0/dlls/user32/tests/msg.c:6527:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_SETTEXT on an invisible button", i); data/wine-5.0/dlls/user32/tests/msg.c:6536:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_SETTEXT on an invisible button", i); data/wine-5.0/dlls/user32/tests/msg.c:6578:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_LBUTTONDOWN on a button", i); data/wine-5.0/dlls/user32/tests/msg.c:6583:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_LBUTTONUP on a button", i); data/wine-5.0/dlls/user32/tests/msg.c:6590:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "button[%i]: WM_SETFONT on a button", i); data/wine-5.0/dlls/user32/tests/msg.c:8646:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, filename, -1, path, MAX_PATH ); data/wine-5.0/dlls/user32/tests/msg.c:8659:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file, -1, path, MAX_PATH); data/wine-5.0/dlls/user32/tests/msg.c:8687:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/msg.c:9915:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/msg.c:10497:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/msg.c:10523:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/user32/tests/msg.c:13467:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const sw_cmd_name[13] = data/wine-5.0/dlls/user32/tests/msg.c:13474:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comment[64]; data/wine-5.0/dlls/user32/tests/msg.c:14348:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2]; data/wine-5.0/dlls/user32/tests/msg.c:14352:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar( cp, 0, str, 2, wstr, 2 ) == 1 && data/wine-5.0/dlls/user32/tests/msg.c:15521:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[64]; data/wine-5.0/dlls/user32/tests/msg.c:15647:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/user32/tests/msg.c:16267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/dlls/user32/tests/resource.c:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char copiedstring[128], returnedstring[128]; data/wine-5.0/dlls/user32/tests/resource.c:63:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copiedstringw, resourcepointer, length1 * sizeof(WCHAR)); data/wine-5.0/dlls/user32/tests/resource.c:84:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/user32/tests/static.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffA[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:483:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/dlls/user32/tests/sysparams.c:493:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). value = atoi( buf); data/wine-5.0/dlls/user32/tests/sysparams.c:546:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( plf->lfFaceName, plf16->lfFaceName, LF_FACESIZE ); data/wine-5.0/dlls/user32/tests/sysparams.c:630:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *setmouse_valuenames[3] = { data/wine-5.0/dlls/user32/tests/sysparams.c:645:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/user32/tests/sysparams.c:661:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", curr_val[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:882:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:889:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:971:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:978:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:1049:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:1056:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:1229:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:1238:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:1263:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:1272:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:1291:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:1304:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", curr_val ); data/wine-5.0/dlls/user32/tests/sysparams.c:1315:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", curr_val ); data/wine-5.0/dlls/user32/tests/sysparams.c:1324:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", saved_val ); data/wine-5.0/dlls/user32/tests/sysparams.c:1332:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", saved_val ); data/wine-5.0/dlls/user32/tests/sysparams.c:1796:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( im_cur.lfFont.lfFaceName, "MS Serif"); data/wine-5.0/dlls/user32/tests/sysparams.c:1798:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( im_cur.lfFont.lfFaceName, "MS Sans Serif"); data/wine-5.0/dlls/user32/tests/sysparams.c:2231:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2238:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2268:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2275:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2309:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2316:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2348:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2355:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2387:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2394:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2426:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/user32/tests/sysparams.c:2432:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "%d", vals[i] ); data/wine-5.0/dlls/user32/tests/sysparams.c:2449:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char oldval[260]; data/wine-5.0/dlls/user32/tests/sysparams.c:2450:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char newval[260]; data/wine-5.0/dlls/user32/tests/text.c:629:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. { int i; char strdisp[64];\ data/wine-5.0/dlls/user32/tests/text.c:772:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], *dst = tests[i].dst ? buf : NULL; data/wine-5.0/dlls/user32/tests/text.c:799:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], *dst = tests[i].dst ? buf : NULL; data/wine-5.0/dlls/user32/tests/text.c:834:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_OEMCP, MB_PRECOMPOSED | MB_USEGLYPHCHARS, &oem, 1, &expect, 1 ); data/wine-5.0/dlls/user32/tests/win.c:820:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text, "text", 4); data/wine-5.0/dlls/user32/tests/win.c:859:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text, textW, sizeof(textW)); data/wine-5.0/dlls/user32/tests/win.c:1198:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *CBT_code_name[10] = { data/wine-5.0/dlls/user32/tests/win.c:7432:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/user32/tests/win.c:7467:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/dlls/user32/tests/win.c:7490:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buf, "blah" ); data/wine-5.0/dlls/user32/tests/win.c:7511:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buf, "blah" ); data/wine-5.0/dlls/user32/tests/win.c:7910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf1[MAX_PATH], buf2[MAX_PATH]; data/wine-5.0/dlls/user32/tests/win.c:8020:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/user32/tests/win.c:8588:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *styleName[NUMBER_OF_THICK_CHILD_TESTS] = { data/wine-5.0/dlls/user32/tests/win.c:9174:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char class_name[128]; data/wine-5.0/dlls/user32/tests/win.c:9396:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH]; data/wine-5.0/dlls/user32/tests/win.c:10267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH]; data/wine-5.0/dlls/user32/tests/win.c:11784:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[MAX_PATH]; data/wine-5.0/dlls/user32/tests/winstation.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/dlls/user32/tests/winstation.c:37:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foobar" ); data/wine-5.0/dlls/user32/tests/winstation.c:42:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "foobar" ); data/wine-5.0/dlls/user32/tests/winstation.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/wine-5.0/dlls/user32/tests/winstation.c:461:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/user32/tests/winstation.c:470:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "blahblah"); data/wine-5.0/dlls/user32/tests/winstation.c:845:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char win_text[1024]; data/wine-5.0/dlls/user32/tests/winstation.c:875:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char win_text[1024]; data/wine-5.0/dlls/user32/tests/wsprintf.c:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[25]; data/wine-5.0/dlls/user32/tests/wsprintf.c:103:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, i64_formats[i].fmt, -1, fmt, ARRAY_SIZE(fmt)); data/wine-5.0/dlls/user32/tests/wsprintf.c:104:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, i64_formats[i].res, -1, res, ARRAY_SIZE(res)); data/wine-5.0/dlls/user32/text.c:170:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str + *len_str, ELLIPSISW, len_ellipsis*sizeof(WCHAR)); data/wine-5.0/dlls/user32/text.c:185:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (modstr, str, *len_str * sizeof(WCHAR)); data/wine-5.0/dlls/user32/text.c:260:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (lastSlash, ELLIPSISW, len_ellipsis*sizeof(WCHAR)); data/wine-5.0/dlls/user32/text.c:290:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(modstr, str, *len_str * sizeof(WCHAR)); data/wine-5.0/dlls/user32/text.c:965:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (retstr, str, size_retstr); data/wine-5.0/dlls/user32/text.c:1066:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (retstr) memcpy(str, retstr, size_retstr); data/wine-5.0/dlls/user32/text.c:1121:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wcount = MultiByteToWideChar( cp, 0, str, count, NULL, 0 ); data/wine-5.0/dlls/user32/text.c:1132:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, str, count, wstr, wcount ); data/wine-5.0/dlls/user32/text.c:1416:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, lpstr, count, NULL, 0 ); data/wine-5.0/dlls/user32/text.c:1419:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpstr, count, strW, len ); data/wine-5.0/dlls/user32/text.c:1469:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, lpstr, count, NULL, 0 ); data/wine-5.0/dlls/user32/text.c:1472:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpstr, count, strW, len ); data/wine-5.0/dlls/user32/user_main.c:204:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, app_defaultsW, 13 * sizeof(WCHAR) ); /* copy only software\\wine */ data/wine-5.0/dlls/user32/user_private.h:369:34: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((dst = heap_alloc(len))) memcpy(dst, src, len); data/wine-5.0/dlls/user32/win.c:91:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &newval, sizeof(newval) ); data/wine-5.0/dlls/user32/win.c:96:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &newval, sizeof(newval) ); data/wine-5.0/dlls/user32/win.c:100:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &val, sizeof(val) ); data/wine-5.0/dlls/user32/win.c:1764:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, className, -1, bufferW, ARRAY_SIZE( bufferW ))) data/wine-5.0/dlls/user32/win.c:2032:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, title, -1, NULL, 0 ); data/wine-5.0/dlls/user32/win.c:2034:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, title, -1, titleW, len ); data/wine-5.0/dlls/user32/win.c:2040:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar( CP_ACP, 0, className, -1, classW, ARRAY_SIZE( classW ))) data/wine-5.0/dlls/user32/winhelp.c:152:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((char*)lpwh) + sizeof(WINHELP) + nlen, (LPSTR)dwData, dsize); data/wine-5.0/dlls/user32/winproc.c:634:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], *cls; data/wine-5.0/dlls/user32/winproc.c:681:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ptr, buffer[512]; data/wine-5.0/dlls/user32/winproc.c:725:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ptr, buffer[512]; data/wine-5.0/dlls/user32/winproc.c:741:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ptr, buffer[1024]; data/wine-5.0/dlls/user32/winproc.c:780:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; /* FIXME: fixed sized buffer */ data/wine-5.0/dlls/user32/winproc.c:795:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ptr, buffer[512]; data/wine-5.0/dlls/user32/winproc.c:836:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch[2]; data/wine-5.0/dlls/user32/winstation.c:51:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/user32/winstation.c:93:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/user32/winstation.c:142:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/user32/winstation.c:287:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/user32/winstation.c:339:10: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar( CP_ACP, 0, name, -1, buffer, MAX_PATH )) data/wine-5.0/dlls/user32/winstation.c:593:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( info, reply->is_desktop ? desktopW : winstationW, size ); data/wine-5.0/dlls/user32/winstation.c:619:26: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( info, buffer, size ); data/wine-5.0/dlls/user32/wsprintf.c:278:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20], *p = buffer, *dst = number; data/wine-5.0/dlls/user32/wsprintf.c:371:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, argData.lpcstr_view, len ); data/wine-5.0/dlls/user32/wsprintf.c:399:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, number + sign, len - sign ); data/wine-5.0/dlls/user32/wsprintf.c:482:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (len) memcpy( p, argData.lpcwstr_view, len * sizeof(WCHAR) ); data/wine-5.0/dlls/userenv/tests/userenv.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/userenv/tests/userenv.c:66:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*result, buf, buflen + 1); data/wine-5.0/dlls/userenv/tests/userenv.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * st, systemroot[100]; data/wine-5.0/dlls/userenv/tests/userenv.c:235:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *profiles_dir, *buf, small_buf[1]; data/wine-5.0/dlls/userenv/userenv_main.c:285:17: [2] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Risk is low because the source is a constant string. wcscat(buf, L"Default"); data/wine-5.0/dlls/userenv/userenv_main.c:290:9: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(buf, L".Default"); data/wine-5.0/dlls/userenv/userenv_main.c:311:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, profiles_dir, len*sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2146:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&glyph_indices, &syllables[c], sizeof(IndicSyllable)); data/wine-5.0/dlls/usp10/shape.c:2297:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2363:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2419:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2483:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2527:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2578:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2628:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2678:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2730:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2775:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/shape.c:2813:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(input, pwcChars, cChars * sizeof(WCHAR)); data/wine-5.0/dlls/usp10/tests/usp10.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char todo_flag[6]; data/wine-5.0/dlls/usp10/tests/usp10.c:1268:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(rp->lf),lpelfe,sizeof(LOGFONTA)); data/wine-5.0/dlls/usp10/tests/usp10.c:2164:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "Fixedsys"); data/wine-5.0/dlls/usp10/tests/usp10.c:2279:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwOutGlyphs, pwOutGlyphs1, pcGlyphs * sizeof(*pwOutGlyphs)); data/wine-5.0/dlls/usp10/tests/usp10.c:3509:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lf.lfFaceName, "System"); data/wine-5.0/dlls/usp10/usp10.c:850:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(abc, &block[glyph & GLYPH_BLOCK_MASK], sizeof(ABC)); data/wine-5.0/dlls/usp10/usp10.c:859:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*block)[glyph & GLYPH_BLOCK_MASK], abc, sizeof(ABC)); data/wine-5.0/dlls/usp10/usp10.c:1497:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(layout_levels, levels, cInChars * sizeof(WORD)); data/wine-5.0/dlls/usp10/usp10.c:3770:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vistolog, indices, runs * sizeof(*vistolog)); data/wine-5.0/dlls/usp10/usp10.c:3781:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(logtovis, indices, runs * sizeof(*logtovis)); data/wine-5.0/dlls/uxtheme/buffer.c:84:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/uxtheme/draw.c:629:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (psz, &dstSize, sizeof (SIZE)); data/wine-5.0/dlls/uxtheme/draw.c:632:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (psz, &srcSize, sizeof (SIZE)); data/wine-5.0/dlls/uxtheme/draw.c:1835:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/wine-5.0/dlls/uxtheme/system.c:272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char colorStr[13]; data/wine-5.0/dlls/uxtheme/system.c:284:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (colorStr, "%d %d %d", data/wine-5.0/dlls/uxtheme/system.c:363:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char colorStr[13]; data/wine-5.0/dlls/vbscript/compile.c:139:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/vbscript/global.c:607:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(title_buf, vbscriptW, sizeof(vbscriptW)); data/wine-5.0/dlls/vbscript/global.c:1746:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2]; data/wine-5.0/dlls/vbscript/global.c:1769:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_ACP, 0, buf, len, &ch, 1)) { data/wine-5.0/dlls/vbscript/interp.c:241:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, name, size); data/wine-5.0/dlls/vbscript/lex.c:158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, ptr, (len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/vbscript/regexp.c:1967:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result + 1, gData->stateStack, data/wine-5.0/dlls/vbscript/regexp.c:1971:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(result + 1) + data/wine-5.0/dlls/vbscript/regexp.c:3034:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(gData->stateStack, backTrackData + 1, data/wine-5.0/dlls/vbscript/regexp.c:3039:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&x->parens[backTrackData->parenIndex], data/wine-5.0/dlls/vbscript/tests/createobj.c:127:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/vbscript/tests/createobj.c:129:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/vbscript/tests/run.c:174:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/vbscript/tests/run.c:176:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/vbscript/tests/run.c:191:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[64]; data/wine-5.0/dlls/vbscript/tests/run.c:2761:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, file_map, size, NULL, 0); data/wine-5.0/dlls/vbscript/tests/run.c:2763:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file_map, size, ret, len); data/wine-5.0/dlls/vbscript/tests/run.c:2802:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, data, size, NULL, 0); data/wine-5.0/dlls/vbscript/tests/run.c:2804:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, data, size, str, len); data/wine-5.0/dlls/vbscript/tests/vbscript.c:110:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/vbscript/tests/vbscript.c:112:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1040:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"queryinterface"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1053:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"SUBtract"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1093:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"Invoke"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1187:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"not_found"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1200:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"GLOBAL_VAR"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1208:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"addRef"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1233:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"VBScriptTypeInfo"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1249:5: [2] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant string. wcscpy(str, L"IDispatch"); data/wine-5.0/dlls/vbscript/vbregexp.c:324:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->match, result->cp-result->match_len, result->match_len*sizeof(WCHAR)); data/wine-5.0/dlls/vbscript/vbregexp.c:1202:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_pattern, pattern, size); data/wine-5.0/dlls/vbscript/vbregexp.c:1473:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf->buf+buf->len, str, len*sizeof(WCHAR)); data/wine-5.0/dlls/vbscript/vbscript.c:70:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy(ret, str, size); data/wine-5.0/dlls/vbscript/vbscript.h:414:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/vbscript/vbscript_main.c:135:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, mem, size); data/wine-5.0/dlls/vcomp/tests/vcomp.c:25:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char vcomp_manifest_file[MAX_PATH]; data/wine-5.0/dlls/vcomp/tests/vcomp.c:193:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/ver.dll16/version.c:98:39: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return find_entry_by_id( dir, atoi(name+1), root ); data/wine-5.0/dlls/ver.dll16/version.c:101:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). namelen = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/ver.dll16/version.c:108:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, namelen ); data/wine-5.0/dlls/ver.dll16/version.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[3]; data/wine-5.0/dlls/version/tests/info.c:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mypath[MAX_PATH] = ""; data/wine-5.0/dlls/version/tests/info.c:200:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(lpszVerString, "%d.%d.%d.%d", a, b, c, d); data/wine-5.0/dlls/version/tests/info.c:210:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char VersionString[MAX_PATH]; data/wine-5.0/dlls/version/tests/info.c:293:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mypathA[MAX_PATH]; data/wine-5.0/dlls/version/tests/info.c:473:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/version/tests/info.c:542:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\\StringFileInfo\\%08x", translation); data/wine-5.0/dlls/version/tests/info.c:588:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/version/tests/info.c:608:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ver + *length, extra_block, sizeof(extra_block)); data/wine-5.0/dlls/version/tests/info.c:648:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char desc[MAX_PATH]; data/wine-5.0/dlls/version/tests/info.c:723:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(desc, "\\StringFileInfo\\%04x%04x\\FileDescription", data/wine-5.0/dlls/version/tests/install.c:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[MAX_PATH]; data/wine-5.0/dlls/version/tests/install.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char appdir[MAX_PATH]; data/wine-5.0/dlls/version/tests/install.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH]; data/wine-5.0/dlls/version/tests/install.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/version/tests/install.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outBuf[MAX_PATH]; data/wine-5.0/dlls/version/tests/install.c:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windir[MAX_PATH]; data/wine-5.0/dlls/version/version.c:99:37: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). LPCSTR destdir,LPCSTR curdir,LPSTR tmpfile,PUINT tmpfilelen ) data/wine-5.0/dlls/version/version.c:102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char destfn[260],tmpfn[260],srcfn[260]; data/wine-5.0/dlls/version/version.c:112:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). tmpfile,*tmpfilelen); data/wine-5.0/dlls/version/version.c:134:6: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (tmpfile[0]) { data/wine-5.0/dlls/version/version.c:135:35: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf(tmpfn,"%s\\%s",pdest,tmpfile); data/wine-5.0/dlls/version/version.c:229:13: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). strcpy(tmpfile,tmpfn+tmplast); data/wine-5.0/dlls/version/version.c:246:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curfn[260]; data/wine-5.0/dlls/version/version.c:270:40: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). LPCWSTR destdir,LPCWSTR curdir,LPWSTR tmpfile,PUINT tmpfilelen ) data/wine-5.0/dlls/version/version.c:326:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *tmpfilelen = MultiByteToWideChar( CP_ACP, 0, wtmpf, -1, tmpfile, *tmpfilelen ); data/wine-5.0/dlls/version/version.c:326:66: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). *tmpfilelen = MultiByteToWideChar( CP_ACP, 0, wtmpf, -1, tmpfile, *tmpfilelen ); data/wine-5.0/dlls/vmm.vxd/vmm.c:39:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const VMM_Service_Name[N_VMM_SERVICE] = data/wine-5.0/dlls/vnbt.vxd/vnbt.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scope[254]; data/wine-5.0/dlls/vnbt.vxd/vnbt.c:89:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->scope + 1, fixedInfo->ScopeId, data/wine-5.0/dlls/wbemprox/builtin.c:2125:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + i, path, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/builtin.c:2260:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, path, len_path * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/builtin.c:2264:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + *len, segment, len_segment * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/builtin.c:3883:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, windowsW, sizeof(windowsW) ); data/wine-5.0/dlls/wbemprox/builtin.c:3884:64: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ver->dwMajorVersion == 10 && ver->dwMinorVersion == 0) memcpy( ret + len, win10W, sizeof(win10W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3885:68: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else if (ver->dwMajorVersion == 6 && ver->dwMinorVersion == 3) memcpy( ret + len, win8W, sizeof(win8W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3886:68: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else if (ver->dwMajorVersion == 6 && ver->dwMinorVersion == 2) memcpy( ret + len, win81W, sizeof(win81W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3889:54: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ver->wProductType == VER_NT_WORKSTATION) memcpy( ret + len, win7W, sizeof(win7W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3890:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( ret + len, win2008r2W, sizeof(win2008r2W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3894:54: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ver->wProductType == VER_NT_WORKSTATION) memcpy( ret + len, vistaW, sizeof(vistaW) ); data/wine-5.0/dlls/wbemprox/builtin.c:3895:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( ret + len, win2008W, sizeof(win2008W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3899:54: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ver->wProductType == VER_NT_WORKSTATION) memcpy( ret + len, winxp64W, sizeof(winxp64W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3900:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( ret + len, win2003W, sizeof(win2003W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3902:68: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else if (ver->dwMajorVersion == 5 && ver->dwMinorVersion == 1) memcpy( ret + len, winxpW, sizeof(winxpW) ); data/wine-5.0/dlls/wbemprox/builtin.c:3903:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. else memcpy( ret + len, win2000W, sizeof(win2000W) ); data/wine-5.0/dlls/wbemprox/builtin.c:3915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, caption, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/builtin.c:3916:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + len, partitionW, sizeof(partitionW) ); data/wine-5.0/dlls/wbemprox/builtin.c:4164:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, sid, len ); data/wine-5.0/dlls/wbemprox/builtin.c:4283:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->ptr, src->ptr, src->count * src->elem_size ); data/wine-5.0/dlls/wbemprox/security.c:47:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sadata, data, size ); data/wine-5.0/dlls/wbemprox/services.c:386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->class, q, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/services.c:402:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->filter, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/table.c:145:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, ptr, sizeof(FLOAT) ); data/wine-5.0/dlls/wbemprox/tests/query.c:495:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( class, full_path, full_path_len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/tests/query.c:496:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( class + full_path_len, processW, sizeof(processW) ); data/wine-5.0/dlls/wbemprox/tests/query.c:513:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( class, full_path, full_path_len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/wbemlocator.c:126:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *server, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/wbemlocator.c:147:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *namespace, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wbemprox/wbemprox_private.h:270:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, src, -1, NULL, 0 ); data/wine-5.0/dlls/wbemprox/wbemprox_private.h:271:51: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if ((dst = heap_alloc( len * sizeof(*dst) ))) MultiByteToWideChar( CP_ACP, 0, src, -1, dst, len ); data/wine-5.0/dlls/webservices/channel.c:379:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->headerName.bytes, src->headerName.bytes, src->headerName.length ); data/wine-5.0/dlls/webservices/channel.c:724:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( channel->addr.url.chars, endpoint->url.chars, endpoint->url.length * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/channel.c:1360:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, str->bytes, str->length ); data/wine-5.0/dlls/webservices/channel.c:1879:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, ptr, size ); data/wine-5.0/dlls/webservices/listener.c:306:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( addr, info->ai_addr, info->ai_addrlen ); data/wine-5.0/dlls/webservices/listener.c:336:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *host, url->host.chars, url->host.length * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/msg.c:460:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( msg->addr.chars, addr->url.chars, addr->url.length * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/msg.c:1122:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->name.bytes, name->bytes, name->length ); data/wine-5.0/dlls/webservices/msg.c:1132:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->ns.bytes, ns->bytes, ns->length ); data/wine-5.0/dlls/webservices/msg.c:1412:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( header->u.text->bytes, str->bytes, str->length ); data/wine-5.0/dlls/webservices/msg.c:1557:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar( CP_UTF8, 0, (char *)str->bytes, str->length, NULL, 0 ); data/wine-5.0/dlls/webservices/msg.c:1559:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)str->bytes, str->length, *ret, *len ); data/wine-5.0/dlls/webservices/msg.c:1850:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, name, len_name * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/msg.c:1853:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + len_name, value, len_value * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/msg.c:1867:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_UTF8, 0, (char *)str->bytes, str->length, NULL, 0 ); data/wine-5.0/dlls/webservices/msg.c:1869:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)str->bytes, str->length, ret, len ); data/wine-5.0/dlls/webservices/msg.c:1957:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!(len = MultiByteToWideChar( CP_UTF8, 0, (char *)msg->action->bytes, msg->action->length, NULL, 0 ))) data/wine-5.0/dlls/webservices/msg.c:1963:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)msg->action->bytes, msg->action->length, buf + 1, len ); data/wine-5.0/dlls/webservices/msg.c:1979:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!(len = MultiByteToWideChar( CP_UTF8, 0, (char *)msg->action->bytes, msg->action->length, NULL, 0 ))) data/wine-5.0/dlls/webservices/msg.c:1984:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, actionW, len_action * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/msg.c:1985:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)msg->action->bytes, msg->action->length, buf + len_action, len ); data/wine-5.0/dlls/webservices/reader.c:60:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( prop[id].value, value, size ); data/wine-5.0/dlls/webservices/reader.c:67:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, prop[id].value, prop[id].size ); data/wine-5.0/dlls/webservices/reader.c:281:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->value.bytes, src->value.bytes, src->value.length ); data/wine-5.0/dlls/webservices/reader.c:847:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( ret->value.bytes, data, len ); data/wine-5.0/dlls/webservices/reader.c:859:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( ret->bytes, data, len ); data/wine-5.0/dlls/webservices/reader.c:871:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy( ret->bytes, data, len ); data/wine-5.0/dlls/webservices/reader.c:985:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, read_current_ptr( reader ), len ); data/wine-5.0/dlls/webservices/reader.c:1002:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, read_current_ptr( reader ), len ); data/wine-5.0/dlls/webservices/reader.c:1010:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char utf8_length[128] = data/wine-5.0/dlls/webservices/reader.c:1023:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char utf8_mask[4] = { 0x7f, 0x1f, 0x0f, 0x07 }; data/wine-5.0/dlls/webservices/reader.c:1194:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*prefix_ret)->bytes, prefix.bytes, prefix.length ); data/wine-5.0/dlls/webservices/reader.c:1944:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (attr->ns->length) memcpy( attr->ns->bytes, ns->bytes, ns->length ); data/wine-5.0/dlls/webservices/reader.c:1988:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/wine-5.0/dlls/webservices/reader.c:2389:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new->bytes, old->bytes, old->length ); data/wine-5.0/dlls/webservices/reader.c:2893:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( comment->value.bytes, start, len ); data/wine-5.0/dlls/webservices/reader.c:3870:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len_utf16 = MultiByteToWideChar( CP_UTF8, 0, (const char *)str, len, NULL, 0 ); data/wine-5.0/dlls/webservices/reader.c:3872:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (const char *)str, len, ret->chars, len_utf16 ); data/wine-5.0/dlls/webservices/reader.c:3965:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->bytes, str, len ); data/wine-5.0/dlls/webservices/reader.c:3975:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bytes, src->bytes, src->length ); data/wine-5.0/dlls/webservices/reader.c:5289:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UTF8, 0, (char *)utf8->value.bytes, utf8->value.length, NULL, 0 ); data/wine-5.0/dlls/webservices/reader.c:5291:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)utf8->value.bytes, utf8->value.length, *ret, len ); data/wine-5.0/dlls/webservices/reader.c:5649:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val->chars, text_utf16->bytes, text_utf16->byteCount ); data/wine-5.0/dlls/webservices/reader.c:5730:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val->bytes, text_base64->bytes, text_base64->length ); data/wine-5.0/dlls/webservices/reader.c:6338:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (desc->defaultValue) memcpy( ptr, desc->defaultValue->value, desc->defaultValue->valueSize ); data/wine-5.0/dlls/webservices/reader.c:7145:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, base64.bytes + reader->text_conv_offset, *count ); data/wine-5.0/dlls/webservices/reader.c:7158:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_UTF8, 0, (char *)utf8->value.bytes, utf8->value.length, NULL, 0 ); data/wine-5.0/dlls/webservices/reader.c:7160:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)utf8->value.bytes, utf8->value.length, (WCHAR *)utf16->bytes, len ); data/wine-5.0/dlls/webservices/reader.c:7212:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( chars, utf16.bytes + reader->text_conv_offset * sizeof(WCHAR), *count * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/reader.c:7267:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bytes, utf8->value.bytes + reader->text_conv_offset, *count ); data/wine-5.0/dlls/webservices/reader.c:7362:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( xmlbuf->bytes.bytes, reader->read_bufptr, reader->read_pos ); data/wine-5.0/dlls/webservices/string.c:205:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->bytes, data, len ); data/wine-5.0/dlls/webservices/string.c:250:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, src->bytes, src->length ); data/wine-5.0/dlls/webservices/tests/proxy.c:729:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/webservices/tests/proxy.c:751:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/webservices/tests/reader.c:4339:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[4]; data/wine-5.0/dlls/webservices/tests/reader.c:6703:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, test->xml, len ); data/wine-5.0/dlls/webservices/tests/writer.c:326:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char strbuf[512]; data/wine-5.0/dlls/webservices/tests/writer.c:345:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( dst, "\\%02x", c ); data/wine-5.0/dlls/webservices/url.c:158:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!(*ret_len = MultiByteToWideChar( CP_UTF8, MB_ERR_INVALID_CHARS, (char *)utf8, data/wine-5.0/dlls/webservices/url.c:166:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, (char *)utf8, len_utf8, ret, *ret_len ); data/wine-5.0/dlls/webservices/url.c:470:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, scheme, len_scheme * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/url.c:505:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, buf, len * sizeof(WCHAR) ); data/wine-5.0/dlls/webservices/writer.c:590:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( writer->write_bufptr + writer->write_pos, bytes, len ); data/wine-5.0/dlls/webservices/writer.c:880:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, bool_true, sizeof(bool_true) ); data/wine-5.0/dlls/webservices/writer.c:883:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, bool_false, sizeof(bool_false) ); data/wine-5.0/dlls/webservices/writer.c:911:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, "NaN", 3 ); data/wine-5.0/dlls/webservices/writer.c:918:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, "-INF", 4 ); data/wine-5.0/dlls/webservices/writer.c:921:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, "INF", 3 ); data/wine-5.0/dlls/webservices/writer.c:1071:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, prefix->bytes, prefix->length ); data/wine-5.0/dlls/webservices/writer.c:1075:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf + len, localname->bytes, localname->length ); data/wine-5.0/dlls/webservices/writer.c:1124:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1125:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*ret)->value.bytes + len_old, src->value.bytes, src->value.length ); data/wine-5.0/dlls/webservices/writer.c:1137:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1147:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1156:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1163:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[12]; /* "-2147483648" */ data/wine-5.0/dlls/webservices/writer.c:1167:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1168:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*ret)->value.bytes + len_old, buf, len ); data/wine-5.0/dlls/webservices/writer.c:1174:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[21]; /* "-9223372036854775808" */ data/wine-5.0/dlls/webservices/writer.c:1178:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1179:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*ret)->value.bytes + len_old, buf, len ); data/wine-5.0/dlls/webservices/writer.c:1185:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[21]; /* "18446744073709551615" */ data/wine-5.0/dlls/webservices/writer.c:1189:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1190:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*ret)->value.bytes + len_old, buf, len ); data/wine-5.0/dlls/webservices/writer.c:1196:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[32]; /* "-1.1111111111111111E-308", oversized to address Valgrind limitations */ data/wine-5.0/dlls/webservices/writer.c:1206:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1207:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (*ret)->value.bytes + len_old, buf, len ); data/wine-5.0/dlls/webservices/writer.c:1215:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1224:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1233:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:1244:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old) memcpy( (*ret)->value.bytes, old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:2341:23: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (utf8_old) memcpy( new->value.bytes, utf8_old->value.bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:2342:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new->value.bytes + len_old, utf8->value.bytes, len ); data/wine-5.0/dlls/webservices/writer.c:2356:24: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (utf16_old) memcpy( new->bytes, utf16_old->bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:2357:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new->bytes + len_old, utf16->bytes, len ); data/wine-5.0/dlls/webservices/writer.c:2370:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (base64_old) memcpy( new->bytes, base64_old->bytes, len_old ); data/wine-5.0/dlls/webservices/writer.c:2371:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new->bytes + len_old, base64->bytes, len ); data/wine-5.0/dlls/webservices/writer.c:4314:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, xmlbuf->bytes.bytes, xmlbuf->bytes.length ); data/wine-5.0/dlls/webservices/writer.c:4584:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( comment->value.bytes, value->bytes, value->length ); data/wine-5.0/dlls/wiaservc/wiaservc_private.h:45:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return d ? memcpy(d, s, n) : NULL; data/wine-5.0/dlls/winaspi.dll16/winaspi.c:68:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char sense_buffer[SG_MAX_SENSE]; /* [o] Output in 3 cases: data/wine-5.0/dlls/winaspi.dll16/winaspi.c:102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char idstr[50]; data/wine-5.0/dlls/winaspi.dll16/winaspi.c:103:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_str[50]; data/wine-5.0/dlls/winaspi.dll16/winaspi.c:120:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( idstr, "Software\\Wine\\Wine\\Config\\scsi c%1dt%1dd%1d", data/wine-5.0/dlls/winaspi.dll16/winaspi.c:139:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(device_str, O_RDWR); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:291:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sg_hd + 1, lpPRB->CDBByte, lpPRB->SRB_CDBLen); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:293:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((BYTE *) sg_hd) + SCSI_OFF + lpPRB->SRB_CDBLen, lpBuf, lpPRB->SRB_BufLen); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:301:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sg_hd + 1, lpPRB->CDBByte, lpPRB->SRB_CDBLen); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:344:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuf, sg_reply_hdr + 1, lpPRB->SRB_BufLen); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:352:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(SENSE_BUFFER(lpPRB), sg_reply_hdr->sense_buffer, sense_len); data/wine-5.0/dlls/winaspi.dll16/winaspi.c:449:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpSRB->inquiry.HA_ManagerId, szId, sizeof szId); /* max 15 chars */ data/wine-5.0/dlls/winaspi.dll16/winaspi.c:450:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpSRB->inquiry.HA_Identifier, szWh, sizeof szWh); /* FIXME: return host data/wine-5.0/dlls/windowscodecs/bitmap.c:323:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &This->pixelformat, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/bitmap.c:828:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&This->pixelformat, pixelFormat, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:158:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->pixelformat, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/bmpdecode.c:1064:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatBmp, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/bmpencode.c:206:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->format->guid, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/bmpencode.c:292:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, bytesperrow); data/wine-5.0/dlls/windowscodecs/bmpencode.c:509:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatBmp, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/colorcontext.c:178:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(profile, pbBuffer, cbBufferSize); data/wine-5.0/dlls/windowscodecs/colorcontext.c:227:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuffer, This->profile, This->profile_len); data/wine-5.0/dlls/windowscodecs/converter.c:1577:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->dst_format->guid, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/gifformat.c:41:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/windowscodecs/gifformat.c:43:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (dst) MultiByteToWideChar(CP_ACP, 0, src, -1, dst, len); data/wine-5.0/dlls/windowscodecs/gifformat.c:53:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[6]; data/wine-5.0/dlls/windowscodecs/gifformat.c:91:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result[0].value.u.caub.pElems, lsd_data.signature, sizeof(lsd_data.signature)); data/wine-5.0/dlls/windowscodecs/gifformat.c:408:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result[0].value.u.caub.pElems, ape_data.application, sizeof(ape_data.application)); data/wine-5.0/dlls/windowscodecs/gifformat.c:538:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locked_data, data, data_size); data/wine-5.0/dlls/windowscodecs/gifformat.c:685:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat8bppIndexed, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/gifformat.c:788:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, rc->Width); data/wine-5.0/dlls/windowscodecs/gifformat.c:1166:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatGif, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/icnsformat.c:290:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppBGRA, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/icoformat.c:151:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppBGRA, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/icoformat.c:582:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatIco, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/imgfactory.c:672:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, buffer, buffersize); data/wine-5.0/dlls/windowscodecs/imgfactory.c:801:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/windowscodecs/info.c:469:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPatterns, This->patterns, This->patterns_size); data/wine-5.0/dlls/windowscodecs/info.c:1698:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(formats, This->container_formats, This->container_count); data/wine-5.0/dlls/windowscodecs/info.c:1759:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(patterns, container->patterns, container->patterns_size); data/wine-5.0/dlls/windowscodecs/jpegformat.c:117:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[JMSG_LENGTH_MAX]; data/wine-5.0/dlls/windowscodecs/jpegformat.c:128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[JMSG_LENGTH_MAX]; data/wine-5.0/dlls/windowscodecs/jpegformat.c:447:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatJpeg, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:594:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat24bppBGR, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:596:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppCMYK, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:598:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat8bppGray, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:721:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatJpeg, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1019:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->format->guid, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1133:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(swapped_data, pbPixels + (cbStride * line), row_size); data/wine-5.0/dlls/windowscodecs/jpegformat.c:1355:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, &GUID_ContainerFormatJpeg, sizeof(*format)); data/wine-5.0/dlls/windowscodecs/main.c:92:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dstbuffer, srcbuffer, srcstride * srcheight); data/wine-5.0/dlls/windowscodecs/main.c:109:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, bytesperrow); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:756:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value.u.caub.pElems, data, count); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:799:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value.u.caui.pElems, data, count * 2); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:934:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value.u.pszVal, data, count); data/wine-5.0/dlls/windowscodecs/metadatahandler.c:971:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(item->value.u.blob.pBlobData, data, count); data/wine-5.0/dlls/windowscodecs/metadataquery.c:124:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(location, root, actual_len * sizeof(WCHAR)); data/wine-5.0/dlls/windowscodecs/metadataquery.c:754:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, guid2name[i].name, len * sizeof(WCHAR)); data/wine-5.0/dlls/windowscodecs/metadataquery.c:920:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, name2schema[i].name, len * sizeof(WCHAR)); data/wine-5.0/dlls/windowscodecs/palette.c:437:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_colors, pColors, sizeof(WICColor) * colorCount); data/wine-5.0/dlls/windowscodecs/palette.c:808:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pColors, This->colors, sizeof(WICColor) * colorCount); data/wine-5.0/dlls/windowscodecs/pngformat.c:64:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(type, &header[4], 4); data/wine-5.0/dlls/windowscodecs/pngformat.c:132:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, data, name_len + 1); data/wine-5.0/dlls/windowscodecs/pngformat.c:133:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, name_end_ptr + 1, value_len); data/wine-5.0/dlls/windowscodecs/pngformat.c:198:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, ImageGamma, sizeof(ImageGamma)); data/wine-5.0/dlls/windowscodecs/pngformat.c:799:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_metadata_blocks, This->metadata_blocks, data/wine-5.0/dlls/windowscodecs/pngformat.c:832:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatPng, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/pngformat.c:988:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->format, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/pngformat.c:1213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatPng, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/pngformat.c:1564:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->format->guid, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/pngformat.c:1728:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->data + This->stride * (This->lines_written + i), data/wine-5.0/dlls/windowscodecs/pngformat.c:1993:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(format, &GUID_ContainerFormatPng, sizeof(*format)); data/wine-5.0/dlls/windowscodecs/scaler.c:146:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormatDontCare, sizeof(*pPixelFormat)); data/wine-5.0/dlls/windowscodecs/scaler.c:204:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbBuffer + bytesperpixel * i, src_data[src_y] + bytesperpixel * src_x, bytesperpixel); data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bmibuf[sizeof(BITMAPINFO) + sizeof(RGBQUAD) * 255]; data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:224:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data) memcpy(bits, data, bm.bmWidthBytes * bm.bmHeight); data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:386:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(base_lock_buffer + lock_buffer_stride*i, bitmap_data + i*9, 9); data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:522:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lock_buffer + lock_buffer_stride*i, bitmap_data + i*9, 9); data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:746:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char bits[4096]; data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:826:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pal_buf[sizeof(LOGPALETTE) + sizeof(PALETTEENTRY) * 255]; data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:873:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pal->palPalEntry, pal_data, sizeof(pal_data)); data/wine-5.0/dlls/windowscodecs/tests/bitmap.c:915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pal->palPalEntry, pal_data, sizeof(pal_data)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:87:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_24bpp, sizeof(testbmp_24bpp)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:307:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_1bpp, sizeof(testbmp_1bpp)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:466:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_4bpp, sizeof(testbmp_4bpp)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:646:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_rle8, sizeof(testbmp_rle8)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:813:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_rle4, sizeof(testbmp_rle4)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:985:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_rle4, sizeof(testbmp_rle4)); data/wine-5.0/dlls/windowscodecs/tests/bmpformat.c:1033:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmpdata, testbmp_1bpp, sizeof(testbmp_1bpp)); data/wine-5.0/dlls/windowscodecs/tests/converter.c:107:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->data->format, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tests/converter.c:191:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, bytesperrow); data/wine-5.0/dlls/windowscodecs/tests/converter.c:1028:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c[4]; data/wine-5.0/dlls/windowscodecs/tests/converter.c:1037:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char png_sig[8] = {0x89,'P','N','G',0x0d,0x0a,0x1a,0x0a}; data/wine-5.0/dlls/windowscodecs/tests/converter.c:1038:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char png_IHDR[8] = {0,0,0,0x0d,'I','H','D','R'}; data/wine-5.0/dlls/windowscodecs/tests/converter.c:1042:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char png_sig[8]; data/wine-5.0/dlls/windowscodecs/tests/converter.c:1043:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ihdr_sig[8]; data/wine-5.0/dlls/windowscodecs/tests/converter.c:1329:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pixelformat, srcs[i]->format, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tests/gifformat.c:92:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, image_data, image_size); data/wine-5.0/dlls/windowscodecs/tests/icoformat.c:55:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[512]; data/wine-5.0/dlls/windowscodecs/tests/info.c:152:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->mimetype, -1, mimetypeW, ARRAY_SIZE(mimetypeW)); data/wine-5.0/dlls/windowscodecs/tests/info.c:153:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test->extensions, -1, extensionsW, ARRAY_SIZE(extensionsW)); data/wine-5.0/dlls/windowscodecs/tests/jpegformat.c:85:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(jpegdata, jpeg_adobe_cmyk_1x5, sizeof(jpeg_adobe_cmyk_1x5)); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:84:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[14]; data/wine-5.0/dlls/windowscodecs/tests/metadata.c:161:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char pngimage[285] = { data/wine-5.0/dlls/windowscodecs/tests/metadata.c:172:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char gifimage[35] = { data/wine-5.0/dlls/windowscodecs/tests/metadata.c:213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locked_data, data, data_size); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:383:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(U(id).pszVal, "winetest"); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:397:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(U(id).pszVal, "test"); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:830:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IFD_data_swapped, &IFD_data, sizeof(IFD_data)); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:1608:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, decoder_data[i].query, -1, queryW, 256); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:1631:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, decoder_data[j].query, -1, queryW, 256); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:1709:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, frame_data[i].query, -1, queryW, 256); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:1750:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(queryW, guidW, sizeof(guidW) - 2); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2541:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[16][256]; data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2572:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ret, "(vt:%u)", var->vt); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2617:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char schemaA[256]; data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2650:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char idA[256]; data/wine-5.0/dlls/windowscodecs/tests/metadata.c:2975:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, test_data[i].query, -1, queryW, 256); data/wine-5.0/dlls/windowscodecs/tests/palette.c:62:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colors, initcolors, sizeof(initcolors)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:344:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). WCHAR *tmpfile; data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:493:9: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (tmpfile) data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:498:63: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). hr = IWICColorContext_InitializeFromFilename(context, tmpfile); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:501:27: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ret = DeleteFileW(tmpfile); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:527:39: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). HeapFree(GetProcessHeap(), 0, tmpfile); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:618:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_gray_tRNS, sizeof(png_gray_tRNS)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:780:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(png_1x1_data)]; data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:787:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:810:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:837:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:840:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + tRNS_off, "tEXt", 4); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:864:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:867:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + PLTE_off, "tEXt", 4); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:868:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + tRNS_off, "tEXt", 4); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:892:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, png_1x1_data, sizeof(png_1x1_data)); data/wine-5.0/dlls/windowscodecs/tests/pngformat.c:895:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + PLTE_off, "tEXt", 4); data/wine-5.0/dlls/windowscodecs/tests/stream.c:68:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Memory, CmpMem, sizeof(CmpMem)); data/wine-5.0/dlls/windowscodecs/tests/stream.c:102:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Memory, ZeroMem, sizeof(ZeroMem)); data/wine-5.0/dlls/windowscodecs/tests/stream.c:193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Memory, CmpMem, sizeof(CmpMem)); data/wine-5.0/dlls/windowscodecs/tests/stream.c:406:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Memory, CmpMem, sizeof(CmpMem)); data/wine-5.0/dlls/windowscodecs/tests/stream.c:758:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(memory, data, sizeof(data)); data/wine-5.0/dlls/windowscodecs/tests/tiffformat.c:321:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(locked_data, data, data_size); data/wine-5.0/dlls/windowscodecs/tests/tiffformat.c:343:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, image_data, image_size); data/wine-5.0/dlls/windowscodecs/tests/tiffformat.c:585:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(tiff_8bpp_data)]; data/wine-5.0/dlls/windowscodecs/tests/tiffformat.c:594:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, &tiff_8bpp_data, sizeof(tiff_8bpp_data)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:68:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[18]; data/wine-5.0/dlls/windowscodecs/tgaformat.c:75:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char author_name[41]; data/wine-5.0/dlls/windowscodecs/tgaformat.c:76:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char author_comments[324]; data/wine-5.0/dlls/windowscodecs/tgaformat.c:78:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char job_name[41]; data/wine-5.0/dlls/windowscodecs/tgaformat.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char software_id[41]; data/wine-5.0/dlls/windowscodecs/tgaformat.c:356:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_WineContainerFormatTga, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:517:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat8bppIndexed, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:533:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat16bppBGR555, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:537:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat16bppBGRA5551, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:545:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat24bppBGR, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:553:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppBGR, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:556:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppBGRA, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:559:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat32bppPBGRA, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:575:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat8bppGray, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:578:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, &GUID_WICPixelFormat16bppGray, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tgaformat.c:798:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&imagebits[i+j*bytesperpixel], pixeldata, bytesperpixel); data/wine-5.0/dlls/windowscodecs/tiffformat.c:684:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatTiff, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tiffformat.c:901:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->decode_info.format, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1605:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pPixelFormat, This->format->guid, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1731:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(swapped_data, row_data, line_size); data/wine-5.0/dlls/windowscodecs/tiffformat.c:1921:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pguidContainerFormat, &GUID_ContainerFormatTiff, sizeof(GUID)); data/wine-5.0/dlls/windowscodecs/ungif.c:172:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Object->Colors, ColorMap, ColorCount * sizeof(GifColorType)); data/wine-5.0/dlls/windowscodecs/ungif.c:226:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ep->Bytes + 3, ExtData, Len); data/wine-5.0/dlls/windowscodecs/ungif.c:252:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ep->Bytes + ep->ByteCount + 1, ExtData, Len); data/wine-5.0/dlls/windowscodecs/ungif.c:563:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char c[2]; data/wine-5.0/dlls/windowscodecs/ungif.c:996:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Buf[GIF_STAMP_LEN + 1]; data/wine-5.0/dlls/windowscodecs/wincodecs_private.h:238:54: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((dst = HeapAlloc(GetProcessHeap(), 0, len))) memcpy(dst, src, len); data/wine-5.0/dlls/winealsa.drv/midi.c:70:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char incoming[3]; data/wine-5.0/dlls/winealsa.drv/midi.c:370:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpMidiHdr->lpData + lpMidiHdr->dwBytesRecorded, ptr + pos, copylen); data/wine-5.0/dlls/winealsa.drv/midi.c:467:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &MidiInDev[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winealsa.drv/midi.c:737:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &MidiOutDev[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winealsa.drv/midi.c:1036:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNewData + 1, lpData, lpMidiHdr->dwBufferLength); data/wine-5.0/dlls/winealsa.drv/midi.c:1042:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpNewData, lpData, lpMidiHdr->dwBufferLength); data/wine-5.0/dlls/winealsa.drv/midi.c:1151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char midiPortName[MAXPNAMELEN]; data/wine-5.0/dlls/winealsa.drv/midi.c:1190:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, midiPortName, -1, MidiOutDev[MODM_NumDevs].caps.szPname, data/wine-5.0/dlls/winealsa.drv/midi.c:1256:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, midiPortName, -1, MidiInDev[MIDM_NumDevs].caps.szPname, data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:315:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, device, -1, key_name + 2, ARRAY_SIZE(key_name) - 2); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:385:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len_wchars += MultiByteToWideChar(CP_UNIXCP, 0, chunk2, -1, NULL, 0) - 1; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:390:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, prefix, prefix_len * sizeof(WCHAR)); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:393:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret + copied, chunk1, chunk1_len * sizeof(WCHAR)); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:397:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret + copied, dashW, dashW_len * sizeof(WCHAR)); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:401:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, chunk2, -1, ret + copied, len_wchars - copied); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:428:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devnode[32]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:442:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(devnode, "plughw:%d,%d", card, device); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:499:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devname[64]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:546:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cardpath[64]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:552:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cardpath, "hw:%u", card); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:567:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, cardname, -1, NULL, 0); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:575:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, cardname, -1, cardnameW, len); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:634:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dev_node_name[260]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:778:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char alsa_name[256]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:982:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, fmt, size); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1058:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->guid, guid, sizeof(GUID)); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:1978:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tgt_buf[This->alsa_channel_map[c] * bytes_per_sample], data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2776:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, written_bytes); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2778:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, chunk_bytes); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2779:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer, buffer + chunk_bytes, data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2927:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer, This->local_buffer + offs_bytes, chunk_bytes); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:2928:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer + chunk_bytes, This->local_buffer, data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4103:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4120:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uevent[MAX_PATH]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4128:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(uevent, "/sys/class/sound/card%u/device/uevent", card); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4129:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fuevent = fopen(uevent, "r"); data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4134:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[256]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4200:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hwname[255]; data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4203:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(hwname, "hw:%u,%u", card, device); /* must be hw rather than plughw to work */ data/wine-5.0/dlls/wineandroid.drv/android_native.h:166:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int (*open)(const struct hw_module_t *module, const char *id, struct hw_device_t **device); data/wine-5.0/dlls/wineandroid.drv/device.c:361:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest->handle.data, &src, sizeof(src) ); data/wine-5.0/dlls/wineandroid.drv/device.c:365:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, src, size ); data/wine-5.0/dlls/wineandroid.drv/device.c:381:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, src, size ); data/wine-5.0/dlls/wineandroid.drv/device.c:562:38: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(ret = module->methods->open( module, GRALLOC_HARDWARE_MODULE_ID, &device ))) data/wine-5.0/dlls/wineandroid.drv/device.c:882:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bits, win_data->mappings[res->buffer_id], buffer->stride * buffer->height * 4 ); data/wine-5.0/dlls/wineandroid.drv/device.c:1651:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( req->bits, bits, width * height * sizeof(req->bits[0]) ); data/wine-5.0/dlls/wineandroid.drv/init.c:241:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( devmode->dmDeviceName, dev_name, sizeof(dev_name) ); data/wine-5.0/dlls/wineandroid.drv/init.c:570:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[256]; data/wine-5.0/dlls/wineandroid.drv/init.c:606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1024]; data/wine-5.0/dlls/wineandroid.drv/keyboard.c:854:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[2]; data/wine-5.0/dlls/wineandroid.drv/keyboard.c:892:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UTF8, 0, name, -1, buffer, size ); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1024]; data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:348:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ids)[0], outName, sizeof(outName)); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:349:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*guids)[0], &outGuid, sizeof(outGuid)); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:352:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ids)[0], inName, sizeof(inName)); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:353:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(*guids)[0], &inGuid, sizeof(inGuid)); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:560:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, fmt, size); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:597:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->guid, guid, sizeof(GUID)); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1272:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->wrap_buffer, This->local_buffer + offs * This->fmt->nBlockAlign, chunk * This->fmt->nBlockAlign); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1273:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->wrap_buffer + chunk * This->fmt->nBlockAlign, This->local_buffer, (to_enqueue - chunk) * This->fmt->nBlockAlign); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1740:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, written_bytes); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1742:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, chunk_bytes); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1743:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer, buffer + chunk_bytes, data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1891:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer, This->local_buffer + offs_bytes, chunk_bytes); data/wine-5.0/dlls/wineandroid.drv/mmdevdrv.c:1892:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer + chunk_bytes, This->local_buffer, data/wine-5.0/dlls/wineandroid.drv/opengl.c:100:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wgl_extensions[4096]; data/wine-5.0/dlls/wineandroid.drv/opengl.c:952:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/wineandroid.drv/window.c:683:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &surface->info, get_dib_info_size( &surface->info, DIB_RGB_COLORS )); data/wine-5.0/dlls/wineandroid.drv/window.c:776:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, width * sizeof(*dst) ); data/wine-5.0/dlls/wineandroid.drv/window.c:1022:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/wineandroid.drv/window.c:1541:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/wineandroid.drv/window.c:1591:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_bits, dst_bits, bmi->bmiHeader.biSizeImage ); data/wine-5.0/dlls/wineandroid.drv/window.c:1604:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_bits, src_bits, bmi->bmiHeader.biSizeImage ); data/wine-5.0/dlls/winebus.sys/bus_iohid.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ptr, data_length); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:227:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_AXIS_HEADER, sizeof(REPORT_AXIS_HEADER)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:232:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_AXIS_USAGE, sizeof(REPORT_AXIS_USAGE)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:238:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_AXIS_TAIL, sizeof(REPORT_AXIS_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:244:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_REL_AXIS_TAIL, sizeof(REPORT_REL_AXIS_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:377:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, HAPTIC_RUMBLE, sizeof(HAPTIC_RUMBLE)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:475:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_HEADER, sizeof(REPORT_HEADER)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_TAIL, sizeof(REPORT_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:583:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_HEADER, sizeof(REPORT_HEADER)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:587:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, CONTROLLER_AXIS, sizeof(CONTROLLER_AXIS)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:589:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, CONTROLLER_TRIGGERS, sizeof(CONTROLLER_TRIGGERS)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:591:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, CONTROLLER_BUTTONS, sizeof(CONTROLLER_BUTTONS)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:598:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_TAIL, sizeof(REPORT_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:638:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ext->report_descriptor, ext->report_descriptor_size); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:667:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, buffer, length); data/wine-5.0/dlls/winebus.sys/bus_sdl.c:919:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char guid_str[34]; data/wine-5.0/dlls/winebus.sys/bus_udev.c:210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_AXIS_HEADER, sizeof(REPORT_AXIS_HEADER)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:215:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_AXIS_USAGE, sizeof(REPORT_AXIS_USAGE)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:221:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_ABS_AXIS_TAIL, sizeof(REPORT_ABS_AXIS_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:234:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_REL_AXIS_TAIL, sizeof(REPORT_REL_AXIS_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:508:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_HEADER, sizeof(REPORT_HEADER)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:552:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_TAIL, sizeof(REPORT_TAIL)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:592:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext->last_report_buffer, ext->current_report_buffer, ext->buffer_length); data/wine-5.0/dlls/winebus.sys/bus_udev.c:598:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext->current_report_buffer, ext->last_report_buffer, ext->buffer_length); data/wine-5.0/dlls/winebus.sys/bus_udev.c:633:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, src, -1, NULL, 0); data/wine-5.0/dlls/winebus.sys/bus_udev.c:635:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, src, -1, dst, len); data/wine-5.0/dlls/winebus.sys/bus_udev.c:682:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, descriptor.value, descriptor.size); data/wine-5.0/dlls/winebus.sys/bus_udev.c:721:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/dlls/winebus.sys/bus_udev.c:834:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&report_buffer[1], report, length); data/wine-5.0/dlls/winebus.sys/bus_udev.c:891:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer[1], report, length); data/wine-5.0/dlls/winebus.sys/bus_udev.c:943:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ext->report_descriptor, ext->report_descriptor_size); data/wine-5.0/dlls/winebus.sys/bus_udev.c:951:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[255]; data/wine-5.0/dlls/winebus.sys/bus_udev.c:960:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(str,"evdev"); data/wine-5.0/dlls/winebus.sys/bus_udev.c:969:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, buffer, length); data/wine-5.0/dlls/winebus.sys/bus_udev.c:1114:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *input = atoi(input_no+5 ); data/wine-5.0/dlls/winebus.sys/bus_udev.c:1154:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(devnode, O_RDWR)) == -1) data/wine-5.0/dlls/winebus.sys/bus_udev.c:1202:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_uid[255]; data/wine-5.0/dlls/winebus.sys/controller.h:95:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_BUTTONS, sizeof(REPORT_BUTTONS)); data/wine-5.0/dlls/winebus.sys/controller.h:105:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_PADDING, sizeof(REPORT_PADDING)); data/wine-5.0/dlls/winebus.sys/controller.h:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(report_ptr, REPORT_HATSWITCH, sizeof(REPORT_HATSWITCH)); data/wine-5.0/dlls/winebus.sys/main.c:484:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, REPORT_HEADER, sizeof(REPORT_HEADER)); data/wine-5.0/dlls/winebus.sys/main.c:485:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + sizeof(REPORT_HEADER), REPORT_TAIL, sizeof(REPORT_TAIL)); data/wine-5.0/dlls/winebus.sys/main.c:631:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ext->last_report, ext->last_report_size); data/wine-5.0/dlls/winebus.sys/main.c:897:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext->last_report, report, length); data/wine-5.0/dlls/winebus.sys/main.c:918:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET(KEY_VALUE_PARTIAL_INFORMATION, Data[sizeof(DWORD)])]; data/wine-5.0/dlls/winecoreaudio.drv/coreaudio.h:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4] = { (char) (fourcc >> 24), (char) (fourcc >> 16), data/wine-5.0/dlls/winecoreaudio.drv/coremidi.c:66:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg.data, packet->data, sizeof(packet->data)); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:151:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szPname, -1, sources[i].caps.szPname, ARRAY_SIZE(sources[i].caps.szPname)); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:167:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szPname, -1, destinations[i].caps.szPname, ARRAY_SIZE(destinations[i].caps.szPname)); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:185:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szPname, -1, destinations[i].caps.szPname, ARRAY_SIZE(destinations[i].caps.szPname)); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:499:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &destinations[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:734:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &sources[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winecoreaudio.drv/midi.c:861:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpMidiHdr->lpData + lpMidiHdr->dwBytesRecorded, msg->data + pos, copylen); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:864:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, fmt, size); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:941:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->guid, guid, sizeof(GUID)); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:999:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst + dst_offs, src, chunk_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1000:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src + chunk_bytes, src_bytes - chunk_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1002:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst + dst_offs, src, src_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1035:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->mBuffers[0].mData, This->local_buffer + lcl_offs_bytes, chunk_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1036:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((BYTE *)data->mBuffers[0].mData) + chunk_bytes, This->local_buffer, to_copy_bytes - chunk_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1038:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->mBuffers[0].mData, This->local_buffer + lcl_offs_bytes, to_copy_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1087:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->wrap_buffer, This->cap_buffer + This->cap_offs_frames * This->fmt->nBlockAlign, data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:1089:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->wrap_buffer + chunk_frames * This->fmt->nBlockAlign, This->cap_buffer, data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:2476:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*data, This->local_buffer + This->lcl_offs_frames * This->fmt->nBlockAlign, chunk_bytes); data/wine-5.0/dlls/winecoreaudio.drv/mmdevdrv.c:2477:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*data) + chunk_bytes, This->local_buffer, This->period_frames * This->fmt->nBlockAlign - chunk_bytes); data/wine-5.0/dlls/winecrt0/debug.c:162:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *list[32]; data/wine-5.0/dlls/winecrt0/debug.c:185:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200], *pos = buffer; data/wine-5.0/dlls/winecrt0/debug.c:195:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "%3u.%03u:", ticks / 1000, ticks % 1000 ); data/wine-5.0/dlls/winecrt0/debug.c:197:31: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (TRACE_ON(pid)) pos += sprintf( pos, "%04x:", GetCurrentProcessId() ); data/wine-5.0/dlls/winecrt0/debug.c:198:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "%04x:", GetCurrentThreadId() ); data/wine-5.0/dlls/winecrt0/exe16_entry.c:42:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cmdline, psp->cmdLine + 1, len ); data/wine-5.0/dlls/winecrt0/register.c:79:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar( CP_UTF8, 0, str, lenA, NULL, 0 ) + 1; data/wine-5.0/dlls/winecrt0/register.c:85:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, str, lenA, buffer, lenW ); data/wine-5.0/dlls/wined3d/adapter_gl.c:641:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[4 * 4 * 4]; data/wine-5.0/dlls/wined3d/adapter_gl.c:1196:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). major = atoi(ptr); data/wine-5.0/dlls/wined3d/adapter_gl.c:1204:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). minor = atoi(ptr); data/wine-5.0/dlls/wined3d/adapter_vk.c:519:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, src_ptr, size); data/wine-5.0/dlls/wined3d/adapter_vk.c:884:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). major = atoi(ptr); data/wine-5.0/dlls/wined3d/adapter_vk.c:891:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). minor = atoi(ptr); data/wine-5.0/dlls/wined3d/adapter_vk.c:974:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *enabled_instance_extensions[ARRAY_SIZE(vulkan_instance_extensions)]; data/wine-5.0/dlls/wined3d/adapter_vk.c:981:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char app_name[MAX_PATH]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:167:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char loop_ctrl[WINED3D_MAX_CONSTS_I][3]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:205:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char samplers[4]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:208:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char loop_ctrl[WINED3D_MAX_CONSTS_I][3]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:229:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:258:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *vs_output[MAX_REG_OUTPUT]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:260:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *texcrd_output[8], *color_output[2], *fog_output; data/wine-5.0/dlls/wined3d/arb_program_shader.c:263:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *ps_input[MAX_REG_INPUT]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:302:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vshader_const_dirty[WINED3D_MAX_VS_CONSTS_F]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:303:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pshader_const_dirty[WINED3D_MAX_PS_CONSTS_F]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:751:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[4][17]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1012:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "R%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1021:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(register_name, "fragment.color.primary"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1023:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(register_name, "fragment.color.secondary"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1029:25: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rel_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1042:33: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "out_of_bounds_%u", idx); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1091:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "out_of_bounds_%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1100:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "vertex.attrib[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1110:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rel_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1113:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(rel_reg, "A0.x"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1125:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(rel_reg, "A0.x"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1130:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "C[%u]", ctx->aL + reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1139:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "C[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1141:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "C%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1154:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "T%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1157:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "fragment.texcoord[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1162:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "A%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1164:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "A%u_SHADOW", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1171:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(register_name, "TMP_COLOR"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1178:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "result.color[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1180:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(register_name, "result.color"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1192:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(register_name, "result.depth"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1198:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "oD[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1205:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "oT[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1216:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if(pshader) sprintf(register_name, "A0.x"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1217:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(register_name, "aL.y"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1227:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "**aL_emul**"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1233:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "I%u", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1238:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "vpos"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1240:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "fragment.facing.x"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1247:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(register_name, "unrecognized_register[%u]", reg->idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1255:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char register_name[255]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1256:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char write_mask[6]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1344:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regstr[256]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char swzstr[20]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1628:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1629:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[2][50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[3][50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1709:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1710:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[3][50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1729:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1730:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[3][50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1783:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arguments[256], dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1818:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char operand[100]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1819:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, ", "); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1844:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_param[256]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1849:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char write_mask[6]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1927:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_dest[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1968:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(reg_dest, "fragment.texcoord[%u]", dst->reg.idx[0].offset); data/wine-5.0/dlls/wined3d/arb_program_shader.c:1984:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_dest[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:1985:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_coord[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2003:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(reg_coord, "fragment.texcoord[%u]", reg_sampler_code); data/wine-5.0/dlls/wined3d/arb_program_shader.c:2049:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(reg_coord, "TA"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:2061:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2070:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_src[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2084:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2085:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2106:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2107:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2120:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2134:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_coord[40], dst_reg[50], src_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2143:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(reg_coord, "fragment.texcoord[%u]", reg_dest_code); data/wine-5.0/dlls/wined3d/arb_program_shader.c:2188:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50], dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2207:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2208:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2209:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50], dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2251:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2252:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50], dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2273:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2274:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2275:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2314:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2315:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2316:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src1_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2317:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_reg[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2385:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2386:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2401:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2402:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2417:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_str[50], dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2418:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2437:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0[50], dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2545:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2596:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2597:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2645:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2646:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[3][50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2673:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2674:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name0[50], src_name1[50], src_name2[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2774:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2775:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2817:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2818:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2819:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2833:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src0[50], src1[50], dst[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2875:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:2902:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3037:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name0[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3038:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name1[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3066:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name0[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3067:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_name1[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_dest[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_src[3][40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_dest[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_coord[40]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3229:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char component[4] = {'x', 'y', 'z', 'w'}; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3417:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const texcoords[8] = data/wine-5.0/dlls/wined3d/arb_program_shader.c:3507:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fragcolor[16]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3516:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char srgbtmp[4][4]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3517:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ftoa_tmp[17]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:3527:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[found], "R%u", i); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3534:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[0], "TA"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3535:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[1], "TB"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3536:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[2], "TC"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3537:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[3], "TD"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3541:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[1], "TA"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3542:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[2], "TB"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3543:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[3], "TC"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3546:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[2], "TA"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3547:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[3], "TB"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3550:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(srgbtmp[3], "TA"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3648:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fragcolor, "R0"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3656:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fragcolor, "R%u", shader->u.ps.color0_reg); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3661:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fragcolor, "TMP_COLOR"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3664:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(fragcolor, "result.color"); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3922:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const texcoords[8] = data/wine-5.0/dlls/wined3d/arb_program_shader.c:3930:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const decl_idx_to_string[MAX_REG_INPUT] = data/wine-5.0/dlls/wined3d/arb_program_shader.c:4146:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ftoa_tmp[17]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:4974:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char write_mask[20], regstr[50]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:6246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char colorcor_dst[8]; data/wine-5.0/dlls/wined3d/arb_program_shader.c:6465:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(colorcor_dst, "tex%u", stage); data/wine-5.0/dlls/wined3d/buffer.c:568:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data + start, (BYTE *)buffer->resource.heap_memory + start, end - start); data/wine-5.0/dlls/wined3d/buffer.c:1250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bo.addr, data->data, resource->size); data/wine-5.0/dlls/wined3d/context.c:2720:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_ptr, src_ptr, size); data/wine-5.0/dlls/wined3d/context.c:2742:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->addr, src->addr, size); data/wine-5.0/dlls/wined3d/cs.c:623:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(op->rects, rects, sizeof(*rects) * rect_count); data/wine-5.0/dlls/wined3d/cs.c:1054:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cs->state.viewports, op->viewports, op->viewport_count * sizeof(*op->viewports)); data/wine-5.0/dlls/wined3d/cs.c:1069:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(op->viewports, viewports, viewport_count * sizeof(*viewports)); data/wine-5.0/dlls/wined3d/cs.c:1080:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cs->state.scissor_rects, op->rects, op->rect_count * sizeof(*op->rects)); data/wine-5.0/dlls/wined3d/cs.c:1094:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(op->rects, rects, rect_count * sizeof(*rects)); data/wine-5.0/dlls/wined3d/cs.c:1930:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((BYTE *)&cs->state + offset, constants, count * wined3d_cs_push_constant_info[p].size); data/wine-5.0/dlls/wined3d/cs.c:1957:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(op->constants, constants, size); data/wine-5.0/dlls/wined3d/device.c:1765:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->state.viewports, viewports, viewport_count * sizeof(*viewports)); data/wine-5.0/dlls/wined3d/device.c:1782:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(viewports, device->state.viewports, count * sizeof(*viewports)); data/wine-5.0/dlls/wined3d/device.c:1960:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->state.scissor_rects, rects, rect_count * sizeof(*rects)); data/wine-5.0/dlls/wined3d/device.c:1976:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rects, device->state.scissor_rects, count * sizeof(*rects)); data/wine-5.0/dlls/wined3d/device.c:2196:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.vs_consts_b[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2219:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.vs_consts_b[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.vs_consts_i[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2261:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.vs_consts_i[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2278:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.vs_consts_f[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2302:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.vs_consts_f[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2375:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.ps_consts_b[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2398:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.ps_consts_b[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2417:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.ps_consts_i[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2440:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.ps_consts_i[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2458:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&device->state.ps_consts_f[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:2482:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(constants, &device->state.ps_consts_f[start_idx], count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/device.c:3332:40: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define copy_and_next(dest, src, size) memcpy(dest, src, size); dest += (size) data/wine-5.0/dlls/wined3d/directx.c:643:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, len); data/wine-5.0/dlls/wined3d/directx.c:2480:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->addr, src->addr, size); data/wine-5.0/dlls/wined3d/glsl_shader.c:90:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_name[150]; data/wine-5.0/dlls/wined3d/glsl_shader.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_str[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char param_str[200]; data/wine-5.0/dlls/wined3d/glsl_shader.c:436:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[17]; data/wine-5.0/dlls/wined3d/glsl_shader.c:831:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, buffer->buffer, buffer->content_size + 1); data/wine-5.0/dlls/wined3d/glsl_shader.c:3180:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char swizzle_str[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:3237:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(glsl_dst->reg_name, reg_name->buffer, len); data/wine-5.0/dlls/wined3d/glsl_shader.c:3441:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, "0.0"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3445:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, "1.0"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3450:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, ".x"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3455:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, ".y"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3460:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, ".z"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3465:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, ".w"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3470:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(arguments, "undefined"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3474:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (sign_fixup) strcat(arguments, " * 2.0 - 1.0"); data/wine-5.0/dlls/wined3d/glsl_shader.c:3482:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arguments[256]; data/wine-5.0/dlls/wined3d/glsl_shader.c:3483:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_str[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:3507:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (--remaining) strcat(arguments, ", "); data/wine-5.0/dlls/wined3d/glsl_shader.c:3512:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (--remaining) strcat(arguments, ", "); data/wine-5.0/dlls/wined3d/glsl_shader.c:3517:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (--remaining) strcat(arguments, ", "); data/wine-5.0/dlls/wined3d/glsl_shader.c:3522:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (--remaining) strcat(arguments, ", "); data/wine-5.0/dlls/wined3d/glsl_shader.c:3548:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:3821:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:3943:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4085:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_char[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4227:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4335:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_char[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4391:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mask_char[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4621:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4675:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:4737:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5164:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coord_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5469:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5730:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5780:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5868:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:5928:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6042:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6118:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6185:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6195:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_swizzle[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6397:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6419:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coord_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coord_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6487:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coord_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6504:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char coord_div_mask[3]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6682:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6838:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6934:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6963:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:6990:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:7060:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:7250:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:7344:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:8015:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reg_mask[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:8892:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char type[6]; data/wine-5.0/dlls/wined3d/glsl_shader.c:8893:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char name[24]; data/wine-5.0/dlls/wined3d/glsl_shader.c:12706:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char texture_type[7]; data/wine-5.0/dlls/wined3d/glsl_shader.c:12707:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char texcoord_swizzle[4]; data/wine-5.0/dlls/wined3d/query.c:492:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, query->data, min(data_size, query->data_size)); data/wine-5.0/dlls/wined3d/shader.c:1388:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lconst->value, ins.src[0].reg.u.immconst_data, 4 * sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader.c:1420:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lconst->value, ins.src[0].reg.u.immconst_data, 4 * sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader.c:1433:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lconst->value, ins.src[0].reg.u.immconst_data, sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader.c:3466:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(byte_code, shader->byte_code, shader->byte_code_size); data/wine-5.0/dlls/wined3d/shader.c:3497:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(value, src_data + (i - start_idx) * 4 /* 4 components */, 4 * sizeof(float)); data/wine-5.0/dlls/wined3d/shader.c:3520:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(interpolation_args, pixel_shader->u.ps.interpolation_mode, data/wine-5.0/dlls/wined3d/shader.c:3649:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(shader->byte_code, desc->byte_code, shader->byte_code_size); data/wine-5.0/dlls/wined3d/shader.c:3664:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(shader->byte_code, desc->byte_code, desc->byte_code_size); data/wine-5.0/dlls/wined3d/shader.c:3811:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, so_desc->elements, so_desc->element_count * sizeof(*elements)); data/wine-5.0/dlls/wined3d/shader_sm1.c:663:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_param->reg.u.immconst_data, *ptr, count * sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader_sm4.c:558:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(priv->icb.data, tokens, sizeof(*tokens) * icb_size); data/wine-5.0/dlls/wined3d/shader_sm4.c:1502:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->u.immconst_data, *ptr, 1 * sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader_sm4.c:1513:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param->u.immconst_data, *ptr, 4 * sizeof(DWORD)); data/wine-5.0/dlls/wined3d/shader_sm4.c:1804:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d, *ptr, sizeof(*d)); data/wine-5.0/dlls/wined3d/stateblock.c:1292:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.vs_consts_f[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/stateblock.c:1311:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.vs_consts_i[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/stateblock.c:1331:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.vs_consts_b[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/stateblock.c:1358:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.ps_consts_f[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/stateblock.c:1377:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.ps_consts_i[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/stateblock.c:1397:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&stateblock->stateblock_state.ps_consts_b[start_idx], constants, count * sizeof(*constants)); data/wine-5.0/dlls/wined3d/surface.c:802:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(row, top, row_pitch); data/wine-5.0/dlls/wined3d/surface.c:803:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(top, bottom, row_pitch); data/wine-5.0/dlls/wined3d/surface.c:804:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bottom, row, row_pitch); data/wine-5.0/dlls/wined3d/surface.c:1543:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_row, src_row, row_block_count * format->block_byte_count); data/wine-5.0/dlls/wined3d/surface.c:1804:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dbuf, sbuf, row_byte_count); data/wine-5.0/dlls/wined3d/surface.c:1818:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dbuf, sbuf, row_byte_count); data/wine-5.0/dlls/wined3d/surface.c:1838:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dbuf, sbuf, row_byte_count); data/wine-5.0/dlls/wined3d/surface.c:1855:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dbuf, dbuf - dst_map.row_pitch, row_byte_count); data/wine-5.0/dlls/wined3d/surface.c:2262:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, map.data, w * bpp); data/wine-5.0/dlls/wined3d/surface.c:2269:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, map.data, w * h * bpp); data/wine-5.0/dlls/wined3d/texture.c:397:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst.addr, src.addr, size); data/wine-5.0/dlls/wined3d/texture.c:2412:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_data, src_data, dst_row_pitch); data/wine-5.0/dlls/wined3d/texture.c:2430:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->addr, src_data, sub_resource->size); data/wine-5.0/dlls/wined3d/utils.c:1980:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_format, src_format, adapter->format_size); data/wine-5.0/dlls/wined3d/utils.c:2394:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *source[2]; data/wine-5.0/dlls/wined3d/utils.c:4601:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fourcc[5]; data/wine-5.0/dlls/wined3d/utils.c:4633:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[200]; /* wine_dbg_sprintf() limits string size to 200 */ data/wine-5.0/dlls/wined3d/utils.c:4655:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&buffer->str[sizeof(buffer->str) - 4], "..."); data/wine-5.0/dlls/wined3d/utils.c:5989:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char args[WINED3D_TOP_LERP + 1] = data/wine-5.0/dlls/wined3d/utils.c:6645:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(s, "%.8e", value); data/wine-5.0/dlls/wined3d/wined3d_main.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/wined3d/wined3d_main.c:193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(app_name, name, len); data/wine-5.0/dlls/wined3d/wined3d_main.c:200:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+10]; data/wine-5.0/dlls/wined3d/wined3d_main.c:252:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buffer, "\\Direct3D"); data/wine-5.0/dlls/wined3d/wined3d_main.c:332:38: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int TmpVideoMemorySize = atoi(buffer); data/wine-5.0/dlls/wined3d/wined3d_main.c:350:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wined3d_settings.logo, buffer, len); data/wine-5.0/dlls/wined3d/wined3d_private.h:2786:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[WINED3D_MAX_DEVICE_IDENTIFIER_LENGTH]; data/wine-5.0/dlls/wined3d/wined3d_private.h:4851:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char idx[WINED3D_MAX_FRAGMENT_SAMPLERS]; /* indices to the real constant */ data/wine-5.0/dlls/winegstreamer/gstdemux.c:729:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, info.data, info.size); data/wine-5.0/dlls/winegstreamer/gstdemux.c:1948:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pad_name[19]; data/wine-5.0/dlls/winegstreamer/gstdemux.c:1966:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(pad_name, "qz_sink_%u", filter->cStreams); data/wine-5.0/dlls/winegstreamer/gsttffilter.c:181:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, info.data, info.size); data/wine-5.0/dlls/winegstreamer/main.c:420:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *args[3]; data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char axesMap[ABS_MAX + 1]; data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:164:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:185:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(buf, flags)) < 0) { data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:187:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open(buf, flags)) < 0) data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:218:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char identString[MAXPNAMELEN]; data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:234:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, identString, -1, lpCaps->szPname, MAXPNAMELEN); data/wine-5.0/dlls/winemac.drv/clipboard.c:486:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bmi, &header, header.biSize); data/wine-5.0/dlls/winemac.drv/clipboard.c:568:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, CFDataGetBytePtr(data), len); data/wine-5.0/dlls/winemac.drv/clipboard.c:625:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, bmi, len); data/wine-5.0/dlls/winemac.drv/clipboard.c:703:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mfp, bytes, sizeof(*mfp)); data/wine-5.0/dlls/winemac.drv/clipboard.c:904:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar(CP_UTF8, 0, dst, -1, NULL, 0); data/wine-5.0/dlls/winemac.drv/clipboard.c:910:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, dst, -1, textW, count); data/wine-5.0/dlls/winemac.drv/clipboard.c:1115:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, p, -1, NULL, 0); data/wine-5.0/dlls/winemac.drv/clipboard.c:1125:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, p, -1, buffer, buffer_len); data/wine-5.0/dlls/winemac.drv/clipboard.c:1188:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fragmentstart = atoi(field_value); data/wine-5.0/dlls/winemac.drv/clipboard.c:1196:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fragmentend = atoi(field_value); data/wine-5.0/dlls/winemac.drv/clipboard.c:1254:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wstr_len = MultiByteToWideChar(CP_ACP, 0, str, str_len, NULL, 0); data/wine-5.0/dlls/winemac.drv/clipboard.c:1257:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, str_len, wstr, wstr_len); data/wine-5.0/dlls/winemac.drv/clipboard.c:1263:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, wstr, wstr_len * sizeof(WCHAR)); data/wine-5.0/dlls/winemac.drv/clipboard.c:1847:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, prefix, sizeof(prefix)); data/wine-5.0/dlls/winemac.drv/clipboard.c:1874:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clipboard_pipe_name, prefix, sizeof(prefix)); data/wine-5.0/dlls/winemac.drv/display.c:147:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, video_path, sizeof(video_path)); data/wine-5.0/dlls/winemac.drv/display.c:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wine_mac_reg_key[128]; data/wine-5.0/dlls/winemac.drv/display.c:204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wine_mac_reg_key[128]; data/wine-5.0/dlls/winemac.drv/display.c:239:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char display_key_name[19]; data/wine-5.0/dlls/winemac.drv/display.c:380:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char display_key[sizeof(display_key_format) + 10]; data/wine-5.0/dlls/winemac.drv/display.c:984:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(devmode->dmDeviceName, dev_name, sizeof(dev_name)); data/wine-5.0/dlls/winemac.drv/display.c:1362:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, gpu->name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/winemac.drv/display.c:1517:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, monitor->name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/winemac.drv/dragdrop.c:361:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(GlobalLock(hmem), data, info.RegionSize); data/wine-5.0/dlls/winemac.drv/image.c:189:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/winemac.drv/ime.c:135:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&target[currentOffset], &source[origOffset], truelen); data/wine-5.0/dlls/winemac.drv/ime.c:281:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newdata[current_offset], compstr, len * sizeof(WCHAR)); data/wine-5.0/dlls/winemac.drv/ime.c:423:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newdata[current_offset], resultstr, len * sizeof(WCHAR)); data/wine-5.0/dlls/winemac.drv/keyboard.c:1273:27: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, vkey_names[i].name, -1, buffer, size); data/wine-5.0/dlls/winemac.drv/macdrv_cocoa.h:275:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[128]; data/wine-5.0/dlls/winemac.drv/macdrv_cocoa.h:296:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[128]; data/wine-5.0/dlls/winemac.drv/macdrv_main.c:125:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH + 16]; data/wine-5.0/dlls/winemac.drv/macdrv_main.c:141:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(appname, "\\Mac Driver"); data/wine-5.0/dlls/winemac.drv/mouse.c:261:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/winemac.drv/opengl.c:48:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wglExtensions[4096]; data/wine-5.0/dlls/winemac.drv/opengl.c:4249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/winemac.drv/surface.c:127:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info, &surface->info, get_dib_info_size(&surface->info, DIB_RGB_COLORS)); data/wine-5.0/dlls/winemac.drv/window.c:1876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET(BITMAPINFO, bmiColors[256])]; data/wine-5.0/dlls/winemac.drv/window.c:1937:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(src_bits, dst_bits, bmi->bmiHeader.biSizeImage); data/wine-5.0/dlls/winemac.drv/window.c:1956:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst_bits, src_bits, bmi->bmiHeader.biSizeImage); data/wine-5.0/dlls/wineoss.drv/midi.c:85:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char incoming[3]; data/wine-5.0/dlls/wineoss.drv/midi.c:233:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, sinfo.name, -1, MidiOutDev[i].caps.szPname, data/wine-5.0/dlls/wineoss.drv/midi.c:313:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, minfo.name, -1, data/wine-5.0/dlls/wineoss.drv/midi.c:340:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, minfo.name, -1, MidiInDev[i].caps.szPname, data/wine-5.0/dlls/wineoss.drv/midi.c:451:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). midiSeqFD = open(device, O_RDWR, 0); data/wine-5.0/dlls/wineoss.drv/midi.c:635:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[256]; data/wine-5.0/dlls/wineoss.drv/midi.c:701:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &MidiInDev[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/wineoss.drv/midi.c:983:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const unsigned char midiFMInstrumentPatches[16 * 128]; data/wine-5.0/dlls/wineoss.drv/midi.c:984:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const unsigned char midiFMDrumsPatches [16 * 128]; data/wine-5.0/dlls/wineoss.drv/midi.c:1000:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sbi.operators, midiFMInstrumentPatches + i * 16, 16); data/wine-5.0/dlls/wineoss.drv/midi.c:1009:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sbi.operators, midiFMDrumsPatches + i * 16, 16); data/wine-5.0/dlls/wineoss.drv/midi.c:1067:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &MidiOutDev[wDevID].caps, min(dwSize, sizeof(*lpCaps))); data/wine-5.0/dlls/wineoss.drv/midipatch.c:29:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const unsigned char midiFMInstrumentPatches[128 * 16] = { data/wine-5.0/dlls/wineoss.drv/midipatch.c:160:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const unsigned char midiFMDrumsPatches[16 * 128] = { data/wine-5.0/dlls/wineoss.drv/mmaux.c:55:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((mixer = open(MIXER_DEV, O_RDWR)) < 0) { data/wine-5.0/dlls/wineoss.drv/mmaux.c:84:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((mixer = open(MIXER_DEV, O_RDWR)) < 0) { data/wine-5.0/dlls/wineoss.drv/mmaux.c:116:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((mixer = open(MIXER_DEV, O_RDWR)) < 0) { data/wine-5.0/dlls/wineoss.drv/mmaux.c:178:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((mixer = open(MIXER_DEV, O_RDWR)) < 0) { data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:115:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devnode[OSS_DEVNODE_SIZE]; data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:144:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devnode[OSS_DEVNODE_SIZE]; data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:276:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). mixer_fd = open("/dev/mixer", O_RDONLY, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:352:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, device, -1, key_name + 2, ARRAY_SIZE(key_name) - 2); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:380:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ret[OSS_DEVNODE_SIZE]; data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:395:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, devnode, len); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:410:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/dsp", O_WRONLY | O_NONBLOCK); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:412:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/dsp", O_RDONLY | O_NONBLOCK); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:455:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). mixer_fd = open("/dev/mixer", O_RDONLY, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:519:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(devnode, O_WRONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:521:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(devnode, O_RDONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:542:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UNIXCP, 0, ai.name, -1, NULL, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:563:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*ids)[*num], prefix, prefix_len * sizeof(WCHAR)); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:564:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, ai.name, -1, data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:615:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). This->fd = open(oss_dev->devnode, O_WRONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:617:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). This->fd = open(oss_dev->devnode, O_RDONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:852:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, fmt, size); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:979:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->guid, guid, sizeof(GUID)); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1266:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(This->devnode, O_WRONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1268:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(This->devnode, O_RDONLY | O_NONBLOCK, 0); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1902:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, written_bytes); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1904:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + write_offs_bytes, buffer, chunk_bytes); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1905:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer, buffer + chunk_bytes, data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2053:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer, This->local_buffer + offs_bytes, chunk_bytes); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:2054:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->tmp_buffer + chunk_bytes, This->local_buffer, data/wine-5.0/dlls/wineps.drv/afm2c.c:188:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/wineps.drv/afm2c.c:202:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). of = fopen(buffer, "w"); data/wine-5.0/dlls/wineps.drv/bitmap.c:244:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_ptr, src_ptr, dst_stride ); data/wine-5.0/dlls/wineps.drv/builtin.c:179:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Helvetica"); data/wine-5.0/dlls/wineps.drv/builtin.c:181:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Helvetica"); data/wine-5.0/dlls/wineps.drv/builtin.c:183:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Times"); data/wine-5.0/dlls/wineps.drv/builtin.c:185:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Courier"); data/wine-5.0/dlls/wineps.drv/builtin.c:274:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(metrics, &(physDev->font.fontinfo.Builtin.tm), data/wine-5.0/dlls/wineps.drv/builtin.c:402:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, afm->FamilyName, -1, lf->lfFaceName, data/wine-5.0/dlls/wineps.drv/builtin.c:420:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FaceName[LF_FACESIZE]; data/wine-5.0/dlls/wineps.drv/download.c:96:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*str, strings + name_record->offset, name_record->length); data/wine-5.0/dlls/wineps.drv/download.c:346:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char g_name[MAX_G_NAME + 1]; data/wine-5.0/dlls/wineps.drv/download.c:672:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, post2header + name_offset, name_length); data/wine-5.0/dlls/wineps.drv/download.c:756:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char g_name[MAX_G_NAME + 1]; data/wine-5.0/dlls/wineps.drv/download.c:794:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(undef) + 200]; data/wine-5.0/dlls/wineps.drv/driver.c:120:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, page->FullName, -1, dm1->dmPublic.dmFormName, CCHFORMNAME); data/wine-5.0/dlls/wineps.drv/driver.c:351:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ps->FullName, -1, di->dlgdm->dmPublic.dmFormName, CCHFORMNAME); data/wine-5.0/dlls/wineps.drv/driver.c:441:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, name, -1, NULL, 0 ); data/wine-5.0/dlls/wineps.drv/driver.c:445:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, name, -1, nameW, len ); data/wine-5.0/dlls/wineps.drv/driver.c:475:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/wineps.drv/driver.c:480:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/wineps.drv/driver.c:484:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmLogPixels, &dmW->dmLogPixels, dmW->dmSize - data/wine-5.0/dlls/wineps.drv/driver.c:488:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)dmA + dmA->dmSize, (const char *)dmW + dmW->dmSize, data/wine-5.0/dlls/wineps.drv/driver.c:594:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (dmA) memcpy( lpdmOutput, dmA, dmA->dmSize + dmA->dmDriverExtra ); data/wine-5.0/dlls/wineps.drv/escape.c:200:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "PostScript"); data/wine-5.0/dlls/wineps.drv/font.c:47:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FaceName[LF_FACESIZE]; data/wine-5.0/dlls/wineps.drv/font.c:66:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Times"); data/wine-5.0/dlls/wineps.drv/font.c:69:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Helvetica"); data/wine-5.0/dlls/wineps.drv/font.c:72:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Courier"); data/wine-5.0/dlls/wineps.drv/font.c:75:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Symbol"); data/wine-5.0/dlls/wineps.drv/font.c:83:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Times"); data/wine-5.0/dlls/wineps.drv/font.c:86:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(FaceName, "Courier"); data/wine-5.0/dlls/wineps.drv/graphics.c:111:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/graphics.c:113:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "N %d %d %d %d B\n", rect.right - rect.left, rect.bottom - rect.top, rect.left, rect.top); data/wine-5.0/dlls/wineps.drv/graphics.c:314:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dev_pts, pts, total * sizeof(*dev_pts) ); data/wine-5.0/dlls/wineps.drv/graphics.c:350:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dev_pts, pts, total * sizeof(*dev_pts) ); data/wine-5.0/dlls/wineps.drv/graphics.c:390:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dev_pts, pts, count * sizeof(*dev_pts) ); data/wine-5.0/dlls/wineps.drv/graphics.c:418:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dev_pts + 1, pts, (count - 1) * sizeof(*dev_pts) ); data/wine-5.0/dlls/wineps.drv/mkagl.c:122:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen("glyphlist.txt", "r"); data/wine-5.0/dlls/wineps.drv/mkagl.c:123:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char linebuf[256], namebuf[128], commbuf[128]; data/wine-5.0/dlls/wineps.drv/mkagl.c:190:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *cp, linebuf[256], font_family[128]; data/wine-5.0/dlls/wineps.drv/mkagl.c:197:6: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(de->d_name, "r"); data/wine-5.0/dlls/wineps.drv/mkagl.c:256:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char namebuf[128]; data/wine-5.0/dlls/wineps.drv/mkagl.c:494:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f_c = fopen(argv[1], "w"); data/wine-5.0/dlls/wineps.drv/mkagl.c:501:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f_h = fopen(argv[2], "w"); data/wine-5.0/dlls/wineps.drv/pen.c:95:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, PEN_dash, sizeof(PEN_dash) ); data/wine-5.0/dlls/wineps.drv/pen.c:100:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, PEN_dot, sizeof(PEN_dot) ); data/wine-5.0/dlls/wineps.drv/pen.c:105:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, PEN_dashdot, sizeof(PEN_dashdot) ); data/wine-5.0/dlls/wineps.drv/pen.c:110:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, PEN_dashdotdot, sizeof(PEN_dashdotdot) ); data/wine-5.0/dlls/wineps.drv/pen.c:115:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, PEN_alternate, sizeof(PEN_alternate) ); data/wine-5.0/dlls/wineps.drv/pen.c:121:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( physDev->pen.dash, elp->elpStyleEntry, physDev->pen.dash_len * sizeof(DWORD) ); data/wine-5.0/dlls/wineps.drv/ppd.c:248:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, start, end - start); data/wine-5.0/dlls/wineps.drv/ppd.c:292:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *buf, line[257]; data/wine-5.0/dlls/wineps.drv/ppd.c:303:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, start, ctx->pos - start - 1 ); data/wine-5.0/dlls/wineps.drv/ppd.c:352:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tuple->value, start, end - start); data/wine-5.0/dlls/wineps.drv/ppd.c:382:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[257], *opt, *cp, *trans, *endkey; data/wine-5.0/dlls/wineps.drv/ppd.c:420:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tuple->key, line, endkey - line); data/wine-5.0/dlls/wineps.drv/ppd.c:432:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tuple->option, opt, cp - opt); data/wine-5.0/dlls/wineps.drv/ppd.c:446:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, trans, cp - trans); data/wine-5.0/dlls/wineps.drv/ppd.c:537:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, start, end - start ); data/wine-5.0/dlls/wineps.drv/ps.c:46:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *cups_duplexes[3] = data/wine-5.0/dlls/wineps.drv/ps.c:320:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, i); data/wine-5.0/dlls/wineps.drv/ps.c:358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:366:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, media, sizeof(media) ); data/wine-5.0/dlls/wineps.drv/ps.c:517:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/wine-5.0/dlls/wineps.drv/ps.c:521:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "%d", physDev->job.PageNo); data/wine-5.0/dlls/wineps.drv/ps.c:560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:568:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:585:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:594:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:648:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:685:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( buf + pos, " %u", physDev->pen.dash[i] ); data/wine-5.0/dlls/wineps.drv/ps.c:687:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf + pos, "] %u setdash\n", 0); data/wine-5.0/dlls/wineps.drv/ps.c:690:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "[] %u setdash\n", 0); data/wine-5.0/dlls/wineps.drv/ps.c:699:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/wineps.drv/ps.c:760:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:770:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wineps.drv/ps.c:771:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "[/Indexed /DeviceRGB %d\n<\n", size); data/wine-5.0/dlls/wineps.drv/ps.c:788:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02x%02x%02x%c", (int)GetRValue(map[i]), data/wine-5.0/dlls/wineps.drv/ps.c:805:16: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. ptr += sprintf(ptr, "%02x%02x%02x%c", rgb->rgbRed, rgb->rgbGreen, rgb->rgbBlue, data/wine-5.0/dlls/wineps.drv/ps.c:825:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1000]; data/wine-5.0/dlls/wineps.drv/ps.c:876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:898:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02x", bytes[i]); data/wine-5.0/dlls/wineps.drv/ps.c:927:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:935:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:943:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:951:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wineps.drv/ps.c:983:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ptr, "%02x", *(bits + x/8 + y * data/wine-5.0/dlls/wineps.drv/psdrv.h:417:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char *PSDRV_ANSIVector[256] DECLSPEC_HIDDEN; data/wine-5.0/dlls/wineps.drv/psdrv.h:599:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, str, size ); data/wine-5.0/dlls/wineps.drv/type1.c:652:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%%%%glyph %04x\n", index); data/wine-5.0/dlls/wineps.drv/type42.c:172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(t42->tables, tables_templ, sizeof(tables_templ)); data/wine-5.0/dlls/wineps.drv/type42.c:243:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%02x", t42->tables[i].data[j]); data/wine-5.0/dlls/wineps.drv/type42.c:268:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf,"%d ", t42->glyf_blocks[i] - t42->glyf_blocks[i-1] + 1); data/wine-5.0/dlls/wineps.drv/type42.c:324:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sg_name[MAX_G_NAME + 1]; data/wine-5.0/dlls/wineps.drv/type42.c:355:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d %d\n", t42->num_of_written_tables - 2 + i, start - t42->glyf_blocks[i-1]); data/wine-5.0/dlls/wineps.drv/type42.c:360:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%02x", *(t42->tables[t42->glyf_tab].data + i)); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1009:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, This->peek_buffer + This->peek_ofs, copy); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1021:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, rem); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1033:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->peek_buffer, src + copy, src_len - copy); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1096:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1106:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "audio stream #%i", ret); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(id, defaultW, sizeof(defaultW)); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1347:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, fmt, size); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:1410:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ret->guid, guid, sizeof(GUID)); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:2360:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + This->wri_offs_bytes, buffer, written_bytes); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:2362:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer + This->wri_offs_bytes, buffer, chunk_bytes); data/wine-5.0/dlls/winepulse.drv/mmdevdrv.c:2363:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(This->local_buffer, buffer + chunk_bytes, data/wine-5.0/dlls/wineqtdecoder/qtdatahandler.c:366:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str + 1, stream_sigs[i].fname, str[0]); data/wine-5.0/dlls/winevulkan/vulkan.c:752:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(properties, phys_dev->extensions, *count * sizeof(*properties)); data/wine-5.0/dlls/winevulkan/vulkan.c:1047:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&submits_host[i], &submits[i], sizeof(*submits_host)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:977:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->memoryTypes, in->memoryTypes, VK_MAX_MEMORY_TYPES * sizeof(VkMemoryType)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1055:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->maxComputeWorkGroupCount, in->maxComputeWorkGroupCount, 3 * sizeof(uint32_t)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1057:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->maxComputeWorkGroupSize, in->maxComputeWorkGroupSize, 3 * sizeof(uint32_t)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1066:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->maxViewportDimensions, in->maxViewportDimensions, 2 * sizeof(uint32_t)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1067:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->viewportBoundsRange, in->viewportBoundsRange, 2 * sizeof(float)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1100:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->pointSizeRange, in->pointSizeRange, 2 * sizeof(float)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1101:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->lineWidthRange, in->lineWidthRange, 2 * sizeof(float)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1120:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->deviceName, in->deviceName, VK_MAX_PHYSICAL_DEVICE_NAME_SIZE * sizeof(char)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.c:1121:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out->pipelineCacheUUID, in->pipelineCacheUUID, VK_UUID_SIZE * sizeof(uint8_t)); data/wine-5.0/dlls/winevulkan/vulkan_thunks.h:701:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char deviceName[VK_MAX_PHYSICAL_DEVICE_NAME_SIZE]; data/wine-5.0/dlls/winex11.drv/bitblt.c:71:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char BITBLT_Opcodes[256][MAX_OP_LEN] = data/wine-5.0/dlls/winex11.drv/bitblt.c:460:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char bit_swap[256] = data/wine-5.0/dlls/winex11.drv/bitblt.c:1082:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst, src, src_stride ); data/wine-5.0/dlls/winex11.drv/bitblt.c:1462:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/bitblt.c:1463:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src_buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/bitblt.c:1475:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_info, info, get_dib_info_size( info, coloruse )); data/wine-5.0/dlls/winex11.drv/bitblt.c:1476:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_info, info, get_dib_info_size( info, coloruse )); data/wine-5.0/dlls/winex11.drv/bitblt.c:1482:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_info->bmiColors, default_colortable, sizeof(default_colortable) ); data/wine-5.0/dlls/winex11.drv/bitblt.c:1487:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_info->bmiColors, default_colortable, sizeof(default_colortable) ); data/wine-5.0/dlls/winex11.drv/bitblt.c:1622:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/wine-5.0/dlls/winex11.drv/bitblt.c:1844:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &surface->info, get_dib_info_size( &surface->info, DIB_RGB_COLORS )); data/wine-5.0/dlls/winex11.drv/clipboard.c:345:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *names[256]; data/wine-5.0/dlls/winex11.drv/clipboard.c:380:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *names[256]; data/wine-5.0/dlls/winex11.drv/clipboard.c:404:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar( CP_UNIXCP, 0, names[i], -1, buffer, 256 ) && data/wine-5.0/dlls/winex11.drv/clipboard.c:595:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[3]; data/wine-5.0/dlls/winex11.drv/clipboard.c:628:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[256]; data/wine-5.0/dlls/winex11.drv/clipboard.c:670:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count = MultiByteToWideChar( codepage, 0, data, size, NULL, 0); data/wine-5.0/dlls/winex11.drv/clipboard.c:674:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( codepage, 0, data, size, strW + count, count ); data/wine-5.0/dlls/winex11.drv/clipboard.c:759:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/clipboard.c:802:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, info, info_size ); data/wine-5.0/dlls/winex11.drv/clipboard.c:803:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr + info_size, bits.ptr, info->bmiHeader.biSizeImage ); data/wine-5.0/dlls/winex11.drv/clipboard.c:884:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, data, size ); data/wine-5.0/dlls/winex11.drv/clipboard.c:940:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out[total], path, pathSize * sizeof(WCHAR)); data/wine-5.0/dlls/winex11.drv/clipboard.c:961:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char*)dropFiles + dropFiles->pFiles, out, (total + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/winex11.drv/clipboard.c:1019:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, data, size ); data/wine-5.0/dlls/winex11.drv/clipboard.c:1271:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bfh+1, dibdata, bmpsize-sizeof(BITMAPFILEHEADER)); data/wine-5.0/dlls/winex11.drv/clipboard.c:1318:58: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (!strncmp( p, "StartFragment:", 14 )) start = atoi( p + 14 ); data/wine-5.0/dlls/winex11.drv/clipboard.c:1319:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). else if (!strncmp( p, "EndFragment:", 12 )) end = atoi( p + 12 ); data/wine-5.0/dlls/winex11.drv/clipboard.c:1501:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!open && !(open = OpenClipboard( clipboard_hwnd ))) data/wine-5.0/dlls/winex11.drv/clipboard.c:1517:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (open) CloseClipboard(); data/wine-5.0/dlls/winex11.drv/clipboard.c:1621:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (int *)val + pos, buffer, count ); data/wine-5.0/dlls/winex11.drv/clipboard.c:1736:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buf[bytes_copied], packet->data, packet->size); data/wine-5.0/dlls/winex11.drv/clipboard.c:1938:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, prefix, sizeof(prefix) ); data/wine-5.0/dlls/winex11.drv/event.c:147:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * event_names[MAX_EVENT_HANDLERS] = data/wine-5.0/dlls/winex11.drv/graphics.c:1086:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( points, pt, count * sizeof(*pt) ); data/wine-5.0/dlls/winex11.drv/graphics.c:1135:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( points, pt, total * sizeof(*pt) ); data/wine-5.0/dlls/winex11.drv/graphics.c:1202:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( points, pt, total * sizeof(*pt) ); data/wine-5.0/dlls/winex11.drv/graphics.c:1611:62: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if ((ret = HeapAlloc( GetProcessHeap(), 0, *size ))) memcpy( ret, profile, *size ); data/wine-5.0/dlls/winex11.drv/graphics.c:1622:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[64]; data/wine-5.0/dlls/winex11.drv/graphics.c:1668:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char sha1sum[20]; data/wine-5.0/dlls/winex11.drv/graphics.c:1678:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &profile[i * 2], icm, sizeof(icm) ); data/wine-5.0/dlls/winex11.drv/graphics.c:1755:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( profile, sysdir, len_sysdir * sizeof(WCHAR) ); data/wine-5.0/dlls/winex11.drv/graphics.c:1756:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( profile + len_sysdir, color_path, sizeof(color_path) - sizeof(WCHAR) ); data/wine-5.0/dlls/winex11.drv/ime.c:175:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&target[currentOffset], &source[origOffset], truelen); data/wine-5.0/dlls/winex11.drv/ime.c:315:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newdata[current_offset],compstr,len*sizeof(WCHAR)); data/wine-5.0/dlls/winex11.drv/ime.c:459:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newdata[current_offset],resultstr,len*sizeof(WCHAR)); data/wine-5.0/dlls/winex11.drv/keyboard.c:222:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_US[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:232:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_US_phantom[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:242:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_US_dvorak[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:251:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_UK[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:261:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_FR[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:271:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_IS[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:295:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_DE[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:305:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SG[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:315:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SF[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:325:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_NO[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:335:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_DA[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:345:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SE[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:355:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_ET[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:365:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CF[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:375:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CA_fr[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:385:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CA[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:395:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_PT[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:405:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_IT[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:415:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_FI[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:425:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_BG_bds[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:435:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_BG_phonetic[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:446:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_BY[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:456:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:465:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU_phantom[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:475:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU_koi8r[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:485:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU_cp1251[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:495:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU_phonetic[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:505:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_UA[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:516:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_UA_std[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:526:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_RU_std[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:536:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_ES[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:546:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_BE[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:556:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_HU[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:566:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_PL[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:576:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SI[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:586:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SR[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:596:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_US_SR[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:606:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_HR_jelly[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:616:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_HR[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:626:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_JA_jp106[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:635:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_JA_macjp[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:645:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_JA_pc98x1[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:655:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_PT_br[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:664:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_PT_br_alt_gr[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:673:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_US_intl[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:684:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SK[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:694:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CZ[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:704:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CZ_qwerty[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:714:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_SK_prog[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:724:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_CS[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:734:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_LA[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:744:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_LT_B[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:754:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_TK[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:763:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_TR[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:773:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_TR_F[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:783:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_IL[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:793:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_IL_phonetic[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:803:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_IL_saharon[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:815:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_EL[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:825:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_th[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:848:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_vnc[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:855:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char main_key_NL[MAIN_LEN][4] = data/wine-5.0/dlls/winex11.drv/keyboard.c:871:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char (*key)[MAIN_LEN][4]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1109:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[24]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[24]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1434:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char (*lkey)[MAIN_LEN][4]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1437:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ckey[256][4]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1506:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[5]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1616:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ckey[4]={0,0,0,0}; data/wine-5.0/dlls/winex11.drv/keyboard.c:1617:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char (*lkey)[MAIN_LEN][4]; data/wine-5.0/dlls/winex11.drv/keyboard.c:1618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vkey_used[256] = { 0 }; data/wine-5.0/dlls/winex11.drv/keyboard.c:1688:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[30]; data/wine-5.0/dlls/winex11.drv/keyboard.c:2159:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[10]; data/wine-5.0/dlls/winex11.drv/keyboard.c:2204:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar(CP_UNIXCP, 0, s, len, &wch, 1)) ret = toupperW(wch); data/wine-5.0/dlls/winex11.drv/keyboard.c:2312:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_UNIXCP, 0, name, idx-name+1, lpBuffer, nSize); data/wine-5.0/dlls/winex11.drv/keyboard.c:2324:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). rc = MultiByteToWideChar(CP_UNIXCP, 0, name, -1, lpBuffer, nSize); data/wine-5.0/dlls/winex11.drv/keyboard.c:2443:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/wine-5.0/dlls/winex11.drv/keyboard.c:2619:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, &dead_char, 1, bufW, bufW_size); data/wine-5.0/dlls/winex11.drv/keyboard.c:2715:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ret = MultiByteToWideChar(CP_UNIXCP, 0, lpChar, ret, bufW, bufW_size); data/wine-5.0/dlls/winex11.drv/mouse.c:300:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char mask_bits[XIMaskLen(XI_LASTEVENT)]; data/wine-5.0/dlls/winex11.drv/mouse.c:729:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( image->pixels, color_bits, color_size ); data/wine-5.0/dlls/winex11.drv/mouse.c:860:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *names[8]; data/wine-5.0/dlls/winex11.drv/mouse.c:1049:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char valueA[64]; data/wine-5.0/dlls/winex11.drv/mouse.c:1125:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/mouse.c:1254:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/opengl.c:183:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wglExtensions[4096]; data/wine-5.0/dlls/winex11.drv/opengl.c:546:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/winex11.drv/palette.c:68:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char X11DRV_PALETTE_freeList[256]; data/wine-5.0/dlls/winex11.drv/pen.c:31:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dashes, style, len * sizeof(DWORD) ); data/wine-5.0/dlls/winex11.drv/pen.c:112:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physDev->pen.dashes, physDev->pen.ext ? EXTPEN_dash : PEN_dash, data/wine-5.0/dlls/winex11.drv/pen.c:117:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physDev->pen.dashes, physDev->pen.ext ? EXTPEN_dot : PEN_dot, data/wine-5.0/dlls/winex11.drv/pen.c:122:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physDev->pen.dashes, physDev->pen.ext ? EXTPEN_dashdot : PEN_dashdot, data/wine-5.0/dlls/winex11.drv/pen.c:127:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physDev->pen.dashes, physDev->pen.ext ? EXTPEN_dashdotdot : PEN_dashdotdot, data/wine-5.0/dlls/winex11.drv/pen.c:132:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(physDev->pen.dashes, PEN_alternate, physDev->pen.dash_len); data/wine-5.0/dlls/winex11.drv/settings.c:169:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, video_path, sizeof(video_path)); data/wine-5.0/dlls/winex11.drv/settings.c:182:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wine_x11_reg_key[128]; data/wine-5.0/dlls/winex11.drv/settings.c:224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wine_x11_reg_key[128]; data/wine-5.0/dlls/winex11.drv/settings.c:267:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(devmode->dmDeviceName, dev_name, sizeof(dev_name)); data/wine-5.0/dlls/winex11.drv/settings.c:318:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winex11.drv/settings.c:329:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winex11.drv/settings.c:348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bpp_buffer[16], freq_buffer[18]; data/wine-5.0/dlls/winex11.drv/settings.c:429:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(bpp_buffer, "bpp=%u ", devmode->dmBitsPerPel); data/wine-5.0/dlls/winex11.drv/settings.c:431:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(freq_buffer, "freq=%u ", devmode->dmDisplayFrequency); data/wine-5.0/dlls/winex11.drv/systray.c:626:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char systray_buffer[29]; /* strlen(_NET_SYSTEM_TRAY_S4294967295)+1 */ data/wine-5.0/dlls/winex11.drv/systray.c:627:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( systray_buffer, "_NET_SYSTEM_TRAY_S%u", DefaultScreen( display ) ); data/wine-5.0/dlls/winex11.drv/window.c:113:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[1024]; data/wine-5.0/dlls/winex11.drv/window.c:114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char message[1024]; data/wine-5.0/dlls/winex11.drv/window.c:128:58: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if ((src = strstr( id, "_TIME" ))) update_user_time( atol( src + 5 )); data/wine-5.0/dlls/winex11.drv/window.c:156:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&xevent.xclient.data.b[0], src, msglen); data/wine-5.0/dlls/winex11.drv/window.c:472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/window.c:535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/window.c:624:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bits + size, bits_small, size_small * sizeof(unsigned long) ); data/wine-5.0/dlls/winex11.drv/window.c:2634:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[FIELD_OFFSET( BITMAPINFO, bmiColors[256] )]; data/wine-5.0/dlls/winex11.drv/window.c:2682:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( src_bits, dst_bits, bmi->bmiHeader.biSizeImage ); data/wine-5.0/dlls/winex11.drv/window.c:2695:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst_bits, src_bits, bmi->bmiHeader.biSizeImage ); data/wine-5.0/dlls/winex11.drv/window.c:2786:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *argv[3] = { "xdg-screensaver", "activate", NULL }; data/wine-5.0/dlls/winex11.drv/wintab.c:594:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char map[32]; data/wine-5.0/dlls/winex11.drv/wintab.c:619:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, target->name, -1, cursor.NAME, WT_MAX_NAME_LEN); data/wine-5.0/dlls/winex11.drv/wintab.c:1028:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cursorNameA[WT_MAX_NAME_LEN]; data/wine-5.0/dlls/winex11.drv/wintab.c:1112:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target,src,size); data/wine-5.0/dlls/winex11.drv/x11drv.h:74:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dashes[MAX_DASHLEN]; data/wine-5.0/dlls/winex11.drv/x11drv_main.c:101:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char input_style[20]; data/wine-5.0/dlls/winex11.drv/x11drv_main.c:129:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const atom_names[NB_XATOMS - FIRST_XATOM] = data/wine-5.0/dlls/winex11.drv/x11drv_main.c:352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/winex11.drv/x11drv_main.c:413:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). default_visual.depth = atoi(buffer); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:431:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). primary_monitor = atoi( buffer ); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:434:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). copy_default_colors = atoi(buffer); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:437:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). alloc_system_colors = atoi(buffer); data/wine-5.0/dlls/winex11.drv/x11drv_main.c:563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1024]; data/wine-5.0/dlls/winex11.drv/xdnd.c:128:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(GlobalLock(hmem), data, info.RegionSize); data/wine-5.0/dlls/winex11.drv/xdnd.c:641:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpDrop, GlobalLock(current->contents), GlobalSize(current->contents)); data/wine-5.0/dlls/winex11.drv/xdnd.c:777:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char formatDesc[1024]; data/wine-5.0/dlls/winex11.drv/xdnd.c:796:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(GlobalLock(pMedium->u.hGlobal), GlobalLock(current->contents), GlobalSize(current->contents)); data/wine-5.0/dlls/winex11.drv/xdnd.c:818:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char formatDesc[1024]; data/wine-5.0/dlls/winex11.drv/xim.c:96:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (lpComp) memcpy(ptr_new, lpComp, byte_length); data/wine-5.0/dlls/winex11.drv/xim.c:111:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dwOutput = MultiByteToWideChar(CP_UNIXCP, 0, str, count, NULL, 0); data/wine-5.0/dlls/winex11.drv/xim.c:115:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, str, count, wcOutput, dwOutput); data/wine-5.0/dlls/winex11.drv/xim.c:181:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dwOutput = MultiByteToWideChar(CP_UNIXCP, 0, data/wine-5.0/dlls/winex11.drv/xim.c:187:32: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dwOutput = MultiByteToWideChar(CP_UNIXCP, 0, data/wine-5.0/dlls/winex11.drv/xrandr.c:727:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, provider_info->name, -1, gpus[i].name, ARRAY_SIZE(gpus[i].name) ); data/wine-5.0/dlls/winex11.drv/xrender.c:1037:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char zero[4]; data/wine-5.0/dlls/winex11.drv/xrender.c:1144:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output[300]; data/wine-5.0/dlls/winex11.drv/xrender.c:1159:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[2]; data/wine-5.0/dlls/winhttp/cookie.c:181:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cookie->name, string, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/cookie.c:195:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cookie->value, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/cookie.c:233:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( attr->name, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/cookie.c:252:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( attr->value, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/cookie.c:357:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( header, cookieW, len_cookie * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/net.c:402:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bufs[1].pvBuffer, msg, size); data/wine-5.0/dlls/winhttp/net.c:453:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->ssl_buf, conn->extra_buf, conn->extra_len); data/wine-5.0/dlls/winhttp/net.c:504:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, bufs[i].pvBuffer, size); data/wine-5.0/dlls/winhttp/net.c:511:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->peek_msg, (char*)bufs[i].pvBuffer+size, conn->peek_len); data/wine-5.0/dlls/winhttp/net.c:525:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->extra_buf, bufs[i].pvBuffer, conn->extra_len); data/wine-5.0/dlls/winhttp/net.c:545:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, conn->peek_msg, *recvd ); data/wine-5.0/dlls/winhttp/net.c:638:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sa, res->ai_addr, res->ai_addrlen ); data/wine-5.0/dlls/winhttp/request.c:272:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( header->field, string, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:284:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( header->value, q, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:393:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &header->value[len_orig], value, len_value * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:418:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, headers, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:629:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, headers, len + sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:1284:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( auth_reply, auth_schemes[authinfo->scheme].str, len_scheme * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:1362:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[INET6_ADDRSTRLEN]; data/wine-5.0/dlls/winhttp/request.c:1904:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)buffer + bytes_read, request->read_buf + request->read_pos, count ); data/wine-5.0/dlls/winhttp/request.c:1937:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2048]; data/wine-5.0/dlls/winhttp/request.c:2099:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, path, len_path ); data/wine-5.0/dlls/winhttp/request.c:2116:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, "\r\n\r\n", sizeof("\r\n\r\n") ); data/wine-5.0/dlls/winhttp/request.c:2412:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer + pos, request->read_buf + request->read_pos, count ); data/wine-5.0/dlls/winhttp/request.c:2440:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_REPLY_LEN]; data/wine-5.0/dlls/winhttp/request.c:2468:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, status_code, len, status_codeW, len ); data/wine-5.0/dlls/winhttp/request.c:2476:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buffer, len - 1, versionW, len -1 ); data/wine-5.0/dlls/winhttp/request.c:2484:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, status_text, len, status_textW, len ); data/wine-5.0/dlls/winhttp/request.c:2491:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buffer, buflen, raw_headers, buflen ); data/wine-5.0/dlls/winhttp/request.c:2492:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( raw_headers + buflen - 1, L"\r\n", sizeof(L"\r\n") ); data/wine-5.0/dlls/winhttp/request.c:2515:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( raw_headers + offset, L"\r\n", sizeof(L"\r\n") ); data/wine-5.0/dlls/winhttp/request.c:2518:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buffer, buflen, raw_headers + offset, buflen ); data/wine-5.0/dlls/winhttp/request.c:2527:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( raw_headers + offset + buflen - 1, L"\r\n", sizeof(L"\r\n") ); data/wine-5.0/dlls/winhttp/request.c:2586:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, location, len_loc * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:2596:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path + lstrlenW(path), location, len_loc * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:2622:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hostname, uc.lpszHostName, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:2650:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( request->path, uc.lpszUrlPath, (len + 1) * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:3505:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hostname, uc.lpszHostName, uc.dwHostNameLength * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:3509:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, uc.lpszUrlPath, (uc.dwUrlPathLength + uc.dwExtraInfoLength) * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/request.c:4098:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( codepage, 0, request->buffer, request->offset, NULL, 0 ); data/wine-5.0/dlls/winhttp/request.c:4104:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( codepage, 0, request->buffer, request->offset, *body, len ); data/wine-5.0/dlls/winhttp/request.c:4143:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, request->buffer, request->offset ); data/wine-5.0/dlls/winhttp/request.c:4220:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, stream->data + stream->pos.QuadPart, size ); data/wine-5.0/dlls/winhttp/request.c:4346:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( stream->data, request->buffer, request->offset ); data/wine-5.0/dlls/winhttp/session.c:447:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( domain, tmp, (ptr - tmp) * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/session.c:481:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( connect->servername, session->proxy_server, data/wine-5.0/dlls/winhttp/session.c:638:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (str) memcpy( buffer, str, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/session.c:664:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( addr_in, addr, sizeof(*addr_in) ); data/wine-5.0/dlls/winhttp/session.c:672:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( addr_in6, addr, sizeof(*addr_in6) ); data/wine-5.0/dlls/winhttp/session.c:853:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, buffer, buflen * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/session.c:1341:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ptr->AdapterName, -1, name, ARRAY_SIZE(name) ); data/wine-5.0/dlls/winhttp/session.c:1360:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, (const char *)param.Data, param.nBytesData, NULL, 0 ); data/wine-5.0/dlls/winhttp/session.c:1363:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (const char *)param.Data, param.nBytesData, ret, len ); data/wine-5.0/dlls/winhttp/session.c:1409:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[NI_MAXHOST]; data/wine-5.0/dlls/winhttp/session.c:1451:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name, "wpad" ); data/wine-5.0/dlls/winhttp/session.c:1781:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( hostname, uc.lpszHostName, uc.dwHostNameLength * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/tests/notification.c:508:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/winhttp/tests/notification.c:650:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/winhttp/tests/notification.c:714:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/winhttp/tests/notification.c:846:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winhttp/tests/notification.c:922:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:48:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/winhttp/tests/winhttp.c:50:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/winhttp/tests/winhttp.c:1056:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:2284:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:2353:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[BIG_BUFFER_LEN]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:2470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:2566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:2980:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:3065:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:3130:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(today, ifmodifiedW, sizeof(ifmodifiedW)); data/wine-5.0/dlls/winhttp/tests/winhttp.c:3776:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winhttp/tests/winhttp.c:4287:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf, "http://localhost:%d/auth", port ); data/wine-5.0/dlls/winhttp/tests/winhttp.c:4288:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, buf, -1, bufW, ARRAY_SIZE( bufW )); data/wine-5.0/dlls/winhttp/tests/winhttp.c:4374:61: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hr = IWinHttpRequest_GetIDsOfNames(request, &IID_NULL, &open, 1, 0x0409, &id); data/wine-5.0/dlls/winhttp/url.c:56:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *comp->str, value, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:148:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( *ret, url, len_base * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:462:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszScheme, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:476:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, schemeW, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:487:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszUserName, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:494:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszPassword, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:502:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszHostName, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:531:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszUrlPath, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/url.c:549:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( url, uc->lpszExtraInfo, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winhttp/winhttp_private.h:187:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buf[8192]; /* buffer for already read but not returned data */ data/wine-5.0/dlls/winhttp/winhttp_private.h:304:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, src, -1, NULL, 0 ); data/wine-5.0/dlls/winhttp/winhttp_private.h:306:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, src, -1, dst, len ); data/wine-5.0/dlls/wininet/cookie.c:164:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url, cookie_prefix, sizeof(cookie_prefix)); data/wine-5.0/dlls/wininet/cookie.c:167:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, user, user_len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/cookie.c:172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, domain.str, domain.len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/cookie.c:397:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64], *dyn_buf; data/wine-5.0/dlls/wininet/cookie.c:482:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\n%u\n%u\n%u\n%u\n%u\n*\n", cookie_container->flags, data/wine-5.0/dlls/wininet/cookie.c:628:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, cookie_set->cookies[i]->name, len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/cookie.c:634:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, cookie_set->cookies[i]->data, len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/cookie.c:663:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, cookieW, sizeof(cookieW)); data/wine-5.0/dlls/wininet/cookie.c:977:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, data.str, data.len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/ftp.c:1079:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszCurrentDirectory, &lpszResponseBuffer[firstpos + 1], len * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/ftp.c:1170:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, file->cache_file, *size); data/wine-5.0/dlls/wininet/ftp.c:2443:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szaddr[INET6_ADDRSTRLEN]; data/wine-5.0/dlls/wininet/ftp.c:2776:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char firstprefix[5]; data/wine-5.0/dlls/wininet/ftp.c:2797:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(firstprefix, lpszResponse, 3); data/wine-5.0/dlls/wininet/ftp.c:2812:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). rc = atoi(lpszResponse); data/wine-5.0/dlls/wininet/ftp.c:3069:16: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *dwSize = atol(&(lpszResponseBuffer[i + 1])); data/wine-5.0/dlls/wininet/ftp.c:3668:31: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->nSize = atol(pszToken); data/wine-5.0/dlls/wininet/ftp.c:3689:41: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->tmLastModified.wDay = atoi(pszToken); data/wine-5.0/dlls/wininet/ftp.c:3697:48: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->tmLastModified.wMinute = atoi(pszTmp); data/wine-5.0/dlls/wininet/ftp.c:3698:46: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->tmLastModified.wHour = atoi(pszToken); data/wine-5.0/dlls/wininet/ftp.c:3703:46: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->tmLastModified.wYear = atoi(pszToken); data/wine-5.0/dlls/wininet/ftp.c:3755:31: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). lpfp->nSize = atol(pszToken); data/wine-5.0/dlls/wininet/http.c:563:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(gzip_stream->buf, req->read_buf+req->read_pos, req->read_size); data/wine-5.0/dlls/wininet/http.c:858:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*auth_data,ad->authorization,ad->authorizationLen); data/wine-5.0/dlls/wininet/http.c:901:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ad->authorization, auth_data, auth_data_len); data/wine-5.0/dlls/wininet/http.c:910:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ad->authorization, auth_data, auth_data_len); data/wine-5.0/dlls/wininet/http.c:944:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nt_auth_identity->Domain, ad->domain, sizeof(WCHAR)*ad->domain_len); data/wine-5.0/dlls/wininet/http.c:1595:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. signed char in[4]; data/wine-5.0/dlls/wininet/http.c:1647:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, scheme, scheme_len * sizeof(WCHAR) ); data/wine-5.0/dlls/wininet/http.c:1736:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(url, req->server->scheme_host_port, len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:2226:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, req->req_file->file_name, *size); data/wine-5.0/dlls/wininet/http.c:2559:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer + pos, req->read_buf + req->read_pos, count ); data/wine-5.0/dlls/wininet/http.c:2819:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf+ret_read, chunked_stream->buf+chunked_stream->buf_pos, read_bytes); data/wine-5.0/dlls/wininet/http.c:2948:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(chunked_stream->buf, request->read_buf+request->read_pos, request->read_size); data/wine-5.0/dlls/wininet/http.c:3033:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, req->read_buf+req->read_pos, ret_read); data/wine-5.0/dlls/wininet/http.c:3169:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, req->read_buf + req->read_pos, read); data/wine-5.0/dlls/wininet/http.c:3611:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, headers, len + sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:3657:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, headers, len); data/wine-5.0/dlls/wininet/http.c:3677:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, request->statusText, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:3697:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, request->version, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:3735:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, buf, size+sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:3823:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, lphttpHdr->lpszValue, len); data/wine-5.0/dlls/wininet/http.c:4014:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). alloclen = MultiByteToWideChar( CP_ACP, 0, lpBuffer, -1, NULL, 0 ) * sizeof(WCHAR); data/wine-5.0/dlls/wininet/http.c:4023:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpBuffer, -1, bufferW, alloclen / sizeof(WCHAR) ); data/wine-5.0/dlls/wininet/http.c:4461:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(day, value, (ptr - value) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:4554:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(day, value, (ptr - value) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:4565:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(day, value, (ptr - value) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:4878:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data_len) memcpy( ret + len - 1, data, data_len ); data/wine-5.0/dlls/wininet/http.c:5460:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). headerlen = MultiByteToWideChar(CP_ACP,0,lpBuffersIn->lpcszHeader, data/wine-5.0/dlls/wininet/http.c:5468:42: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). BuffersInW.dwHeadersLength = MultiByteToWideChar(CP_ACP, 0, data/wine-5.0/dlls/wininet/http.c:5540:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(task->headers, lpBuffersIn->lpcszHeader, size); data/wine-5.0/dlls/wininet/http.c:5637:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(task->headers, lpszHeaders, size); data/wine-5.0/dlls/wininet/http.c:5682:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nLen=MultiByteToWideChar(CP_ACP,0,lpszHeaders,dwHeaderLength,NULL,0); data/wine-5.0/dlls/wininet/http.c:5684:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,lpszHeaders,dwHeaderLength,szHeaders,nLen); data/wine-5.0/dlls/wininet/http.c:5935:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[MAX_REPLY_LEN]; data/wine-5.0/dlls/wininet/http.c:5960:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, bufferA, buflen, buffer, MAX_REPLY_LEN ); data/wine-5.0/dlls/wininet/http.c:6023:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, bufferA, buflen, buffer, MAX_REPLY_LEN ); data/wine-5.0/dlls/wininet/http.c:6084:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTokenPair[0], buffer, (pszColon - buffer) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:6096:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pTokenPair[1], pszColon, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/http.c:6227:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lphttpHdr->lpszValue[origlen], value, valuelen*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:623:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, envproxy, -1, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:629:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, envproxy, -1, envproxyW, len ); data/wine-5.0/dlls/wininet/internet.c:683:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, envproxy, -1, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:689:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UNIXCP, 0, envproxy, -1, envproxyW, len ); data/wine-5.0/dlls/wininet/internet.c:1115:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer, lpwite->response, *lpdwBufferLength); data/wine-5.0/dlls/wininet/internet.c:1152:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszBuffer, lpwite->response, *lpdwBufferLength); data/wine-5.0/dlls/wininet/internet.c:1467:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*component, value, len*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:1898:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmppath, lpszcp, len * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:2332:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, ptr->AdapterName, -1, name, ARRAY_SIZE(name) ); data/wine-5.0/dlls/wininet/internet.c:2351:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar( CP_ACP, 0, (const char *)param.Data, param.nBytesData, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:2354:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, (const char *)param.Data, param.nBytesData, ret, len ); data/wine-5.0/dlls/wininet/internet.c:2402:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[NI_MAXHOST]; data/wine-5.0/dlls/wininet/internet.c:2444:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name, "wpad" ); data/wine-5.0/dlls/wininet/internet.c:2549:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, &info, sizeof(info)); data/wine-5.0/dlls/wininet/internet.c:3149:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). proxlen = MultiByteToWideChar( CP_ACP, 0, pi->lpszProxy, -1, NULL, 0); data/wine-5.0/dlls/wininet/internet.c:3150:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). prbylen= MultiByteToWideChar( CP_ACP, 0, pi->lpszProxyBypass, -1, NULL, 0); data/wine-5.0/dlls/wininet/internet.c:3157:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pi->lpszProxy, -1, prox, proxlen); data/wine-5.0/dlls/wininet/internet.c:3158:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, pi->lpszProxyBypass, -1, prby, prbylen); data/wine-5.0/dlls/wininet/internet.c:3168:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wlen = MultiByteToWideChar( CP_ACP, 0, lpBuffer, -1, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:3170:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpBuffer, -1, wbuffer, wlen ); data/wine-5.0/dlls/wininet/internet.c:3183:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wlen = MultiByteToWideChar( CP_ACP, 0, listA->pszConnection, -1, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:3185:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, listA->pszConnection, -1, listW->pszConnection, wlen ); data/wine-5.0/dlls/wininet/internet.c:3207:28: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). wlen = MultiByteToWideChar( CP_ACP, 0, optA->Value.pszValue, -1, NULL, 0 ); data/wine-5.0/dlls/wininet/internet.c:3209:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, optA->Value.pszValue, -1, optW->Value.pszValue, wlen ); data/wine-5.0/dlls/wininet/internet.c:4282:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPort[MAX_WORD_DIGITS+1]; data/wine-5.0/dlls/wininet/internet.c:4284:31: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. *lpdwUrlLength += sprintf(szPort, "%d", lpUrlComponents->nPort); data/wine-5.0/dlls/wininet/internet.c:4321:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszScheme, data/wine-5.0/dlls/wininet/internet.c:4329:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszHostName, data/wine-5.0/dlls/wininet/internet.c:4337:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszUserName, data/wine-5.0/dlls/wininet/internet.c:4345:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszPassword, data/wine-5.0/dlls/wininet/internet.c:4353:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszUrlPath, data/wine-5.0/dlls/wininet/internet.c:4361:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpUrlComponents->lpszExtraInfo, data/wine-5.0/dlls/wininet/internet.c:4470:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszScheme, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4485:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, scheme, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4495:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, slashSlashW, sizeof(slashSlashW)); data/wine-5.0/dlls/wininet/internet.c:4502:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszUserName, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4511:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszPassword, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4522:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszHostName, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4543:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszUrlPath, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.c:4550:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpszUrl, lpUrlComponents->lpszExtraInfo, dwLen * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/internet.h:42:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr_str[INET6_ADDRSTRLEN]; data/wine-5.0/dlls/wininet/internet.h:108:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/wininet/internet.h:123:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/wininet/internet.h:143:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, sizeof(WCHAR)*len); data/wine-5.0/dlls/wininet/internet.h:157:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, len_a, NULL, 0); data/wine-5.0/dlls/wininet/internet.h:160:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, len_a, ret, len); data/wine-5.0/dlls/wininet/internet.h:176:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/wininet/internet.h:179:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/wininet/netconnection.c:645:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bufs[1].pvBuffer, msg, size); data/wine-5.0/dlls/wininet/netconnection.c:709:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->ssl_buf, conn->extra_buf, conn->extra_len); data/wine-5.0/dlls/wininet/netconnection.c:769:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->extra_buf, conn->ssl_buf, conn->extra_len); data/wine-5.0/dlls/wininet/netconnection.c:787:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, bufs[i].pvBuffer, size); data/wine-5.0/dlls/wininet/netconnection.c:794:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->peek_msg, (char*)bufs[i].pvBuffer+size, conn->peek_len); data/wine-5.0/dlls/wininet/netconnection.c:808:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(conn->extra_buf, bufs[i].pvBuffer, conn->extra_len); data/wine-5.0/dlls/wininet/netconnection.c:840:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, connection->peek_msg, size); data/wine-5.0/dlls/wininet/tests/http.c:112:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *status_string[MAX_INTERNET_STATUS]; data/wine-5.0/dlls/wininet/tests/http.c:177:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/wininet/tests/http.c:232:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exbuf[12], bufa[10]; data/wine-5.0/dlls/wininet/tests/http.c:252:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(exbuf, "%u", excode); data/wine-5.0/dlls/wininet/tests/http.c:322:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/wininet/tests/http.c:571:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *types[2] = { "*", NULL }; data/wine-5.0/dlls/wininet/tests/http.c:669:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(post_data, test->post_data, post_len); data/wine-5.0/dlls/wininet/tests/http.c:911:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *types[2] = { "*", NULL }; data/wine-5.0/dlls/wininet/tests/http.c:1033:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *types[2] = { "*", NULL }; data/wine-5.0/dlls/wininet/tests/http.c:1263:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x400]; data/wine-5.0/dlls/wininet/tests/http.c:1426:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_path[MAX_PATH]; data/wine-5.0/dlls/wininet/tests/http.c:1523:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH], url[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/wininet/tests/http.c:1659:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/wininet/tests/http.c:1740:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1749:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1757:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1763:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1856:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1862:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1868:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1876:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1882:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1888:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1896:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1902:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1908:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1916:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1922:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1927:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1934:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1939:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1944:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1951:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1956:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1961:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1968:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1973:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1978:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"Warning"); data/wine-5.0/dlls/wininet/tests/http.c:1986:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"BlankTest"); data/wine-5.0/dlls/wininet/tests/http.c:1997:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"MalformedTest"); data/wine-5.0/dlls/wininet/tests/http.c:2003:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"MalformedTestTwo"); data/wine-5.0/dlls/wininet/tests/http.c:2009:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer,"MalformedTestThree"); data/wine-5.0/dlls/wininet/tests/http.c:2139:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host_header[22]; data/wine-5.0/dlls/wininet/tests/http.c:2140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host_header_override[30]; data/wine-5.0/dlls/wininet/tests/http.c:2165:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(host_header, "Host: localhost:%d", si->port); data/wine-5.0/dlls/wininet/tests/http.c:2166:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(host_header_override, "Host: test.local:%d\r\n", si->port); data/wine-5.0/dlls/wininet/tests/http.c:2489:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[sizeof(largemsg) + 16]; data/wine-5.0/dlls/wininet/tests/http.c:2508:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/wininet/tests/http.c:2535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x40]; data/wine-5.0/dlls/wininet/tests/http.c:2583:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x40], *url; data/wine-5.0/dlls/wininet/tests/http.c:2601:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "localhost:%d\n", port); data/wine-5.0/dlls/wininet/tests/http.c:2926:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "localhost:%d\n", port); data/wine-5.0/dlls/wininet/tests/http.c:2951:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *types[2] = { "*", NULL }; data/wine-5.0/dlls/wininet/tests/http.c:2952:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[32]; data/wine-5.0/dlls/wininet/tests/http.c:3094:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128], host_header_override[30], full_url[128]; data/wine-5.0/dlls/wininet/tests/http.c:3099:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(host_header_override, "Host: test.local:%d\r\n", port); data/wine-5.0/dlls/wininet/tests/http.c:3100:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(full_url, "http://localhost:%d/test_host_override", port); data/wine-5.0/dlls/wininet/tests/http.c:3550:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cache_url[256], buf[256]; data/wine-5.0/dlls/wininet/tests/http.c:3620:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cache_url[256], buf[256]; data/wine-5.0/dlls/wininet/tests/http.c:3834:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/wininet/tests/http.c:3927:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/dlls/wininet/tests/http.c:3957:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/wininet/tests/http.c:4033:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/wininet/tests/http.c:4109:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Server"); data/wine-5.0/dlls/wininet/tests/http.c:4309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1000]; data/wine-5.0/dlls/wininet/tests/http.c:4406:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1000]; data/wine-5.0/dlls/wininet/tests/http.c:4450:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x40]; data/wine-5.0/dlls/wininet/tests/http.c:4532:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x40]; data/wine-5.0/dlls/wininet/tests/http.c:4618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x40]; data/wine-5.0/dlls/wininet/tests/http.c:4854:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x100]; data/wine-5.0/dlls/wininet/tests/http.c:5053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4000], *p; data/wine-5.0/dlls/wininet/tests/http.c:5388:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[24000]; data/wine-5.0/dlls/wininet/tests/http.c:5606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[24000]; data/wine-5.0/dlls/wininet/tests/http.c:5635:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char long_path[INTERNET_MAX_PATH_LENGTH*2] = "/echo_request?"; data/wine-5.0/dlls/wininet/tests/http.c:5636:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(long_path)*2], url[sizeof(buf)]; data/wine-5.0/dlls/wininet/tests/http.c:5671:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[24000]; data/wine-5.0/dlls/wininet/tests/http.c:5781:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4000], expect_url[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/wininet/tests/http.c:5814:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect_url, "http://localhost:%u/test_redirection", port); data/wine-5.0/dlls/wininet/tests/http.c:5856:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect_url, "http://localhost:%u/socket", port); data/wine-5.0/dlls/wininet/tests/http.c:5881:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expect_url, "http://localhost:%u/socket", port); data/wine-5.0/dlls/wininet/tests/http.c:5924:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/wininet/tests/http.c:6148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char url[INTERNET_MAX_URL_LENGTH]; data/wine-5.0/dlls/wininet/tests/http.c:6221:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wininet/tests/http.c:6727:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/dlls/wininet/tests/http.c:6783:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/wininet/tests/http.c:7155:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *accept[2] = {"*/*", NULL}; data/wine-5.0/dlls/wininet/tests/http.c:7156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/wininet/tests/http.c:7347:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/dlls/wininet/tests/http.c:7467:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/wininet/tests/internet.c:555:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/wine-5.0/dlls/wininet/tests/internet.c:610:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char long_url[5000] = "http://long.url.test.com/", *p; data/wine-5.0/dlls/wininet/tests/internet.c:612:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/dlls/wininet/tests/internet.c:790:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[INTERNET_RFC1123_BUFSIZE]; data/wine-5.0/dlls/wininet/tests/url.c:185:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/wininet/tests/url.c:187:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/wininet/tests/url.c:483:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char long_buf[6000]; data/wine-5.0/dlls/wininet/tests/url.c:484:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char long_url[sizeof(long_buf) + 1000]; data/wine-5.0/dlls/wininet/tests/url.c:498:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(long_url, "http://www.winehq.org"); data/wine-5.0/dlls/wininet/tests/url.c:502:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(long_url, "http://www.winehq.org/path/"); data/wine-5.0/dlls/wininet/tests/url.c:521:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char protocol[32], hostName[1024], userName[1024]; data/wine-5.0/dlls/wininet/tests/url.c:522:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char password[1024], extra[1024], path[1024]; data/wine-5.0/dlls/wininet/tests/url.c:1186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[64]; data/wine-5.0/dlls/wininet/tests/urlcache.c:47:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filenameA[MAX_PATH + 1]; data/wine-5.0/dlls/wininet/tests/urlcache.c:48:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filenameA1[MAX_PATH + 1]; data/wine-5.0/dlls/wininet/tests/urlcache.c:370:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char long_url[300] = "http://www.winehq.org/"; data/wine-5.0/dlls/wininet/tests/urlcache.c:848:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char encoded_url[128]; data/wine-5.0/dlls/wininet/tests/urlcache.c:963:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, entry_infoA->lpszLocalFileName, -1, bufW, MAX_PATH); data/wine-5.0/dlls/wininet/tests/urlcache.c:981:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, entry_infoA->lpszFileExtension, -1, bufW, MAX_PATH); data/wine-5.0/dlls/wininet/tests/urlcache.c:1015:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], *p; data/wine-5.0/dlls/wininet/tests/urlcache.c:1033:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "\\non\\existing\\path"); data/wine-5.0/dlls/wininet/tests/urlcache.c:1052:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[10000]; data/wine-5.0/dlls/wininet/tests/urlcache.c:1064:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/dlls/wininet/tests/urlcache.c:1089:41: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void get_cache_path(DWORD flags, char path[MAX_PATH], char path_win8[MAX_PATH]) data/wine-5.0/dlls/wininet/tests/urlcache.c:1089:62: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void get_cache_path(DWORD flags, char path[MAX_PATH], char path_win8[MAX_PATH]) data/wine-5.0/dlls/wininet/tests/urlcache.c:1174:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH], path_win8[MAX_PATH]; data/wine-5.0/dlls/wininet/urlcache.c:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[28]; data/wine-5.0/dlls/wininet/urlcache.c:172:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[DIR_LENGTH]; data/wine-5.0/dlls/wininet/urlcache.c:467:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(header->signature, urlcache_ver_prefix, sizeof(urlcache_ver_prefix)-1); data/wine-5.0/dlls/wininet/urlcache.c:468:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(header->signature+sizeof(urlcache_ver_prefix)-1, urlcache_ver, sizeof(urlcache_ver)-1); data/wine-5.0/dlls/wininet/urlcache.c:722:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pContainer->cache_prefix, cache_prefix, cache_prefix_len+1); data/wine-5.0/dlls/wininet/urlcache.c:798:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszCachePath + path_len + 1, DefaultContainerData[i].shpath_suffix, (suffix_len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/urlcache.c:814:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszCachePath, tmp, (path_len+1)*sizeof(WCHAR)); data/wine-5.0/dlls/wininet/urlcache.c:988:25: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int file_name_len = MultiByteToWideChar(CP_ACP, 0, szLocalFileName, -1, NULL, 0); data/wine-5.0/dlls/wininet/urlcache.c:1004:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszPath, pContainer->path, path_len * sizeof(WCHAR)); data/wine-5.0/dlls/wininet/urlcache.c:1007:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dir_len = MultiByteToWideChar(CP_ACP, 0, pHeader->directory_data[Directory].name, DIR_LENGTH, wszPath + path_len, DIR_LENGTH); data/wine-5.0/dlls/wininet/urlcache.c:1015:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, szLocalFileName, -1, wszPath + dir_len + path_len, data/wine-5.0/dlls/wininet/urlcache.c:1066:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szPath+path_len, pHeader->directory_data[Directory].name, dir_len-1); data/wine-5.0/dlls/wininet/urlcache.c:1069:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(szPath + path_len + dir_len, szLocalFileName, file_name_len); data/wine-5.0/dlls/wininet/urlcache.c:1229:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar(CP_UTF8, 0, url, -1, decoded_url, decoded_len); data/wine-5.0/dlls/wininet/urlcache.c:1234:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, url, uc.lpszHostName-url, decoded_url, decoded_len); data/wine-5.0/dlls/wininet/urlcache.c:1243:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if(!MultiByteToWideChar(CP_UTF8, 0, uc.lpszHostName, uc.dwHostNameLength, data/wine-5.0/dlls/wininet/urlcache.c:1259:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). part_len = MultiByteToWideChar(CP_UTF8, 0, data/wine-5.0/dlls/wininet/urlcache.c:1317:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry_info->lpszSourceUrlName, (LPCSTR)url_entry+url_entry->url_off, url_size); data/wine-5.0/dlls/wininet/urlcache.c:1346:26: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). header_len = MultiByteToWideChar(CP_UTF8, 0, (const char*)url_entry+url_entry->header_info_off, data/wine-5.0/dlls/wininet/urlcache.c:1356:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, (const char*)url_entry+url_entry->header_info_off, data/wine-5.0/dlls/wininet/urlcache.c:1359:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry_info->lpHeaderInfo, (LPCSTR)url_entry+url_entry->header_info_off, header_len); data/wine-5.0/dlls/wininet/urlcache.c:1370:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ext_len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)url_entry+url_entry->file_extension_off, -1, NULL, 0); data/wine-5.0/dlls/wininet/urlcache.c:1379:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)url_entry+url_entry->file_extension_off, -1, (LPWSTR)entry_info->lpszFileExtension, ext_len); data/wine-5.0/dlls/wininet/urlcache.c:1381:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry_info->lpszFileExtension, (LPCSTR)url_entry+url_entry->file_extension_off, ext_len*sizeof(CHAR)); data/wine-5.0/dlls/wininet/urlcache.c:1444:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char lookupTable[256] = data/wine-5.0/dlls/wininet/urlcache.c:2621:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/dlls/wininet/urlcache.c:2657:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(file_name, p, e-p); data/wine-5.0/dlls/wininet/urlcache.c:2710:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ext_len = MultiByteToWideChar(CP_ACP, 0, ext, -1, extW+1, MAX_PATH-1); data/wine-5.0/dlls/wininet/urlcache.c:2844:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name_no_container[MAX_PATH]; data/wine-5.0/dlls/wininet/urlcache.c:3012:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((LPBYTE)url_entry + header_info_off, header_info, header_size); data/wine-5.0/dlls/wininet/utility.c:161:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( psa, res->ai_addr, res->ai_addrlen ); data/wine-5.0/dlls/wininet/utility.c:253:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_info, info, info_len); data/wine-5.0/dlls/winmm/driver.c:356:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpDriverName, -1, NULL, 0 ); data/wine-5.0/dlls/winmm/driver.c:359:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpDriverName, -1, dn, len ); data/wine-5.0/dlls/winmm/driver.c:364:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpSectionName, -1, NULL, 0 ); data/wine-5.0/dlls/winmm/driver.c:367:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpSectionName, -1, sn, len ); data/wine-5.0/dlls/winmm/mci.c:84:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, str, len ); data/wine-5.0/dlls/winmm/mci.c:211:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/winmm/mci.c:213:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ret) MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/winmm/mci.c:289:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mci_openW->dwStyle, &mci_openA->dwStyle, sizeof(MCI_ANIM_OPEN_PARMSW) - sizeof(MCI_OPEN_PARMSW)); data/wine-5.0/dlls/winmm/mci.c:1332:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). MCI_OPEN_PARMSW open; data/wine-5.0/dlls/winmm/mci.c:1384:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data.open.lpstrElementName = &wszNull[0]; data/wine-5.0/dlls/winmm/mci.c:1390:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data.open.lpstrDeviceType = devType; data/wine-5.0/dlls/winmm/mci.c:1393:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data.open.lpstrElementName = dev; data/wine-5.0/dlls/winmm/mci.c:1398:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data.open.lpstrDeviceType = dev; data/wine-5.0/dlls/winmm/mci.c:1417:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data.open.lpstrElementName = dev; data/wine-5.0/dlls/winmm/mci.c:1577:41: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((dwRet = MCI_FinishOpen(wmd, &data.open, dwFlags))) data/wine-5.0/dlls/winmm/mci.c:1617:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, lpstrCommand, -1, NULL, 0 ); data/wine-5.0/dlls/winmm/mci.c:1619:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, lpstrCommand, -1, lpwstrCommand, len ); data/wine-5.0/dlls/winmm/mci.c:1642:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strRet[256]; data/wine-5.0/dlls/winmm/mci.c:1650:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(strRet, "Unknown MCI error (%d)", ret); data/wine-5.0/dlls/winmm/mci.c:1680:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/dlls/winmm/mci.c:1683:2: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(strcpy(buf, resname), ".mci"); data/wine-5.0/dlls/winmm/mmio.c:600:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/dlls/winmm/mmio.c:772:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pch, wm->info.pchNext, count); data/wine-5.0/dlls/winmm/mmio.c:788:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pch, wm->info.pchBuffer, size); data/wine-5.0/dlls/winmm/mmio.c:822:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wm->info.pchNext, pch, count); data/wine-5.0/dlls/winmm/mmio.c:1076:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szA[4]; data/wine-5.0/dlls/winmm/tests/capture.c:42:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[1024]; data/wine-5.0/dlls/winmm/tests/capture.c:43:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char long_msg[1100]; data/wine-5.0/dlls/winmm/tests/capture.c:48:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(long_msg, "waveInGetErrorTextA(%x) failed with error %x", error, rc); data/wine-5.0/dlls/winmm/tests/capture.c:389:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(nameA, "not supported"); data/wine-5.0/dlls/winmm/tests/joystick.c:67:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(JOYINFOEX) * 2]; data/wine-5.0/dlls/winmm/tests/mci.c:36:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). MCI_WAVE_OPEN_PARMSA open; data/wine-5.0/dlls/winmm/tests/mci.c:125:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[20]; /* Not to be called twice in a parameter list! */ data/wine-5.0/dlls/winmm/tests/mci.c:126:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "MMSYSERR %u", err); data/wine-5.0/dlls/winmm/tests/mci.c:178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:183:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrDeviceType = "waveaudio"; data/wine-5.0/dlls/winmm/tests/mci.c:184:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrElementName = ""; /* "new" at the command level */ data/wine-5.0/dlls/winmm/tests/mci.c:185:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrAlias = "x"; /* to enable mciSendStringA */ data/wine-5.0/dlls/winmm/tests/mci.c:186:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.dwCallback = (DWORD_PTR)hwnd; data/wine-5.0/dlls/winmm/tests/mci.c:190:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). wDeviceID = parm.open.wDeviceID; data/wine-5.0/dlls/winmm/tests/mci.c:191:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ok(!strcmp(parm.open.lpstrDeviceType,"waveaudio"), "open modified device type\n"); data/wine-5.0/dlls/winmm/tests/mci.c:389:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:405:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(!err) ok(atoi(buf)==intbuf[1],"sysinfo all quantity string and command differ\n"); data/wine-5.0/dlls/winmm/tests/mci.c:589:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrDeviceType = (LPSTR)MCI_DEVTYPE_WAVEFORM_AUDIO; data/wine-5.0/dlls/winmm/tests/mci.c:594:38: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). MCIDEVICEID wDeviceID = parm.open.wDeviceID; data/wine-5.0/dlls/winmm/tests/mci.c:632:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:636:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrDeviceType = "waveaudio"; data/wine-5.0/dlls/winmm/tests/mci.c:637:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrElementName = ""; /* "new" at the command level */ data/wine-5.0/dlls/winmm/tests/mci.c:638:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrAlias = "x"; /* to enable mciSendStringA */ data/wine-5.0/dlls/winmm/tests/mci.c:639:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.dwCallback = (DWORD_PTR)hwnd; data/wine-5.0/dlls/winmm/tests/mci.c:643:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). wDeviceID = parm.open.wDeviceID; data/wine-5.0/dlls/winmm/tests/mci.c:799:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:937:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:947:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). wDeviceID = atoi(buf); data/wine-5.0/dlls/winmm/tests/mci.c:983:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). p2 = atoi(buf); data/wine-5.0/dlls/winmm/tests/mci.c:1009:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). p1 = atoi(buf); data/wine-5.0/dlls/winmm/tests/mci.c:1031:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). p2 = atoi(buf); data/wine-5.0/dlls/winmm/tests/mci.c:1134:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], path[300], command[330]; data/wine-5.0/dlls/winmm/tests/mci.c:1189:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(!err) ok(atoi(buf)==intbuf[1],"sysinfo waveaudio quantity open string and command differ\n"); data/wine-5.0/dlls/winmm/tests/mci.c:1203:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if(err) strcpy(path,"tempfile.wav"); data/wine-5.0/dlls/winmm/tests/mci.c:1282:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(!err) ok(atoi(buf)==ndevs,"Expected %d audio outputs, got %s\n", ndevs, buf); data/wine-5.0/dlls/winmm/tests/mci.c:1302:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:1352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mci.c:1362:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). wDeviceID = atoi(buf); data/wine-5.0/dlls/winmm/tests/mci.c:1438:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char curdir[MAX_PATH], tmpdir[MAX_PATH]; data/wine-5.0/dlls/winmm/tests/mcicda.c:29:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). MCI_OPEN_PARMSA open; data/wine-5.0/dlls/winmm/tests/mcicda.c:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/mcicda.c:114:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). wDeviceID = atoi(buf); data/wine-5.0/dlls/winmm/tests/mcicda.c:295:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(buf); data/wine-5.0/dlls/winmm/tests/mcicda.c:309:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(buf); data/wine-5.0/dlls/winmm/tests/mcicda.c:542:40: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(!err) todo_wine ok(numtracks == atoi(buf), "status current track gave %s, expected %u\n", buf, numtracks); data/wine-5.0/dlls/winmm/tests/mcicda.c:565:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrAlias = "x"; /* with alias, OPEN "c" behaves normally */ data/wine-5.0/dlls/winmm/tests/mcicda.c:566:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrDeviceType = (LPCSTR)MCI_DEVTYPE_CD_AUDIO; data/wine-5.0/dlls/winmm/tests/mcicda.c:567:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrElementName = drive; data/wine-5.0/dlls/winmm/tests/mcicda.c:575:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). wDeviceID = parm.open.wDeviceID; data/wine-5.0/dlls/winmm/tests/mcicda.c:585:35: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!err) mciSendCommandA(parm.open.wDeviceID, MCI_CLOSE, 0, 0); data/wine-5.0/dlls/winmm/tests/mcicda.c:588:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). parm.open.lpstrElementName = (LPCSTR)0xDEADBEEF; data/wine-5.0/dlls/winmm/tests/mcicda.c:592:39: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!err) mciSendCommandA(parm.open.wDeviceID, MCI_CLOSE, 0, 0); data/wine-5.0/dlls/winmm/tests/midi.c:247:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winmm/tests/midi.c:1009:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&e->dwParms[0], SysEx_reset, sizeof(SysEx_reset)); data/wine-5.0/dlls/winmm/tests/midi.c:1015:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&e->dwParms[0], SysEx_volume_off, sizeof(SysEx_volume_off)); data/wine-5.0/dlls/winmm/tests/midi.c:1029:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&e->dwParms[0], SysEx_volume_full, sizeof(SysEx_volume_full)); data/wine-5.0/dlls/winmm/tests/midi.c:1053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/winmm/tests/mixer.c:41:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char flags[100]; data/wine-5.0/dlls/winmm/tests/mixer.c:45:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERLINE_LINEF_ACTIVE"); data/wine-5.0/dlls/winmm/tests/mixer.c:52:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERLINE_LINEF_DISCONNECTED"); data/wine-5.0/dlls/winmm/tests/mixer.c:60:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERLINE_LINEF_SOURCE"); data/wine-5.0/dlls/winmm/tests/mixer.c:152:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char flags[100]; data/wine-5.0/dlls/winmm/tests/mixer.c:156:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERCONTROL_CONTROLF_UNIFORM"); data/wine-5.0/dlls/winmm/tests/mixer.c:163:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERCONTROL_CONTROLF_MULTIPLE"); data/wine-5.0/dlls/winmm/tests/mixer.c:171:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(flags,"MIXERCONTROL_CONTROLF_DISABLED"); data/wine-5.0/dlls/winmm/tests/mixer.c:746:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szShortName[MIXER_SHORT_NAME_CHARS]; data/wine-5.0/dlls/winmm/tests/mixer.c:747:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[MIXER_LONG_NAME_CHARS]; data/wine-5.0/dlls/winmm/tests/mixer.c:748:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPname[MAXPNAMELEN]; data/wine-5.0/dlls/winmm/tests/mmio.c:231:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MMIO_DEFAULTBUFFER]; data/wine-5.0/dlls/winmm/tests/mmio.c:476:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/winmm/tests/mmio.c:674:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_path[MAX_PATH]; data/wine-5.0/dlls/winmm/tests/mmio.c:706:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file[MAX_PATH]; data/wine-5.0/dlls/winmm/tests/mmio.c:822:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file[MAX_PATH], buffer[128], data[16]; data/wine-5.0/dlls/winmm/tests/mmio.c:860:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file[MAX_PATH]; data/wine-5.0/dlls/winmm/tests/mmio.c:861:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5], data[16]; data/wine-5.0/dlls/winmm/tests/mmio.c:935:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/winmm/tests/timer.c:148:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[32]; data/wine-5.0/dlls/winmm/tests/timer.c:159:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "UNKNOWN(%d)", priority); data/wine-5.0/dlls/winmm/tests/wave.c:136:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. union { float f; char c[4]; } sample; data/wine-5.0/dlls/winmm/tests/wave.c:190:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. union { float f; char c[4]; } sample; data/wine-5.0/dlls/winmm/tests/wave.c:206:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[16]; data/wine-5.0/dlls/winmm/tests/wave.c:209:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "%d", device); data/wine-5.0/dlls/winmm/tests/wave.c:216:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char unknown[32]; data/wine-5.0/dlls/winmm/tests/wave.c:258:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(unknown, "Unknown(0x%08x)", error); data/wine-5.0/dlls/winmm/tests/wave.c:265:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[1024]; data/wine-5.0/dlls/winmm/tests/wave.c:266:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char long_msg[1100]; data/wine-5.0/dlls/winmm/tests/wave.c:271:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(long_msg, "waveOutGetErrorTextA(%x) failed with error %x", error, rc); data/wine-5.0/dlls/winmm/tests/wave.c:279:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[1024]; data/wine-5.0/dlls/winmm/tests/wave.c:283:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "CALLBACK_EVENT"); data/wine-5.0/dlls/winmm/tests/wave.c:288:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "CALLBACK_FUNCTION"); data/wine-5.0/dlls/winmm/tests/wave.c:293:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "CALLBACK_NULL"); data/wine-5.0/dlls/winmm/tests/wave.c:298:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "CALLBACK_THREAD"); data/wine-5.0/dlls/winmm/tests/wave.c:303:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "CALLBACK_WINDOW"); data/wine-5.0/dlls/winmm/tests/wave.c:308:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WAVE_ALLOWSYNC"); data/wine-5.0/dlls/winmm/tests/wave.c:313:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WAVE_FORMAT_DIRECT"); data/wine-5.0/dlls/winmm/tests/wave.c:318:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WAVE_FORMAT_QUERY"); data/wine-5.0/dlls/winmm/tests/wave.c:323:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WAVE_MAPPED"); data/wine-5.0/dlls/winmm/tests/wave.c:331:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[1024]; data/wine-5.0/dlls/winmm/tests/wave.c:335:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WHDR_BEGINLOOP"); data/wine-5.0/dlls/winmm/tests/wave.c:340:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WHDR_DONE"); data/wine-5.0/dlls/winmm/tests/wave.c:345:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WHDR_ENDLOOP"); data/wine-5.0/dlls/winmm/tests/wave.c:350:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WHDR_INQUEUE"); data/wine-5.0/dlls/winmm/tests/wave.c:355:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(msg, "WHDR_PREPARED"); data/wine-5.0/dlls/winmm/tests/wave.c:359:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[32]; data/wine-5.0/dlls/winmm/tests/wave.c:360:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(temp, "UNKNOWN(0x%08x)", flags & ~WHDR_MASK); data/wine-5.0/dlls/winmm/tests/wave.c:370:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[256]; data/wine-5.0/dlls/winmm/tests/wave.c:386:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[32]; data/wine-5.0/dlls/winmm/tests/wave.c:397:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Unknown(0x%04x)", type); data/wine-5.0/dlls/winmm/tests/wave.c:403:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char msg[32]; data/wine-5.0/dlls/winmm/tests/wave.c:450:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Unknown(0x%04x)", format); data/wine-5.0/dlls/winmm/tests/wave.c:971:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(nameA, "not supported"); data/wine-5.0/dlls/winmm/tests/wave.c:1692:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file[MAX_PATH], temp[MAX_PATH], *exts; data/wine-5.0/dlls/winmm/tests/wave.c:1706:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_file, "mysound.wav"); data/wine-5.0/dlls/winmm/waveform.c:86:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). BOOL open; data/wine-5.0/dlls/winmm/waveform.c:303:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!device->open){ data/wine-5.0/dlls/winmm/waveform.c:326:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!device->open){ data/wine-5.0/dlls/winmm/waveform.c:707:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!device->open || device->acm_handle){ data/wine-5.0/dlls/winmm/waveform.c:1101:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->orig_fmt, info->format, sizeof(PCMWAVEFORMAT)); data/wine-5.0/dlls/winmm/waveform.c:1119:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(device->orig_fmt, info->format, data/wine-5.0/dlls/winmm/waveform.c:1715:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, queue_data + device->ofs_bytes, copy_bytes); data/wine-5.0/dlls/winmm/waveform.c:1829:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(queue->lpData + queue->dwBytesRecorded, data/wine-5.0/dlls/winmm/waveform.c:1904:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(queue->lpData + queue->dwBytesRecorded, data/wine-5.0/dlls/winmm/waveform.c:2394:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->str, pv.u.pwszVal, len_bytes); data/wine-5.0/dlls/winmm/waveform.c:2440:33: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(g_handle_devices[i]->open){ data/wine-5.0/dlls/winmm/waveform.c:2637:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &wocA, min(uSize, sizeof(wocA))); data/wine-5.0/dlls/winmm/waveform.c:2678:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, caps, min(uSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winmm/waveform.c:3227:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str, devices[device]->dev_id, id_len); data/wine-5.0/dlls/winmm/waveform.c:3345:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, caps, min(uSize, sizeof(*lpCaps))); data/wine-5.0/dlls/winmm/waveform.c:3375:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &wicA, min(uSize, sizeof(wicA))); data/wine-5.0/dlls/winmm/waveform.c:3732:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &micA, min(uSize, sizeof(micA))); data/wine-5.0/dlls/winmm/waveform.c:3780:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &caps, uSize); data/wine-5.0/dlls/winmm/waveform.c:4003:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpmlcA->pamxctrl[i].Bounds, &mlcW.pamxctrl[i].Bounds, data/wine-5.0/dlls/winmm/waveform.c:4007:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&lpmlcA->pamxctrl[i].Metrics, &mlcW.pamxctrl[i].Metrics, data/wine-5.0/dlls/winmm/waveform.c:4362:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, lpmliA->Target.szPname, -1, mliW.Target.szPname, ARRAY_SIZE(mliW.Target.szPname)); data/wine-5.0/dlls/winmm/winmm.c:240:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &acA, min(uSize, sizeof(acA))); data/wine-5.0/dlls/winmm/winmm.c:337:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &mocA, min(uSize, sizeof(mocA))); data/wine-5.0/dlls/winmm/winmm.c:413:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(lpwm->mod.rgIds), lpIDs, cIDs * sizeof(MIDIOPENSTRMID)); data/wine-5.0/dlls/winmm/winmm.c:699:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpCaps, &micA, min(uSize, sizeof(micA))); data/wine-5.0/dlls/winmm/winmm.c:1686:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mms, pmt, sizeof(struct mm_starter)); data/wine-5.0/dlls/winsock.dll16/socket.c:137:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ref + offset, l_src[i], count ); data/wine-5.0/dlls/winsock.dll16/socket.c:777:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( aq->host_addr, addr, len ); data/wine-5.0/dlls/winsock.dll16/winsock16.h:70:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[WSADESCRIPTION_LEN+1]; data/wine-5.0/dlls/winsock.dll16/winsock16.h:71:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSystemStatus[WSASYS_STATUS_LEN+1]; data/wine-5.0/dlls/winspool.drv/info.c:384:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, p, len); data/wine-5.0/dlls/winspool.drv/info.c:406:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, dm, dm->dmSize + dm->dmDriverExtra ); data/wine-5.0/dlls/winspool.drv/info.c:431:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/winspool.drv/info.c:436:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmSpecVersion, &dmW->dmSpecVersion, data/wine-5.0/dlls/winspool.drv/info.c:441:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &dmA->dmLogPixels, &dmW->dmLogPixels, dmW->dmSize - FIELD_OFFSET( DEVMODEW, dmLogPixels ) ); data/wine-5.0/dlls/winspool.drv/info.c:445:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)dmA + dmA->dmSize, (const char *)dmW + dmW->dmSize, dmW->dmDriverExtra ); data/wine-5.0/dlls/winspool.drv/info.c:561:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char qbuf[200]; data/wine-5.0/dlls/winspool.drv/info.c:671:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winspool.drv/info.c:674:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fds[0] = open( src, O_RDONLY ); data/wine-5.0/dlls/winspool.drv/info.c:675:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fds[1] = open( dst, O_CREAT | O_TRUNC | O_WRONLY, 0666 ); data/wine-5.0/dlls/winspool.drv/info.c:762:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir, tmp_path, len * sizeof(WCHAR) ); data/wine-5.0/dlls/winspool.drv/info.c:763:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dir + len, wine_ppds, sizeof(wine_ppds) ); data/wine-5.0/dlls/winspool.drv/info.c:867:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_UNIXCP, 0, value, -1, NULL, 0 ); data/wine-5.0/dlls/winspool.drv/info.c:869:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (ret) MultiByteToWideChar( CP_UNIXCP, 0, value, -1, ret, len ); data/wine-5.0/dlls/winspool.drv/info.c:933:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, dests[i].name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/winspool.drv/info.c:1016:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, dests[0].name, -1, nameW, ARRAY_SIZE(nameW)); data/wine-5.0/dlls/winspool.drv/info.c:1169:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(name, pent, name_len); data/wine-5.0/dlls/winspool.drv/info.c:1228:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, devname, -1, devnameW, ARRAY_SIZE(devnameW)); data/wine-5.0/dlls/winspool.drv/info.c:1294:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; data/wine-5.0/dlls/winspool.drv/info.c:1299:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen("/etc/printcap","r"); data/wine-5.0/dlls/winspool.drv/info.c:1708:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)dmA->dmDeviceName, -1, data/wine-5.0/dlls/winspool.drv/info.c:1711:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmW->dmSpecVersion, &dmA->dmSpecVersion, data/wine-5.0/dlls/winspool.drv/info.c:1714:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmW->dmSpecVersion, &dmA->dmSpecVersion, data/wine-5.0/dlls/winspool.drv/info.c:1716:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)dmA->dmFormName, -1, data/wine-5.0/dlls/winspool.drv/info.c:1718:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dmW->dmLogPixels, &dmA->dmLogPixels, dmA->dmSize - data/wine-5.0/dlls/winspool.drv/info.c:1722:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)dmW + dmW->dmSize, (const char *)dmA + dmA->dmSize, data/wine-5.0/dlls/winspool.drv/info.c:1745:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, pPrintersW, len); data/wine-5.0/dlls/winspool.drv/info.c:1845:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dmA, len); data/wine-5.0/dlls/winspool.drv/info.c:1971:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dmA, len); data/wine-5.0/dlls/winspool.drv/info.c:2008:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, pDriversW, len); data/wine-5.0/dlls/winspool.drv/info.c:2187:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, data, pi_sizeof[level] ); /* copy everything first */ data/wine-5.0/dlls/winspool.drv/info.c:2300:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, pOutput, ret * sizeof(POINT16)); data/wine-5.0/dlls/winspool.drv/info.c:2352:6: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pOutputA + (i * size), -1, data/wine-5.0/dlls/winspool.drv/info.c:2649:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2651:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:2656:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, mi2a->pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2658:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mi2a->pName, -1, mi2w.pName, len); data/wine-5.0/dlls/winspool.drv/info.c:2661:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, mi2a->pEnvironment, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2663:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mi2a->pEnvironment, -1, mi2w.pEnvironment, len); data/wine-5.0/dlls/winspool.drv/info.c:2666:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, mi2a->pDLLName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2668:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, mi2a->pDLLName, -1, mi2w.pDLLName, len); data/wine-5.0/dlls/winspool.drv/info.c:2757:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2759:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:2763:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pEnvironment, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2765:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pEnvironment, -1, EnvironmentW, len); data/wine-5.0/dlls/winspool.drv/info.c:2768:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2770:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, MonitorNameW, len); data/wine-5.0/dlls/winspool.drv/info.c:2828:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2830:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:2835:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pPortName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:2837:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPortName, -1, portW, len); data/wine-5.0/dlls/winspool.drv/info.c:2995:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path + len, spool_path, sizeof(spool_path)); data/wine-5.0/dlls/winspool.drv/info.c:3000:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(job->filename, filename, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/winspool.drv/info.c:3012:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addjob->Path, filename, (len + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/winspool.drv/info.c:3045:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, server, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:3047:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, server, -1, serverW, len); data/wine-5.0/dlls/winspool.drv/info.c:3051:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, env, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:3053:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, env, -1, envW, len); data/wine-5.0/dlls/winspool.drv/info.c:3630:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(JobW, pJob, sizeof(JOB_INFO_3)); data/wine-5.0/dlls/winspool.drv/info.c:4116:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, dmW, sz); data/wine-5.0/dlls/winspool.drv/info.c:5744:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:5746:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:6070:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, pszPrinter, namelen * sizeof(WCHAR)); data/wine-5.0/dlls/winspool.drv/info.c:6119:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT len = MultiByteToWideChar(CP_ACP, 0, pszPrinter, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6121:22: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (bufferW) MultiByteToWideChar(CP_ACP, 0, pszPrinter, -1, bufferW, len); data/wine-5.0/dlls/winspool.drv/info.c:6507:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (pEnumValues, lpValueName, cbValueNameLen); data/wine-5.0/dlls/winspool.drv/info.c:6516:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (pEnumValues, lpValue, cbValueLen); data/wine-5.0/dlls/winspool.drv/info.c:6581:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar (CP_ACP, 0, pKeyName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6604:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar (CP_ACP, 0, pKeyName, -1, pKeyNameW, len) == 0) data/wine-5.0/dlls/winspool.drv/info.c:6673:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ppev->pValueName, pBuffer, len); data/wine-5.0/dlls/winspool.drv/info.c:6692:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ppev->pData, pBuffer, len); data/wine-5.0/dlls/winspool.drv/info.c:6733:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6735:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:6739:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6741:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, monitorW, len); data/wine-5.0/dlls/winspool.drv/info.c:6809:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6811:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:6815:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6817:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pMonitorName, -1, monitorW, len); data/wine-5.0/dlls/winspool.drv/info.c:6823:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pi2A->pPortName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6825:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pi2A->pPortName, -1, pi2W.pPortName, len); data/wine-5.0/dlls/winspool.drv/info.c:6830:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pi2A->pMonitorName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6832:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pi2A->pMonitorName, -1, pi2W.pMonitorName, len); data/wine-5.0/dlls/winspool.drv/info.c:6836:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pi2A->pDescription, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6838:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pi2A->pDescription, -1, pi2W.pDescription, len); data/wine-5.0/dlls/winspool.drv/info.c:6977:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6979:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:6986:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6988:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pName, -1, diW.pName, len); data/wine-5.0/dlls/winspool.drv/info.c:6992:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pEnvironment, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:6994:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pEnvironment, -1, diW.pEnvironment, len); data/wine-5.0/dlls/winspool.drv/info.c:6998:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pDriverPath, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7000:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pDriverPath, -1, diW.pDriverPath, len); data/wine-5.0/dlls/winspool.drv/info.c:7004:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pDataFile, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7006:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pDataFile, -1, diW.pDataFile, len); data/wine-5.0/dlls/winspool.drv/info.c:7010:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pConfigFile, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7012:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pConfigFile, -1, diW.pConfigFile, len); data/wine-5.0/dlls/winspool.drv/info.c:7016:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pHelpFile, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7018:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pHelpFile, -1, diW.pHelpFile, len); data/wine-5.0/dlls/winspool.drv/info.c:7023:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pDependentFiles, lenA, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7025:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pDependentFiles, lenA, diW.pDependentFiles, len); data/wine-5.0/dlls/winspool.drv/info.c:7029:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pMonitorName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7031:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pMonitorName, -1, diW.pMonitorName, len); data/wine-5.0/dlls/winspool.drv/info.c:7035:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pDefaultDataType, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7037:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pDefaultDataType, -1, diW.pDefaultDataType, len); data/wine-5.0/dlls/winspool.drv/info.c:7042:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszzPreviousNames, lenA, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7044:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszzPreviousNames, lenA, diW.pszzPreviousNames, len); data/wine-5.0/dlls/winspool.drv/info.c:7053:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszMfgName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7055:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszMfgName, -1, diW.pszMfgName, len); data/wine-5.0/dlls/winspool.drv/info.c:7059:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszOEMUrl, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7061:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszOEMUrl, -1, diW.pszOEMUrl, len); data/wine-5.0/dlls/winspool.drv/info.c:7065:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszHardwareID, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7067:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszHardwareID, -1, diW.pszHardwareID, len); data/wine-5.0/dlls/winspool.drv/info.c:7071:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszProvider, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7073:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszProvider, -1, diW.pszProvider, len); data/wine-5.0/dlls/winspool.drv/info.c:7077:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszPrintProcessor, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7079:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszPrintProcessor, -1, diW.pszPrintProcessor, len); data/wine-5.0/dlls/winspool.drv/info.c:7083:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszVendorSetup, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7085:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszVendorSetup, -1, diW.pszVendorSetup, len); data/wine-5.0/dlls/winspool.drv/info.c:7090:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszzColorProfiles, lenA, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7092:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszzColorProfiles, lenA, diW.pszzColorProfiles, len); data/wine-5.0/dlls/winspool.drv/info.c:7096:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszInfPath, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7098:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszInfPath, -1, diW.pszInfPath, len); data/wine-5.0/dlls/winspool.drv/info.c:7103:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, diA->pszzCoreDriverDependencies, lenA, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7105:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, diA->pszzCoreDriverDependencies, lenA, diW.pszzCoreDriverDependencies, len); data/wine-5.0/dlls/winspool.drv/info.c:7158:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7160:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:7165:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pPortName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7167:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pPortName, -1, portW, len); data/wine-5.0/dlls/winspool.drv/info.c:7402:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7404:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:7732:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pName, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7734:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pName, -1, nameW, len); data/wine-5.0/dlls/winspool.drv/info.c:7737:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, pEnvironment, -1, NULL, 0); data/wine-5.0/dlls/winspool.drv/info.c:7739:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pEnvironment, -1, envW, len); data/wine-5.0/dlls/winspool.drv/info.c:7943:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, str, *size); data/wine-5.0/dlls/winspool.drv/info.c:8075:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, devmode, size-shift); data/wine-5.0/dlls/winspool.drv/info.c:8192:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winspool.drv/info.c:8205:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if((file_fd = open(unixname, O_RDONLY)) == -1) data/wine-5.0/dlls/winspool.drv/info.c:8299:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen( file, "r" ); data/wine-5.0/dlls/winspool.drv/info.c:8300:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[257]; /* DSC max of 256 + '\0' */ data/wine-5.0/dlls/winspool.drv/info.c:8488:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/winspool.drv/info.c:8500:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). out_fd = open(outputA, O_CREAT | O_TRUNC | O_WRONLY, 0666); data/wine-5.0/dlls/winspool.drv/info.c:8501:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). in_fd = open(unixname, O_RDONLY); data/wine-5.0/dlls/winspool.drv/tests/info.c:141:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[DEFAULT_PRINTER_SIZE]; data/wine-5.0/dlls/winspool.drv/tests/info.c:253:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_PATH]; data/wine-5.0/dlls/winspool.drv/tests/info.c:298:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). resint = MultiByteToWideChar(CP_ACP, 0, buffer_dirA, -1, buffer_dirW, MAX_PATH); data/wine-5.0/dlls/winspool.drv/tests/info.c:303:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). resint = MultiByteToWideChar(CP_ACP, 0, buffer_fileA, -1, buffer_fileW, MAX_PATH); data/wine-5.0/dlls/winspool.drv/tests/info.c:1450:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[DEFAULT_PRINTER_SIZE]; data/wine-5.0/dlls/winspool.drv/tests/info.c:2800:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/dlls/wintab.dll16/wintab.c:48:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lcName[LCNAMELEN]; data/wine-5.0/dlls/wintab32/context.c:49:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, in->lcName, -1, out->lcName, LCNAMELEN); data/wine-5.0/dlls/wintab32/context.c:52:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out->lcOptions, &in->lcOptions, sizeof(LOGCONTEXTA) - FIELD_OFFSET(LOGCONTEXTA, lcOptions)); data/wine-5.0/dlls/wintab32/context.c:60:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&out->lcOptions, &in->lcOptions, sizeof(LOGCONTEXTW) - FIELD_OFFSET(LOGCONTEXTW, lcOptions)); data/wine-5.0/dlls/wintab32/context.c:84:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; data/wine-5.0/dlls/wintab32/context.c:86:23: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_CONTEXT) strcat(buf,"PK_CONTEXT "); data/wine-5.0/dlls/wintab32/context.c:87:22: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_STATUS) strcat(buf, "PK_STATUS "); data/wine-5.0/dlls/wintab32/context.c:88:20: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_TIME) strcat(buf, "PK_TIME "); data/wine-5.0/dlls/wintab32/context.c:89:23: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_CHANGED) strcat(buf, "PK_CHANGED "); data/wine-5.0/dlls/wintab32/context.c:90:29: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_SERIAL_NUMBER) strcat(buf, "PK_SERIAL_NUMBER "); data/wine-5.0/dlls/wintab32/context.c:91:22: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_CURSOR) strcat(buf, "PK_CURSOR "); data/wine-5.0/dlls/wintab32/context.c:92:23: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_BUTTONS) strcat(buf, "PK_BUTTONS "); data/wine-5.0/dlls/wintab32/context.c:93:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_X) strcat(buf, "PK_X "); data/wine-5.0/dlls/wintab32/context.c:94:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_Y) strcat(buf, "PK_Y "); data/wine-5.0/dlls/wintab32/context.c:95:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_Z) strcat(buf, "PK_Z "); data/wine-5.0/dlls/wintab32/context.c:96:31: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_NORMAL_PRESSURE) strcat(buf, "PK_NORMAL_PRESSURE "); data/wine-5.0/dlls/wintab32/context.c:97:32: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_TANGENT_PRESSURE) strcat(buf, "PK_TANGENT_PRESSURE "); data/wine-5.0/dlls/wintab32/context.c:98:27: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_ORIENTATION) strcat(buf, "PK_ORIENTATION "); data/wine-5.0/dlls/wintab32/context.c:99:24: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (x&PK_ROTATION) strcat(buf, "PK_ROTATION "); data/wine-5.0/dlls/wintab32/context.c:269:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target,src,size); data/wine-5.0/dlls/wintab32/context.c:413:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpOutput, &buf, sizeof(buf)); data/wine-5.0/dlls/wintab32/tests/context.c:144:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[LCNAMELEN]; data/wine-5.0/dlls/wintab32/wintab32.c:95:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key, key_pathW, sizeof(key_pathW) ); data/wine-5.0/dlls/wintrust/asn.c:122:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, blob->cbData); data/wine-5.0/dlls/wintrust/asn.c:399:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, dataBytes - 1); data/wine-5.0/dlls/wintrust/asn.c:598:34: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char outBytes[5]; data/wine-5.0/dlls/wintrust/asn.c:649:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbEncoded, blob->pbData, blob->cbData); data/wine-5.0/dlls/wintrust/asn.c:1217:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded + 1 + lenBytes, data/wine-5.0/dlls/wintrust/asn.c:1311:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(link->u.Moniker.ClassId, classId.pbData, data/wine-5.0/dlls/wintrust/asn.c:1313:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(link->u.Moniker.SerializedData.pbData, data/wine-5.0/dlls/wintrust/asn.c:1728:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded + 2 + data/wine-5.0/dlls/wintrust/asn.c:1840:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char firstTwo[8]; data/wine-5.0/dlls/wintrust/asn.c:1843:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(firstTwo, "%d.%d", data/wine-5.0/dlls/wintrust/asn.c:1852:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[9]; data/wine-5.0/dlls/wintrust/asn.c:1893:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pszObjId += sprintf(pszObjId, "%d.%d", pbEncoded[1 + lenBytes] / 40, data/wine-5.0/dlls/wintrust/asn.c:1910:33: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pszObjId += sprintf(pszObjId, ".%d", val); data/wine-5.0/dlls/wintrust/asn.c:1971:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(blob->pbData, pbEncoded, blob->cbData); data/wine-5.0/dlls/wintrust/asn.c:2224:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pvStructInfo, &val, sizeof(int)); data/wine-5.0/dlls/wintrust/crypt.c:1094:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbSignedDataMsg, pCert->bCertificate, pCert->dwLength); data/wine-5.0/dlls/wintrust/crypt.c:1146:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cert->bCertificate, pbSignedDataMsg, cbSignedDataMsg); data/wine-5.0/dlls/wintrust/register.c:385:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). Len = MultiByteToWideChar( CP_ACP, 0, OID, -1, NULL, 0 ); data/wine-5.0/dlls/wintrust/register.c:387:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, OID, -1, OIDW, Len ); data/wine-5.0/dlls/wintrust/register.c:764:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). Len = MultiByteToWideChar( CP_ACP, 0, psDefUsage->pwszLoadCallbackDataFunctionName, -1, NULL, 0 ); data/wine-5.0/dlls/wintrust/register.c:766:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, psDefUsage->pwszLoadCallbackDataFunctionName, -1, CallbackW, Len ); data/wine-5.0/dlls/wintrust/register.c:777:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). Len = MultiByteToWideChar( CP_ACP, 0, psDefUsage->pwszFreeCallbackDataFunctionName, -1, NULL, 0 ); data/wine-5.0/dlls/wintrust/register.c:779:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, psDefUsage->pwszFreeCallbackDataFunctionName, -1, CallbackW, Len ); data/wine-5.0/dlls/wintrust/register.c:800:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FunctionName[MAX_PATH]; data/wine-5.0/dlls/wintrust/softpub.c:692:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char date[80]; data/wine-5.0/dlls/wintrust/softpub.c:693:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dateFmt[80]; /* sufficient for all versions of LOCALE_SSHORTDATE */ data/wine-5.0/dlls/wintrust/tests/crypt.c:31:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char selfname[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/crypt.c:405:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char empty[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/crypt.c:421:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, empty, -1, emptyW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpfile[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/crypt.c:499:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char tmpfile[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/crypt.c:500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char catfile[MAX_PATH], catfilepath[MAX_PATH], *p; data/wine-5.0/dlls/wintrust/tests/crypt.c:514:47: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (!GetTempFileNameA(CURR_DIR, "cat", 0, tmpfile)) return; data/wine-5.0/dlls/wintrust/tests/crypt.c:515:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/wintrust/tests/crypt.c:516:24: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). file = CreateFileA(tmpfile, GENERIC_WRITE, 0, NULL, CREATE_NEW, 0, NULL); data/wine-5.0/dlls/wintrust/tests/crypt.c:540:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tmpfile, -1, tmpfileW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:540:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). MultiByteToWideChar(CP_ACP, 0, tmpfile, -1, tmpfileW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:566:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/wintrust/tests/crypt.c:567:24: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). file = CreateFileA(tmpfile, GENERIC_WRITE, 0, NULL, CREATE_NEW, 0, NULL); data/wine-5.0/dlls/wintrust/tests/crypt.c:592:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, p, -1, catfileW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:596:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ret = SetFileAttributesA(tmpfile, attrs); data/wine-5.0/dlls/wintrust/tests/crypt.c:647:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). ret = SetFileAttributesA(tmpfile, attrs); data/wine-5.0/dlls/wintrust/tests/crypt.c:649:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). DeleteFileA(tmpfile); data/wine-5.0/dlls/wintrust/tests/crypt.c:659:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char catalog[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/crypt.c:683:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, catalog, -1, catalogW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:687:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, catfile, -1, catalogW, MAX_PATH); data/wine-5.0/dlls/wintrust/tests/crypt.c:1219:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/wintrust/tests/crypt.c:1311:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sysdir[MAX_PATH]; data/wine-5.0/dlls/wintrust/tests/softpub.c:280:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, notepadPath, -1, notepadPathW, size); data/wine-5.0/dlls/wintrust/tests/softpub.c:666:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char funcname[0x20]; data/wine-5.0/dlls/wintrust/tests/softpub.c:668:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[0x10]; data/wine-5.0/dlls/wintrust/tests/softpub.c:674:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment1[FILE_PE_START - sizeof(IMAGE_DOS_HEADER)]; data/wine-5.0/dlls/wintrust/tests/softpub.c:677:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment2[FILE_TEXT - FILE_PE_START - sizeof(IMAGE_NT_HEADERS32) - data/wine-5.0/dlls/wintrust/tests/softpub.c:679:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char text_section[FILE_IDATA-FILE_TEXT]; data/wine-5.0/dlls/wintrust/tests/softpub.c:681:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __alignment3[FILE_TOTAL-FILE_IDATA-sizeof(struct Imports)]; data/wine-5.0/dlls/wintrust/wintrust_main.c:1061:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data->pasSigners[idxSigner], sgnr, data/wine-5.0/dlls/wldap32/ber.c:330:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_fmt[2]; data/wine-5.0/dlls/wldap32/ber.c:425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_fmt[2]; data/wine-5.0/dlls/wldap32/control.c:281:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->bv_val, src->bv_val, src->bv_len ); data/wine-5.0/dlls/wldap32/error.c:73:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[256] = ""; data/wine-5.0/dlls/wldap32/init.c:133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char port[7]; data/wine-5.0/dlls/wldap32/misc.c:660:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar( CP_UTF8, 0, src, srclen, dst, dstlen ); data/wine-5.0/dlls/wldap32/page.c:105:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, berval->bv_val, len ); data/wine-5.0/dlls/wldap32/value.c:161:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( str, bv->bv_val, len ); data/wine-5.0/dlls/wldap32/wldap32.h:53:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/wldap32/wldap32.h:55:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str, -1, ret, len ); data/wine-5.0/dlls/wldap32/wldap32.h:89:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( CP_UTF8, 0, str, -1, NULL, 0 ); data/wine-5.0/dlls/wldap32/wldap32.h:91:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_UTF8, 0, str, -1, ret, len ); data/wine-5.0/dlls/wldap32/wldap32.h:255:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, bv->bv_val, bv->bv_len ); data/wine-5.0/dlls/wldap32/wldap32.h:429:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, control->ldctl_value.bv_val, len ); data/wine-5.0/dlls/wldap32/wldap32.h:455:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, control->ldctl_value.bv_val, len ); data/wine-5.0/dlls/wldap32/wldap32.h:481:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, control->ldctl_value.bv_val, len ); data/wine-5.0/dlls/wldap32/wldap32.h:507:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( val, control->ldctl_value.bv_val, len ); data/wine-5.0/dlls/wmiutils/path.c:386:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->name, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:396:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key->value, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:419:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->server, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:451:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->namespaces[i], q, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:465:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->namespaces[i], q + 1, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:478:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path->class, p, len * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:560:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, path->namespaces[i], path->len_namespaces[i] * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:604:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, path->keys[i].name, path->keys[i].len_name * sizeof(WCHAR) ); data/wine-5.0/dlls/wmiutils/path.c:607:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, path->keys[i].value, path->keys[i].len_value * sizeof(WCHAR) ); data/wine-5.0/dlls/wmp/tests/oleobj.c:632:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcPosRect, &rect, sizeof(RECT)); data/wine-5.0/dlls/wmp/tests/oleobj.c:635:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lprcClipRect, &rect, sizeof(RECT)); data/wine-5.0/dlls/wmp/tests/oleobj.c:1074:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char class_name[100]; data/wine-5.0/dlls/wmp/wmp_private.h:140:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size*sizeof(WCHAR)); data/wine-5.0/dlls/wnaspi32/aspi.c:153:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/dlls/wnaspi32/aspi.c:231:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char devstr[20]; data/wine-5.0/dlls/wnaspi32/aspi.c:242:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(devstr, O_RDWR); data/wine-5.0/dlls/wnaspi32/aspi.c:259:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char scsi_command_size[8] = data/wine-5.0/dlls/wnaspi32/winaspi32.c:369:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sg_hd + 1, &lpPRB->CDBByte[0], lpPRB->SRB_CDBLen); data/wine-5.0/dlls/wnaspi32/winaspi32.c:371:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((BYTE *) sg_hd) + SCSI_OFF + lpPRB->SRB_CDBLen, lpPRB->SRB_BufPointer, lpPRB->SRB_BufLen); data/wine-5.0/dlls/wnaspi32/winaspi32.c:379:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sg_hd + 1, &lpPRB->CDBByte[0], lpPRB->SRB_CDBLen); data/wine-5.0/dlls/wnaspi32/winaspi32.c:412:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpPRB->SRB_BufPointer, sg_reply_hdr + 1, lpPRB->SRB_BufLen); data/wine-5.0/dlls/wnaspi32/winaspi32.c:422:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpPRB->SenseArea, &sg_reply_hdr->sense_buffer[0], sense_len); data/wine-5.0/dlls/wnaspi32/winaspi32.c:519:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpSRB->inquiry.HA_ManagerId, szId, sizeof szId); /* max 15 chars, don't change */ data/wine-5.0/dlls/wnaspi32/winaspi32.c:520:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpSRB->inquiry.HA_Identifier, szWh, sizeof szWh); /* FIXME: return host adapter name */ data/wine-5.0/dlls/wnaspi32/winaspi32.c:531:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char inqbuf[200]; data/wine-5.0/dlls/wnaspi32/winescsi.h:41:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char sense_buffer[SG_MAX_SENSE]; /* [o] Output in 3 cases: data/wine-5.0/dlls/wpcap/wpcap.c:57:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/wpcap/wpcap.c:60:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/wpcap/wpcap.c:315:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(errbuf, "The name has not been specified in the source string."); data/wine-5.0/dlls/ws2_32/async.c:127:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, l_src[i], k); p += k; } data/wine-5.0/dlls/ws2_32/async.c:314:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( aq->host_addr, addr, len ); data/wine-5.0/dlls/ws2_32/socket.c:282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[128]; /* should be big enough for all families */ data/wine-5.0/dlls/ws2_32/socket.c:292:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/ws2_32/socket.c:305:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[46]; data/wine-5.0/dlls/ws2_32/socket.c:318:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char netnum[16], nodenum[16]; data/wine-5.0/dlls/ws2_32/socket.c:321:32: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. for (i = 0;i < 4; i++) sprintf(netnum + i * 2, "%02X", (unsigned char) sin->sa_netnum[i]); data/wine-5.0/dlls/ws2_32/socket.c:322:32: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. for (i = 0;i < 6; i++) sprintf(nodenum + i * 2, "%02X", (unsigned char) sin->sa_nodenum[i]); data/wine-5.0/dlls/ws2_32/socket.c:462:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&value, optval, optlenval); data/wine-5.0/dlls/ws2_32/socket.c:623:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ntoa_buffer[16]; /* 4*3 digits + 3 '.' + 1 '\0' */ data/wine-5.0/dlls/ws2_32/socket.c:842:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, data, len); data/wine-5.0/dlls/ws2_32/socket.c:871:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data_win.ipi_addr,&data_unix->ipi_addr.s_addr,4); /* 4 bytes = 32 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:883:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&data_win.ipi_addr, &addr_unix->s_addr, 4); /* 4 bytes = 32 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:1705:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lpWSAData->szDescription, "WinSock 2.0" ); data/wine-5.0/dlls/ws2_32/socket.c:1706:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(lpWSAData->szSystemStatus, "Running" ); data/wine-5.0/dlls/ws2_32/socket.c:1871:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&uin6->sin6_addr,&win6->sin6_addr,16); /* 16 bytes = 128 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:1887:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&uin->sin_addr,&win->sin_addr,4); /* 4 bytes = 32 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:1910:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( uin->sir_name, win->irdaServiceName, 25 ); data/wine-5.0/dlls/ws2_32/socket.c:2055:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( win->irdaServiceName, "LSAP-SEL%u", uin->sir_lsap_sel ); data/wine-5.0/dlls/ws2_32/socket.c:2071:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&win6old->sin6_addr,&uin6->sin6_addr,16); /* 16 bytes = 128 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:2093:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&win->sin_addr,&uin->sin_addr,4); /* 4 bytes = 32 address bits */ data/wine-5.0/dlls/ws2_32/socket.c:2138:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpProtocolInfo, &infow, size); data/wine-5.0/dlls/ws2_32/socket.c:2276:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info, &infow, FIELD_OFFSET( WSAPROTOCOL_INFOA, szProtocol ) ); data/wine-5.0/dlls/ws2_32/socket.c:2396:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pktbuf[512]; data/wine-5.0/dlls/ws2_32/socket.c:4120:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(optval, &infow, size); data/wine-5.0/dlls/ws2_32/socket.c:4246:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(struct irda_device_list) + data/wine-5.0/dlls/ws2_32/socket.c:4494:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( data->ntoa_buffer, "%u.%u.%u.%u", data/wine-5.0/dlls/ws2_32/socket.c:4573:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char args[14]; data/wine-5.0/dlls/ws2_32/socket.c:4579:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(args, "%d, %d", x, y); data/wine-5.0/dlls/ws2_32/socket.c:4583:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(args, "'%c', %d, %d", x, y, size); data/wine-5.0/dlls/ws2_32/socket.c:4587:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(args, "'%c', %d, %d", x, y, size); data/wine-5.0/dlls/ws2_32/socket.c:4591:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(args, "'%c', %d, %d", x, y, size); data/wine-5.0/dlls/ws2_32/socket.c:6370:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(route_addrs[numroutes].addr.s_addr), magic_loopback_addr, 4); data/wine-5.0/dlls/ws2_32/socket.c:6429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[100]; data/wine-5.0/dlls/ws2_32/socket.c:6476:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(retval->h_addr_list[0], magic_loopback_addr, 4); data/wine-5.0/dlls/ws2_32/socket.c:6483:39: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const struct { int prot; const char *names[3]; } protocols[] = data/wine-5.0/dlls/ws2_32/socket.c:6558:60: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. retval = WS_create_pe( protocols[i].names[0], (char **)protocols[i].names + 1, data/wine-5.0/dlls/ws2_32/socket.c:6592:60: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. retval = WS_create_pe( protocols[i].names[0], (char **)protocols[i].names + 1, data/wine-5.0/dlls/ws2_32/socket.c:6943:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, ai->ai_canonname, -1, NULL, 0); data/wine-5.0/dlls/ws2_32/socket.c:6949:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ai->ai_canonname, -1, ret->ai_canonname, len); data/wine-5.0/dlls/ws2_32/socket.c:6959:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->ai_addr, ai->ai_addr, ai->ai_addrlen); data/wine-5.0/dlls/ws2_32/socket.c:7013:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret->ai_addr, ai->ai_addr, sizeof(struct WS_sockaddr)); data/wine-5.0/dlls/ws2_32/socket.c:7305:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (host) MultiByteToWideChar(CP_ACP, 0, hostA, -1, host, hostlen); data/wine-5.0/dlls/ws2_32/socket.c:7306:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (serv) MultiByteToWideChar(CP_ACP, 0, servA, -1, serv, servlen); data/wine-5.0/dlls/ws2_32/socket.c:7346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ws2_32/socket.c:7547:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&info, lpProtocolInfo, FIELD_OFFSET(WSAPROTOCOL_INFOW, szProtocol)); data/wine-5.0/dlls/ws2_32/socket.c:7548:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, lpProtocolInfo->szProtocol, -1, data/wine-5.0/dlls/ws2_32/socket.c:7851:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, l_src[i], count); data/wine-5.0/dlls/ws2_32/socket.c:7933:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, p_he->h_addr_list[i], p_to->h_length); data/wine-5.0/dlls/ws2_32/socket.c:8461:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[WS_INET6_ADDRSTRLEN]; data/wine-5.0/dlls/ws2_32/socket.c:8468:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar(CP_ACP, 0, bufferA, -1, buffer, len)) data/wine-5.0/dlls/ws2_32/socket.c:8539:58: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ((LPSOCKADDR_IN)lpAddress)->sin_port = htons(atoi(ptrPort+1)); data/wine-5.0/dlls/ws2_32/socket.c:8585:64: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ((LPSOCKADDR_IN6)lpAddress)->sin6_port = htons(atoi(ptrPort + 2)); data/wine-5.0/dlls/ws2_32/socket.c:8593:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&((LPSOCKADDR_IN6)lpAddress)->sin6_addr, &inetaddr, data/wine-5.0/dlls/ws2_32/socket.c:8643:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( lpProtoInfoA, lpProtocolInfo, FIELD_OFFSET( WSAPROTOCOL_INFOA, szProtocol ) ); data/wine-5.0/dlls/ws2_32/socket.c:8702:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%u.%u.%u.%u:%u", data/wine-5.0/dlls/ws2_32/socket.c:8729:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer+strlen(buffer), "%%%u", sockaddr6->sin6_scope_id); data/wine-5.0/dlls/ws2_32/socket.c:8731:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer+strlen(buffer), "]:%u", ntohs(sockaddr6->sin6_port)); data/wine-5.0/dlls/ws2_32/socket.c:8790:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, bufAddr, size, buffer, ARRAY_SIZE(buffer)); data/wine-5.0/dlls/ws2_32/tests/sock.c:375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:1407:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char providername[WSAPROTOCOL_LEN + 1]; data/wine-5.0/dlls/ws2_32/tests/sock.c:1421:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char space[128]; data/wine-5.0/dlls/ws2_32/tests/sock.c:2048:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char recvbuf[10], pktbuf[512], msg[] = "HELLO"; data/wine-5.0/dlls/ws2_32/tests/sock.c:2361:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/dlls/ws2_32/tests/sock.c:2390:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, &peer[i].addr.sin_port, sizeof(peer[i].addr.sin_port) ); data/wine-5.0/dlls/ws2_32/tests/sock.c:3180:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_1, sizeof(addr6_1)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_2, sizeof(addr6_2)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3206:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3219:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3232:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3344:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_1, sizeof(addr6_1)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3357:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_2, sizeof(addr6_2)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3371:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3385:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3399:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sockaddr6.sin6_addr.s6_addr, addr6_3, sizeof(addr6_3)); data/wine-5.0/dlls/ws2_32/tests/sock.c:3834:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp_buf[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4638:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ipstr[32]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4724:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256], first_ip[16]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4812:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4869:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4885:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(name, "deadbeef"); data/wine-5.0/dlls/ws2_32/tests/sock.c:4909:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[16]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst6[64]; data/wine-5.0/dlls/ws2_32/tests/sock.c:4989:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in6.u.Byte, addr2_Num, sizeof(addr2_Num)); data/wine-5.0/dlls/ws2_32/tests/sock.c:4995:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in6.s6_addr, addr3_Num, sizeof(addr3_Num)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5001:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in6.s6_addr, addr4_Num, sizeof(addr4_Num)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5007:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(in6.u.Byte, addr2_Num, sizeof(addr2_Num)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64],str[64]; data/wine-5.0/dlls/ws2_32/tests/sock.c:5142:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (str, "deadbeef"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5154:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tests[i].printable, -1, printableW, ARRAY_SIZE(printableW)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5175:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, tests[i].collapsed, -1, collapsedW, ARRAY_SIZE(collapsedW)); data/wine-5.0/dlls/ws2_32/tests/sock.c:5363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:5551:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_ACCEPT"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5555:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_CONNECT"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5559:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_READ"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5563:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_OOB"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5567:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_WRITE"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5571:23: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (name) strcpy(name, "FD_CLOSE"); data/wine-5.0/dlls/ws2_32/tests/sock.c:5575:23: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (name) sprintf(name, "bad%x", event); data/wine-5.0/dlls/ws2_32/tests/sock.c:5581:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char message[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:5582:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[12]; data/wine-5.0/dlls/ws2_32/tests/sock.c:5600:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char message[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:5603:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[12]; data/wine-5.0/dlls/ws2_32/tests/sock.c:6516:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char teststr[12] = "hello world", buffer[32]; data/wine-5.0/dlls/ws2_32/tests/sock.c:6699:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[12] = "hello world"; data/wine-5.0/dlls/ws2_32/tests/sock.c:6737:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/dlls/ws2_32/tests/sock.c:6762:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[20]; data/wine-5.0/dlls/ws2_32/tests/sock.c:7142:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp_buf[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:7786:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ipBuffer[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8086:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8301:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], ipbuffer[32]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8924:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf1[256], buf2[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8954:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char system_ini_path[MAX_PATH]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8959:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/dlls/ws2_32/tests/sock.c:8981:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(system_ini_path, "\\system.ini"); data/wine-5.0/dlls/ws2_32/tests/sock.c:9630:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAXGETHOSTSTRUCT]; data/wine-5.0/dlls/ws2_32/tests/sock.c:9660:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAXGETHOSTSTRUCT]; data/wine-5.0/dlls/ws2_32/tests/sock.c:9745:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/wine-5.0/dlls/ws2_32/tests/sock.c:10650:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096], strbuff[128]; data/wine-5.0/dlls/ws2_32/tests/sock.c:10966:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[512]; data/wine-5.0/dlls/ws2_32/tests/sock.c:10983:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[512]; data/wine-5.0/dlls/ws2_32/tests/sock.c:11053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[512]; data/wine-5.0/dlls/ws2_32/tests/sock.c:11307:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[512]; data/wine-5.0/dlls/ws2_32/tests/sock.c:11435:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[512]; data/wine-5.0/dlls/wsdapi/address.c:167:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&storage, &impl->sockAddr, sizeof(SOCKADDR_IN6)); data/wine-5.0/dlls/wsdapi/address.c:212:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&impl->sockAddr, addrInfo->ai_addr, addrInfo->ai_addrlen); data/wine-5.0/dlls/wsdapi/address.c:232:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&impl->sockAddr, pSockAddr, sizeof(SOCKADDR_STORAGE)); data/wine-5.0/dlls/wsdapi/address.c:254:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pSockAddr, &impl->sockAddr, sizeof(SOCKADDR_STORAGE)); data/wine-5.0/dlls/wsdapi/network.c:176:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(send_params->data, data, length); data/wine-5.0/dlls/wsdapi/network.c:196:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&sockaddr6->sin6_addr, &send_address_ipv6, sizeof(send_address_ipv6)); data/wine-5.0/dlls/wsdapi/network.c:423:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&sockaddr6->sin6_addr, &send_address_ipv6, sizeof(send_address_ipv6)); data/wine-5.0/dlls/wsdapi/network.c:428:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&bind_addr, bind_address, address_length); data/wine-5.0/dlls/wsdapi/network.c:432:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&interface_addr, bind_address, address_length); data/wine-5.0/dlls/wsdapi/soap.c:134:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). chars_needed = MultiByteToWideChar(CP_UTF8, 0, utf8_str, utf8_str_len, NULL, 0); data/wine-5.0/dlls/wsdapi/soap.c:141:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, utf8_str, utf8_str_len, new_str, chars_needed); data/wine-5.0/dlls/wsdapi/soap.c:611:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cur_buf_pos, cur->Element, memory_needed); data/wine-5.0/dlls/wsdapi/soap.c:915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_xml, xml_header, xml_header_len); data/wine-5.0/dlls/wsdapi/soap.c:916:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_xml + xml_header_len, xml, xml_length); data/wine-5.0/dlls/wsdapi/soap.c:1703:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msg_id->id, id, len); data/wine-5.0/dlls/wsdapi/tests/address.c:248:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addressBuffer[MAX_PATH]; data/wine-5.0/dlls/wsdapi/tests/discovery.c:98:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). sizeNeeded = MultiByteToWideChar(CP_UTF8, 0, utf8String, utf8StringLength, NULL, 0); data/wine-5.0/dlls/wsdapi/tests/discovery.c:104:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, utf8String, utf8StringLength, newString, sizeNeeded); data/wine-5.0/dlls/wsdapi/tests/discovery.c:213:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(msgStorage->messages[msgStorage->messageCount], buffer, bytesReceived); data/wine-5.0/dlls/wsdapi/tests/discovery.c:354:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char address[64]; data/wine-5.0/dlls/wsdapi/tests/discovery.c:650:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char endpoint_reference_string[MAX_PATH], app_sequence_string[MAX_PATH]; data/wine-5.0/dlls/wsdapi/tests/discovery.c:917:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char endpointReferenceString[MAX_PATH], app_sequence_string[MAX_PATH]; data/wine-5.0/dlls/wsdapi/tests/discovery.c:1148:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char probe_message[sizeof(testProbeMessage) + 50]; data/wine-5.0/dlls/wsdapi/tests/discovery.c:1177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char endpoint_reference_string[MAX_PATH], app_sequence_string[MAX_PATH]; data/wine-5.0/dlls/wsdapi/xml.c:39:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (dup) memcpy(dup, value, valueLen * sizeof(WCHAR)); data/wine-5.0/dlls/wsdapi/xml.c:339:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(names, ns->Names, sizeof(WSDXML_NAME) * ns->NamesCount); data/wine-5.0/dlls/wshom.ocx/shell.c:1466:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, *subkey + 1, len*sizeof(WCHAR)); data/wine-5.0/dlls/wshom.ocx/tests/wshom.c:355:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_PATH]; data/wine-5.0/dlls/wsock32/protocol.c:115:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)buffer + string_offset, wsabuf[i].szProtocol, string_size); data/wine-5.0/dlls/wsock32/protocol.c:170:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)buffer + string_offset, wsabuf[i].szProtocol, string_size); data/wine-5.0/dlls/wsock32/socket.c:261:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pResponseInfo, &row.dwIndex, size); data/wine-5.0/dlls/wsock32/socket.c:514:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pResponseInfo, table->table, sizeof(MIB_IPNETROW) * data/wine-5.0/dlls/wsock32/socket.c:563:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pResponseInfo, table->table, sizeof(MIB_TCPROW) * data/wine-5.0/dlls/xinput1_3/hid.c:195:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(private->device_path, device_path, size); data/wine-5.0/dlls/xinput1_3/hid.c:452:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state, &device->state, sizeof(*state)); data/wine-5.0/dlls/xinput1_3/xinput_main.c:238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(capabilities, &controllers[index].caps, sizeof(*capabilities)); data/wine-5.0/dlls/xmllite/reader.c:358:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->str, reader_get_strptr(reader, src), dest->len*sizeof(WCHAR)); data/wine-5.0/dlls/xmllite/reader.c:391:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy(ret, str, size); data/wine-5.0/dlls/xmllite/reader.c:699:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(v->str, reader_get_strptr(reader, value), value->len*sizeof(WCHAR)); data/wine-5.0/dlls/xmllite/reader.c:1037:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->data, src->data + src->cur, len); data/wine-5.0/dlls/xmllite/reader.c:1042:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dest_len = MultiByteToWideChar(cp, 0, src->data + src->cur, len, NULL, 0); data/wine-5.0/dlls/xmllite/reader.c:1045:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, src->data + src->cur, len, ptr, dest_len); data/wine-5.0/dlls/xmllite/reader.c:1089:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest->data + dest->written, src->data + src->cur, len); data/wine-5.0/dlls/xmllite/reader.c:1094:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). dest_len = MultiByteToWideChar(cp, 0, src->data + src->cur, len, NULL, 0); data/wine-5.0/dlls/xmllite/reader.c:1097:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, src->data + src->cur, len, ptr, dest_len); data/wine-5.0/dlls/xmllite/reader.c:3377:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, reader_get_strptr(reader, val), val->len*sizeof(WCHAR)); data/wine-5.0/dlls/xmllite/reader.c:3439:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, reader_get_strptr(reader, val) + reader->chunk_read_off, len*sizeof(WCHAR)); data/wine-5.0/dlls/xmllite/tests/reader.c:39:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/xmllite/tests/reader.c:41:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/xmllite/tests/reader.c:71:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, data, size); data/wine-5.0/dlls/xmllite/tests/reader.c:474:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pv, xml, *pread); data/wine-5.0/dlls/xmllite/tests/reader.c:2029:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *uri[5]; data/wine-5.0/dlls/xmllite/tests/writer.c:102:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/dlls/xmllite/tests/writer.c:105:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/dlls/xmllite/writer.c:256:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/dlls/xmllite/writer.c:469:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, data, length); data/wine-5.0/dlls/xmllite/writer.c:580:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer->data + buffer->written, utf16bom, len); data/wine-5.0/dlls/xmllite/writer.c:1957:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(writeroutput->encoding_name, encoding_name, size); data/wine-5.0/include/af_irda.h:24:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char irdaDeviceName[22]; data/wine-5.0/include/af_irda.h:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char irdaServiceName[25]; data/wine-5.0/include/commctrl.h:4539:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szText[CBEMAXSTRLEN]; data/wine-5.0/include/commctrl.h:4566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szText[CBEMAXSTRLEN]; data/wine-5.0/include/custcntl.h:35:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szText[CCHCCTEXT]; data/wine-5.0/include/custcntl.h:81:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szClass[CCHCCCLASS]; data/wine-5.0/include/custcntl.h:83:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDesc[CCHCCDESC]; data/wine-5.0/include/custcntl.h:89:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTextDefault[CCHCCTEXT]; data/wine-5.0/include/d3d8types.h:996:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Driver[MAX_DEVICE_IDENTIFIER_STRING]; data/wine-5.0/include/d3d8types.h:997:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Description[MAX_DEVICE_IDENTIFIER_STRING]; data/wine-5.0/include/d3d9types.h:1263:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Driver[MAX_DEVICE_IDENTIFIER_STRING]; data/wine-5.0/include/d3d9types.h:1264:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Description[MAX_DEVICE_IDENTIFIER_STRING]; data/wine-5.0/include/d3d9types.h:1265:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DeviceName[32]; data/wine-5.0/include/dbt.h:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dbcp_name[1]; data/wine-5.0/include/ddraw.h:1212:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDriver[MAX_DDDEVICEID_STRING]; data/wine-5.0/include/ddraw.h:1213:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[MAX_DDDEVICEID_STRING]; data/wine-5.0/include/ddraw.h:1223:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDriver[MAX_DDDEVICEID_STRING]; /* user readable driver name */ data/wine-5.0/include/ddraw.h:1224:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[MAX_DDDEVICEID_STRING]; /* user readable description */ data/wine-5.0/include/ddrawi.h:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[260]; data/wine-5.0/include/ddrawi.h:58:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szEntryPoint[64]; data/wine-5.0/include/ddrawi.h:785:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cObsolete[12]; data/wine-5.0/include/ddrawi.h:819:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cDriverName[MAX_DRIVER_NAME]; data/wine-5.0/include/dplay.h:219:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSessionName[ DPSESSIONNAMELEN ]; data/wine-5.0/include/dplay.h:220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szUserField[ DPUSERRESERVED ]; data/wine-5.0/include/dplay.h:222:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPassword[ DPPASSWORDLEN ]; data/wine-5.0/include/fci.h:161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDisk[CB_MAX_DISK_NAME]; /* Current disk name */ data/wine-5.0/include/fci.h:162:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szCab[CB_MAX_CABINET_NAME]; /* Current cabinet name */ data/wine-5.0/include/fci.h:163:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szCabPath[CB_MAX_CAB_PATH]; /* Path for creating cabinet */ data/wine-5.0/include/fdi.h:269:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ach[2]; /* Set to { '*', '\0' } */ data/wine-5.0/include/guiddef.h:40:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Data4[ 8 ]; data/wine-5.0/include/icm.h:32:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char COLOR_NAME[32]; data/wine-5.0/include/iptypes.h:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char String[4 * 4]; data/wine-5.0/include/iptypes.h:54:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char AdapterName[MAX_ADAPTER_NAME_LENGTH + 4]; data/wine-5.0/include/iptypes.h:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Description[MAX_ADAPTER_DESCRIPTION_LENGTH + 4]; data/wine-5.0/include/iptypes.h:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char HostName[MAX_HOSTNAME_LEN + 4] ; data/wine-5.0/include/iptypes.h:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DomainName[MAX_DOMAIN_NAME_LEN + 4]; data/wine-5.0/include/iptypes.h:85:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ScopeId[MAX_SCOPE_ID_LEN + 4]; data/wine-5.0/include/msvcrt/io.h:38:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/include/msvcrt/io.h:48:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/include/msvcrt/io.h:58:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[260]; data/wine-5.0/include/msvcrt/io.h:70:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t name[260]; data/wine-5.0/include/msvcrt/io.h:79:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t name[260]; data/wine-5.0/include/msvcrt/io.h:176:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). extern int WINAPIV open(const char*,int,...) __attribute__((alias("_open"))); data/wine-5.0/include/msvcrt/io.h:179:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define open _open data/wine-5.0/include/msvcrt/math.h:201:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char __c[8]; data/wine-5.0/include/msvcrt/memory.h:22:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. void* __cdecl memcpy(void*,const void*,size_t); data/wine-5.0/include/msvcrt/stdio.h:156:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE* __cdecl fopen(const char*,const char*); data/wine-5.0/include/msvcrt/stdio.h:195:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). FILE* __cdecl tmpfile(void); data/wine-5.0/include/msvcrt/stdlib.h:35:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ld[10]; data/wine-5.0/include/msvcrt/stdlib.h:196:23: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int __cdecl atoi(const char*); data/wine-5.0/include/msvcrt/stdlib.h:198:23: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). __msvcrt_long __cdecl atol(const char*); data/wine-5.0/include/msvcrt/stdlib.h:257:23: [2] (integer) _wtoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int __cdecl _wtoi(const wchar_t*); data/wine-5.0/include/msvcrt/stdlib.h:258:23: [2] (integer) _wtoi64: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). __int64 __cdecl _wtoi64(const wchar_t*); data/wine-5.0/include/msvcrt/string.h:34:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. void* __cdecl memcpy(void*,const void*,size_t); data/wine-5.0/include/msvcrt/wchar.h:109:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t name[260]; data/wine-5.0/include/msvcrt/wchar.h:118:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t name[260]; data/wine-5.0/include/msvcrt/wchar.h:418:18: [2] (integer) _wtoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int __cdecl _wtoi(const wchar_t*); data/wine-5.0/include/msvcrt/wchar.h:419:18: [2] (integer) _wtoi64: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). __int64 __cdecl _wtoi64(const wchar_t*); data/wine-5.0/include/msvcrt/wchar.h:529:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(dst, src, n * sizeof(wchar_t)); data/wine-5.0/include/richedit.h:261:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFaceName[LF_FACESIZE]; data/wine-5.0/include/richedit.h:288:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFaceName[LF_FACESIZE]; data/wine-5.0/include/rpcdce.h:91:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char *Protseq[1]; data/wine-5.0/include/rpcndr.h:381:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Format[0]; data/wine-5.0/include/rpcndr.h:383:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char Format[1]; data/wine-5.0/include/svrapi.h:28:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shi1_netname[LM20_NNLEN+1]; data/wine-5.0/include/svrapi.h:35:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shi50_netname[LM20_NNLEN+1]; data/wine-5.0/include/svrapi.h:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shi50_rw_password[SHPWLEN+1]; data/wine-5.0/include/svrapi.h:41:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shi50_ro_password[SHPWLEN+1]; data/wine-5.0/include/tchar.h:178:42: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define _tfopen WINE_tchar_routine(fopen, fopen, _wfopen) data/wine-5.0/include/tchar.h:178:59: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define _tfopen WINE_tchar_routine(fopen, fopen, _wfopen) data/wine-5.0/include/tchar.h:190:42: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define _topen WINE_tchar_routine(open, _open, _wopen) data/wine-5.0/include/tchar.h:219:42: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). #define _ttoi WINE_tchar_routine(atoi, atoi, _wtoi) data/wine-5.0/include/tchar.h:219:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). #define _ttoi WINE_tchar_routine(atoi, atoi, _wtoi) data/wine-5.0/include/tchar.h:219:72: [2] (integer) _wtoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). #define _ttoi WINE_tchar_routine(atoi, atoi, _wtoi) data/wine-5.0/include/tchar.h:220:42: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). #define _ttol WINE_tchar_routine(atol, atol, _wtol) data/wine-5.0/include/tchar.h:220:59: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). #define _ttol WINE_tchar_routine(atol, atol, _wtol) data/wine-5.0/include/tlhelp32.h:72:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szExeFile[MAX_PATH]; data/wine-5.0/include/tlhelp32.h:118:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szModule[MAX_MODULE_NAME32 + 1]; data/wine-5.0/include/tlhelp32.h:119:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szExePath[MAX_PATH]; data/wine-5.0/include/twain.h:109:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char TW_STR32[34], FAR *pTW_STR32; data/wine-5.0/include/twain.h:110:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char TW_STR64[66], FAR *pTW_STR64; data/wine-5.0/include/twain.h:111:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char TW_STR128[130], FAR *pTW_STR128; data/wine-5.0/include/twain.h:112:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char TW_STR255[256], FAR *pTW_STR255; data/wine-5.0/include/twain.h:479:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Reserved[512]; /**/ data/wine-5.0/include/winbase.h:2895:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define CopyMemory RtlCopyMemory data/wine-5.0/include/wincrypt.h:175:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char SerialNumber[8]; data/wine-5.0/include/wincrypt.h:177:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char CertLabel[36]; data/wine-5.0/include/windns.h:646:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char MaxSa[DNS_ADDR_MAX_SOCKADDR_LENGTH]; data/wine-5.0/include/windns.h:698:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Reserved[32]; data/wine-5.0/include/windowsx.h:1400:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define _fmemcpy memcpy data/wine-5.0/include/wine/debug.h:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[15]; data/wine-5.0/include/wine/debug.h:171:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[200]; data/wine-5.0/include/wine/debug.h:183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/include/wine/debug.h:199:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/include/wine/debug.h:219:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex[16] = {'0','1','2','3','4','5','6','7','8','9','a','b','c','d','e','f'}; data/wine-5.0/include/wine/debug.h:220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[300], *dst = buffer; data/wine-5.0/include/wine/debug.h:261:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex[16] = {'0','1','2','3','4','5','6','7','8','9','a','b','c','d','e','f'}; data/wine-5.0/include/wine/debug.h:262:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[300], *dst = buffer; data/wine-5.0/include/wine/debug.h:361:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *const variant_flags[16] = data/wine-5.0/include/wine/http.h:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char url[1]; data/wine-5.0/include/wine/http.h:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1]; data/wine-5.0/include/wine/library.h:110:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char flags[8192]; /* flags (defined below) */ data/wine-5.0/include/wine/mmsystem16.h:249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szPname[MAXPNAMELEN]; /* product name (NULL terminated string) */ data/wine-5.0/include/wine/mscvpdb.h:108:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:185:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:230:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:269:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:303:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:369:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char list[1]; data/wine-5.0/include/wine/mscvpdb.h:486:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:534:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char name[1]; data/wine-5.0/include/wine/mscvpdb.h:560:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:584:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:607:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:657:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:684:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1276:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1304:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1355:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1385:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1412:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1422:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1451:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1476:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1496:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1528:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1553:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1560:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[4]; data/wine-5.0/include/wine/mscvpdb.h:1586:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1616:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[1]; data/wine-5.0/include/wine/mscvpdb.h:1905:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char signature[32]; data/wine-5.0/include/wine/mscvpdb.h:2169:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Signature[4]; data/wine-5.0/include/wine/mscvpdb.h:2175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Signature[4]; data/wine-5.0/include/wine/mscvpdb.h:2183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Signature[4]; data/wine-5.0/include/wine/mscvpdb.h:2222:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Style[2]; data/wine-5.0/include/wine/test.h:234:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char strings[2000]; /* buffer for debug strings */ data/wine-5.0/include/wine/test.h:558:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char p[128]; data/wine-5.0/include/wine/test.h:570:85: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (GetEnvironmentVariableA( "WINETEST_DEBUG", p, sizeof(p) )) winetest_debug = atoi(p); data/wine-5.0/include/wine/test.h:571:97: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (GetEnvironmentVariableA( "WINETEST_INTERACTIVE", p, sizeof(p) )) winetest_interactive = atoi(p); data/wine-5.0/include/wine/test.h:572:103: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (GetEnvironmentVariableA( "WINETEST_REPORT_SUCCESS", p, sizeof(p) )) winetest_report_success = atoi(p); data/wine-5.0/include/wine/unicode.h:72:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char lead_bytes[12]; /* lead bytes ranges */ data/wine-5.0/include/wine/vulkan.h:2822:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extensionName[VK_MAX_EXTENSION_NAME_SIZE]; data/wine-5.0/include/wine/vulkan.h:2967:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char layerName[VK_MAX_EXTENSION_NAME_SIZE]; data/wine-5.0/include/wine/vulkan.h:2970:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:3563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:3564:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:4244:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driverName[VK_MAX_DRIVER_NAME_SIZE_KHR]; data/wine-5.0/include/wine/vulkan.h:4245:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driverInfo[VK_MAX_DRIVER_INFO_SIZE_KHR]; data/wine-5.0/include/wine/vulkan.h:4472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:4473:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:4999:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:5000:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[VK_MAX_DESCRIPTION_SIZE]; data/wine-5.0/include/wine/vulkan.h:5690:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char deviceName[VK_MAX_PHYSICAL_DEVICE_NAME_SIZE]; data/wine-5.0/include/wine/wined3d.h:2634:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->content.data, ptr, data_size); data/wine-5.0/include/wingdi.h:3282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Buffer[1]; data/wine-5.0/include/winnls.h:959:31: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). WINBASEAPI INT WINAPI MultiByteToWideChar(UINT,DWORD,LPCSTR,INT,LPWSTR,INT); data/wine-5.0/include/winnt.h:392:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. # define C_ASSERT(e) typedef char __C_ASSERT__[(e)?1:-1] data/wine-5.0/include/winnt.h:4901:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char SourceName[TOKEN_SOURCE_LENGTH]; data/wine-5.0/include/winnt.h:6017:52: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define RtlCopyMemory(Destination, Source, Length) memcpy((Destination),(Source),(Length)) data/wine-5.0/include/winsock.h:407:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sa_data[14]; data/wine-5.0/include/winsock.h:607:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sin_zero[8]; data/wine-5.0/include/winsock.h:636:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[WSADESCRIPTION_LEN+1]; data/wine-5.0/include/winsock.h:637:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSystemStatus[WSASYS_STATUS_LEN+1]; data/wine-5.0/include/winsock.h:639:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szDescription[WSADESCRIPTION_LEN+1]; data/wine-5.0/include/winsock.h:640:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szSystemStatus[WSASYS_STATUS_LEN+1]; data/wine-5.0/include/wintab.h:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lcName[LCNAMELEN]; data/wine-5.0/include/winternl.h:1462:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szName[MAX_PATH + 1]; data/wine-5.0/include/winternl.h:3043:50: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define RtlStoreUlong(p,v) do { ULONG _v = (v); memcpy((p), &_v, sizeof(_v)); } while (0) data/wine-5.0/include/winternl.h:3044:57: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define RtlStoreUlonglong(p,v) do { ULONGLONG _v = (v); memcpy((p), &_v, sizeof(_v)); } while (0) data/wine-5.0/include/winternl.h:3045:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define RtlRetrieveUlong(p,s) memcpy((p), (s), sizeof(ULONG)) data/wine-5.0/include/winternl.h:3046:35: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define RtlRetrieveUlonglong(p,s) memcpy((p), (s), sizeof(ULONGLONG)) data/wine-5.0/include/ws2def.h:62:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __ss_pad1[WS(_SS_PAD1SIZE)]; data/wine-5.0/include/ws2def.h:64:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char __ss_pad2[WS(_SS_PAD2SIZE)]; data/wine-5.0/include/ws2tcpip.h:146:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[GAI_STRERROR_BUFFER_SIZE + 1]; data/wine-5.0/include/wsipx.h:31:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sa_netnum[4]; data/wine-5.0/include/wsipx.h:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sa_nodenum[6]; data/wine-5.0/include/xcmc.h:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[1]; data/wine-5.0/libs/port/c_10001.c:2023:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_10002.c:2914:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_10003.c:3013:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_10008.c:2716:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_1361.c:3772:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_20932.c:2650:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_932.c:2023:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_936.c:4201:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_949.c:4201:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/c_950.c:4201:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char cp2uni_leadbytes[256] = data/wine-5.0/libs/port/mkstemps.c:109:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open (template, O_RDWR|O_CREAT|O_EXCL, 0600); data/wine-5.0/libs/port/sortkey.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *key_ptr[4]; data/wine-5.0/libs/port/string.c:344:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, str, min( max, len - count ) * sizeof(WCHAR) ); data/wine-5.0/libs/port/string.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufa[512], fmtbufa[64], *fmta; data/wine-5.0/libs/port/string.c:396:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffiter, "%d", fieldlen); data/wine-5.0/libs/port/string.c:415:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffiter, "%d", fieldlen); data/wine-5.0/libs/port/string.c:467:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(bufaiter, "%0*lX", 2 * (int)sizeof(void*), data/wine-5.0/libs/port/stubs.c:65:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( error, msg, len ); data/wine-5.0/libs/port/utf8.c:28:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char utf8_length[128] = data/wine-5.0/libs/port/utf8.c:41:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char utf8_mask[4] = { 0x7f, 0x1f, 0x0f, 0x07 }; data/wine-5.0/libs/wine/config.c:113:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( res, str, len ); data/wine-5.0/libs/wine/config.c:138:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, dir, len ); data/wine-5.0/libs/wine/config.c:157:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( libdir, info.dli_fname, len ); data/wine-5.0/libs/wine/config.c:200:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( bindir, argv0, len ); data/wine-5.0/libs/wine/config.c:214:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( cwd, argv0, len ); data/wine-5.0/libs/wine/config.c:280:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream = fopen( wineserver_file, "r" ); data/wine-5.0/libs/wine/config.c:336:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "%lx%08lx-", (unsigned long)((unsigned long long)dev >> 32), (unsigned long)dev ); data/wine-5.0/libs/wine/config.c:338:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "%lx-", (unsigned long)dev ); data/wine-5.0/libs/wine/config.c:341:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%lx%08lx", (unsigned long)((unsigned long long)ino >> 32), (unsigned long)ino ); data/wine-5.0/libs/wine/config.c:343:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%lx", (unsigned long)ino ); data/wine-5.0/libs/wine/config.c:362:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uid_str[32]; data/wine-5.0/libs/wine/config.c:372:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( uid_str, "%lu", (unsigned long)getuid() ); data/wine-5.0/libs/wine/config.c:436:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( basedir + baselen, "/server/wineserver" ); data/wine-5.0/libs/wine/config.c:439:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( basedir + baselen, "/dlls/ntdll/ntdll.dll.so" ); data/wine-5.0/libs/wine/config.c:458:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, basedir, p - basedir ); data/wine-5.0/libs/wine/config.c:622:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( full_name, argv[0], p - argv[0] ); data/wine-5.0/libs/wine/config.c:624:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( full_name + (p - argv[0]), preloader64, sizeof(preloader64) ); data/wine-5.0/libs/wine/config.c:626:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( full_name + (p - argv[0]), preloader, sizeof(preloader) ); data/wine-5.0/libs/wine/config.c:631:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_argv + 1, argv, (last_arg - argv + 1) * sizeof(*argv) ); data/wine-5.0/libs/wine/config.c:703:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( argv[0], pos, ptr - pos ); data/wine-5.0/libs/wine/debug.c:283:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *list[32]; data/wine-5.0/libs/wine/debug.c:304:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex[16] = "0123456789abcdef"; data/wine-5.0/libs/wine/debug.c:312:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( res, "#%04x", LOWORD(str) ); data/wine-5.0/libs/wine/debug.c:365:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( res, "#%04x", LOWORD(str) ); data/wine-5.0/libs/wine/debug.c:395:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(dst,"%04x",c); data/wine-5.0/libs/wine/debug.c:450:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (old_funcs) memcpy( old_funcs, &funcs, min(sizeof(funcs),size) ); data/wine-5.0/libs/wine/loader.c:180:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char magic[4]; data/wine-5.0/libs/wine/loader.c:203:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( name, O_RDONLY ); data/wine-5.0/libs/wine/loader.c:214:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy( buffer - len, str, len ); data/wine-5.0/libs/wine/loader.c:268:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, name, namelen ); data/wine-5.0/libs/wine/loader.c:457:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sec->Name, ".text", sizeof(".text") ); data/wine-5.0/libs/wine/loader.c:467:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sec->Name, ".data", sizeof(".data") ); data/wine-5.0/libs/wine/loader.c:648:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( path, O_RDONLY ); data/wine-5.0/libs/wine/loader.c:849:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1024]; data/wine-5.0/libs/wine/loader.c:898:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( val, O_WRONLY | O_CREAT | O_APPEND, 0666 ); data/wine-5.0/libs/wine/loader.c:1019:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char magic[2]; data/wine-5.0/libs/wine/loader.c:1020:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( filename, O_RDONLY ); data/wine-5.0/libs/wine/loader.c:1029:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( error, msg, len ); data/wine-5.0/libs/wine/loader.c:1042:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[PATH_MAX]; data/wine-5.0/libs/wine/loader.c:1057:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( error, s, len ); data/wine-5.0/libs/wine/loader.c:1082:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( error, s, len ); data/wine-5.0/libs/wine/loader.c:1107:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( error, s, len ); data/wine-5.0/libs/wine/mmap.c:76:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( "/dev/zero", O_RDONLY )) == -1) data/wine-5.0/libs/wine/mmap.c:128:17: [2] (race) vfork: On some old systems, vfork() permits race conditions, and it's very difficult to use correctly (CWE-362). Use fork() instead. if ( (pid = vfork()) == -1 ) data/wine-5.0/libs/wine/port.c:62:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( functions, &pthread_functions, min( size, sizeof(pthread_functions) )); data/wine-5.0/libs/wpp/preproc.c:112:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(s, str, len); data/wine-5.0/libs/wpp/preproc.c:157:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, parent_name, p - parent_name ); data/wine-5.0/libs/wpp/preproc.c:159:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( path, O_RDONLY ); data/wine-5.0/libs/wpp/preproc.c:180:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( path, O_RDONLY ); data/wine-5.0/libs/wpp/preproc.c:501:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(path, "rt"); data/wine-5.0/libs/wpp/wpp.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/libs/wpp/wpp.c:200:33: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). else if (!(pp_status.file = fopen(input, "rt"))) data/wine-5.0/loader/main.c:204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[1024]; data/wine-5.0/loader/preloader.c:574:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex_chars[16] = "0123456789abcdef"; data/wine-5.0/loader/preloader.c:622:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/loader/preloader.c:634:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/loader/preloader.c:777:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[0x800]; data/wine-5.0/loader/preloader.c:1168:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)preload_info[i].addr > (char *)0x00110000) break; data/wine-5.0/loader/preloader.c:1169:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)end <= (char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader.c:1174:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)start < (char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader.c:1175:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. start = (char *)preload_info[i].addr + preload_info[i].size; data/wine-5.0/loader/preloader.c:1194:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((const char *)addr >= (const char *)preload_info[i].addr && data/wine-5.0/loader/preloader.c:1195:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (const char *)addr < (const char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader.c:1296:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)av >= (char *)preload_info[i].addr && data/wine-5.0/loader/preloader.c:1297:31: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)pargc <= (char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader.c:1312:52: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. preload_info[i].addr, (char *)preload_info[i].addr + preload_info[i].size ); data/wine-5.0/loader/preloader.c:1368:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/loader/preloader_mac.c:315:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char hex_chars[16] = "0123456789abcdef"; data/wine-5.0/loader/preloader_mac.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/loader/preloader_mac.c:375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/loader/preloader_mac.c:401:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char segname[sizeof(seg->segname) + 1]; data/wine-5.0/loader/preloader_mac.c:402:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(segname, seg->segname, sizeof(seg->segname)); data/wine-5.0/loader/preloader_mac.c:451:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)preload_info[i].addr > (char *)0x00110000) break; data/wine-5.0/loader/preloader_mac.c:452:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)end <= (char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader_mac.c:457:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((char *)start < (char *)preload_info[i].addr + preload_info[i].size) data/wine-5.0/loader/preloader_mac.c:458:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. start = (char *)preload_info[i].addr + preload_info[i].size; data/wine-5.0/loader/preloader_mac.c:519:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char vec[1024]; data/wine-5.0/programs/cabarc/cabarc.c:63:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD len = MultiByteToWideChar( cp, 0, str, -1, NULL, 0 ); data/wine-5.0/programs/cabarc/cabarc.c:65:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( cp, 0, str, -1, ret, len ); data/wine-5.0/programs/cabarc/cabarc.c:99:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, name, len ); data/wine-5.0/programs/cabarc/cabarc.c:100:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. len += sprintf( dest + len, "%u", id ); data/wine-5.0/programs/cabarc/cabarc.c:208:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/programs/cabarc/cabarc.c:593:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/programs/cabarc/cabarc.c:594:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/programs/chcp.com/main.c:37:24: [2] (integer) _wtoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int codepage = _wtoi(argv[1]); data/wine-5.0/programs/cmd/batch.c:201:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(param, begin, (p - begin) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/batch.c:282:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). i = MultiByteToWideChar(cp, 0, bufA, p - bufA, buf, noChars); data/wine-5.0/programs/cmd/batch.c:506:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env, begin, (end-begin) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/builtins.c:534:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAXSTRING]; data/wine-5.0/programs/cmd/builtins.c:1485:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result, start, (end - start + 2) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/builtins.c:3292:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (env_copy, env, len*sizeof (WCHAR)); data/wine-5.0/programs/cmd/builtins.c:3533:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env+1, string, 2 * sizeof(WCHAR)); data/wine-5.0/programs/cmd/builtins.c:4479:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cmdline_params, args, sizeof(WCHAR) * (argN - args)); data/wine-5.0/programs/cmd/directory.c:816:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fullname, cwd, 2 * sizeof(WCHAR)); data/wine-5.0/programs/cmd/directory.c:899:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(drive, thisEntry->dirName, 2 * sizeof(WCHAR)); data/wine-5.0/programs/cmd/tests/batch.c:25:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char workdir[MAX_PATH]; data/wine-5.0/programs/cmd/tests/batch.c:27:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char drive[2]; data/wine-5.0/programs/cmd/tests/batch.c:29:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char path[MAX_PATH]; data/wine-5.0/programs/cmd/tests/batch.c:31:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char shortpath[MAX_PATH]; data/wine-5.0/programs/cmd/tests/batch.c:377:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out_name[MAX_PATH]; data/wine-5.0/programs/cmd/tests/batch.c:425:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char res_name[100]; data/wine-5.0/programs/cmd/tests/batch.c:471:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, workdir + drive_len, (workdir_len - drive_len) * sizeof(drive[0])); data/wine-5.0/programs/cmd/wcmd.h:142:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, size); data/wine-5.0/programs/cmd/wcmdmain.c:245:18: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *charsRead = MultiByteToWideChar(GetConsoleCP(), 0, buffer, numRead, intoBuf, maxChars); data/wine-5.0/programs/cmd/wcmdmain.c:466:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(start, insert, len * sizeof(*insert)); data/wine-5.0/programs/cmd/wcmdmain.c:599:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thisVar, start, ((endOfVar - start) + 1) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:987:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, st_p.lpReserved2, st_p.cbReserved2); data/wine-5.0/programs/cmd/wcmdmain.c:1116:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thisDir, pathposn, (pos-pathposn) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1168:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, thisExt, (nextExt-thisExt) * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1498:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(parms_start, whichcmd, count * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1715:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thisEntry->command, command, *commandLen * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1720:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thisEntry->redirects, redirs, *redirLen * sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1970:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&curCopyTo[*curLen], curPos, if_condition_len*sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:1980:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&curCopyTo[*curLen], curPos, keyw_len*sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:2002:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&curCopyTo[*curLen], curPos, keyw_len*sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:2020:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&curCopyTo[*curLen], curPos, keyw_len*sizeof(WCHAR)); data/wine-5.0/programs/cmd/wcmdmain.c:2441:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char osver[50]; data/wine-5.0/programs/cmd/wcmdmain.c:2459:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(osver, "%d.%d.%d", osv.dwMajorVersion, osv.dwMinorVersion, osv.dwBuildNumber); data/wine-5.0/programs/cmd/wcmdmain.c:2615:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, thisExt, (nextExt-thisExt) * sizeof(WCHAR)); data/wine-5.0/programs/dxdiag/main.c:77:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(filename, cmdline, len * sizeof(WCHAR)); data/wine-5.0/programs/dxdiag/output.c:33:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output_buffer[1024]; data/wine-5.0/programs/dxdiag/output.c:34:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char crlf[2] = "\r\n"; data/wine-5.0/programs/dxdiag/output.c:80:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, crlf, sizeof(crlf)); data/wine-5.0/programs/dxdiag/output.c:83:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, caption, len); data/wine-5.0/programs/dxdiag/output.c:86:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, crlf, sizeof(crlf)); data/wine-5.0/programs/dxdiag/output.c:92:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, crlf, sizeof(crlf)); data/wine-5.0/programs/dxdiag/output.c:102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sprintf_fmt[1 + 10 + 3 + 1]; data/wine-5.0/programs/dxdiag/output.c:108:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sprintf_fmt, "%%%us: ", field_width); data/wine-5.0/programs/dxdiag/output.c:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, crlf, sizeof(crlf)); data/wine-5.0/programs/eject/eject.c:43:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( path, rootW, sizeof(rootW) ); data/wine-5.0/programs/eject/eject.c:62:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer, deviceW, sizeof(deviceW) ); data/wine-5.0/programs/expand/expand.c:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[8192]; data/wine-5.0/programs/expand/expand.c:47:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/programs/expand/expand.c:95:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_PATH], outfile[MAX_PATH], actual_name[MAX_PATH]; data/wine-5.0/programs/expand/expand.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfile_basename[MAX_PATH], *basename_index; data/wine-5.0/programs/explorer/appbar.c:248:13: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(&cmd, cds->lpData, cds->cbData); data/wine-5.0/programs/explorer/desktop.c:251:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, path, len_path * sizeof(WCHAR) ); data/wine-5.0/programs/explorer/desktop.c:253:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + len_path + 1, filename, len_filename * sizeof(WCHAR) ); data/wine-5.0/programs/explorer/desktop.c:320:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, filename, len * sizeof(WCHAR) ); data/wine-5.0/programs/explorer/desktop.c:771:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error[80]; data/wine-5.0/programs/explorer/desktop.c:798:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( error, "The graphics driver is missing. Check your build!" ); data/wine-5.0/programs/explorer/desktop.c:801:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( error, "Make sure that your X server is running and that $DISPLAY is set correctly." ); data/wine-5.0/programs/explorer/desktop.c:804:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( error, "Unknown error (%u).", GetLastError() ); data/wine-5.0/programs/explorer/explorer.c:241:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&main_item,&item,sizeof(item)); data/wine-5.0/programs/explorer/explorer.c:537:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP,0,edit_info_a->szText,-1, data/wine-5.0/programs/explorer/startmenu.c:70:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((char*)dest) + bytes_copied - 2, item->pidl, item_size); data/wine-5.0/programs/find/find.c:31:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[4096]; data/wine-5.0/programs/find/find.c:89:29: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). line_converted_length = MultiByteToWideChar(CP_ACP, 0, line, -1, 0, 0); data/wine-5.0/programs/find/find.c:91:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, line, -1, line_converted, line_converted_length); data/wine-5.0/programs/find/tests/find.c:27:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/wine-5.0/programs/find/tests/find.c:38:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)ret + length, buffer, bytes_read); data/wine-5.0/programs/find/tests/find.c:76:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&child_output_copy[pos], "\\x%02x", child_output[i]); data/wine-5.0/programs/find/tests/find.c:87:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&out_expected_copy[pos], "\\x%02x", out_expected[i]); data/wine-5.0/programs/find/tests/find.c:124:23: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). count_wchar = MultiByteToWideChar(GetConsoleCP(), 0, (char *)input, input_len, buffer, ARRAY_SIZE(buffer)); data/wine-5.0/programs/find/tests/find.c:192:24: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len_commandlineW = MultiByteToWideChar(CP_UTF8, 0, commandline, -1, 0, 0); data/wine-5.0/programs/find/tests/find.c:194:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, commandline, -1, commandlineW, len_commandlineW); data/wine-5.0/programs/icinfo/icinfo.c:27:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output_bufA[65536]; data/wine-5.0/programs/ipconfig/ipconfig.c:133:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(field, name_buffer, sizeof(WCHAR) * min(lstrlenW(name_buffer), ARRAY_SIZE(field) - 1)); data/wine-5.0/programs/ipconfig/ipconfig.c:300:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, info->HostName, -1, hostnameW, ARRAY_SIZE(hostnameW)); data/wine-5.0/programs/msidb/main.c:354:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/programs/msiexec/msiexec.c:160:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, list->str, len * sizeof(WCHAR)); data/wine-5.0/programs/msiexec/msiexec.c:170:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, value, len * sizeof(WCHAR)); data/wine-5.0/programs/msiexec/msiexec.c:228:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str2, -1, NULL, 0); data/wine-5.0/programs/msiexec/msiexec.c:234:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str2, -1, strW, len); data/wine-5.0/programs/msiexec/msiexec.c:256:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar( CP_ACP, 0, str2, -1, NULL, 0); data/wine-5.0/programs/msiexec/msiexec.c:262:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( CP_ACP, 0, str2, -1, strW, len); data/wine-5.0/programs/msiexec/msiexec.c:449:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thread_guid, &guid, sizeof(GUID)); data/wine-5.0/programs/msiexec/msiexec.c:592:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, *pargv[0], len * sizeof(WCHAR) ); data/wine-5.0/programs/notepad/dialog.c:441:20: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(cp, 0, pTemp, size, NULL, 0); data/wine-5.0/programs/notepad/dialog.c:449:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(cp, 0, pTemp, size, textW, lenW); data/wine-5.0/programs/notepad/dialog.c:858:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tInfo->lptr, tInfo->lptr + n, tInfo->len * sizeof(WCHAR)); data/wine-5.0/programs/oleview/details.c:159:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszData, wszCLSID, sizeof(WCHAR[6])); data/wine-5.0/programs/oleview/details.c:187:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszData, wszTypeLib, sizeof(WCHAR[8])); data/wine-5.0/programs/oleview/details.c:237:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszTree, &buffer[lastLenBuffer], data/wine-5.0/programs/oleview/tree.c:115:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, #i, -1, wszFlagName, MAX_LOAD_STRING); \ data/wine-5.0/programs/oleview/tree.c:237:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ((ITEM_INFO *)tvi.lParam)->info, bufLen * sizeof(WCHAR)); data/wine-5.0/programs/oleview/typelib.c:203:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pTLData->idl[pTLData->idlLen], wszSource, sizeof(WCHAR)*(SourceLen+1)); data/wine-5.0/programs/oleview/typelib.c:249:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&pTLData->idl[pTLData->idlLen+4], pSourceBeg, sizeof(WCHAR)*lineLen); data/wine-5.0/programs/ping/ping_main.c:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *send_data, ip[100], *hostname = NULL, rtt[16]; data/wine-5.0/programs/ping/ping_main.c:82:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi(argv[++i]); data/wine-5.0/programs/ping/ping_main.c:95:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). w = atoi(argv[++i]); data/wine-5.0/programs/ping/ping_main.c:108:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). l = atoi(argv[++i]); data/wine-5.0/programs/ping/ping_main.c:187:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(rtt, "=%d", reply->RoundTripTime); data/wine-5.0/programs/ping/ping_main.c:189:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(rtt, "<1"); data/wine-5.0/programs/progman/group.c:132:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hName), lpszName, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/group.c:133:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hGrpFile), lpszGrpFile, 1 + strlen(lpszGrpFile)); data/wine-5.0/programs/progman/main.c:129:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(key, "Group%d", num); data/wine-5.0/programs/progman/program.c:188:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hName), lpszName, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/program.c:189:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hCmdLine), lpszCmdLine, 1 + strlen(lpszCmdLine)); data/wine-5.0/programs/progman/program.c:190:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hIconFile), lpszIconFile, 1 + strlen(lpszIconFile)); data/wine-5.0/programs/progman/program.c:191:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(LocalLock(hWorkDir), lpszWorkDir, 1 + strlen(lpszWorkDir)); data/wine-5.0/programs/reg/import.c:36:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, strA, -1, NULL, 0); data/wine-5.0/programs/reg/import.c:39:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, strA, -1, strW, len); data/wine-5.0/programs/reg/import.c:50:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar(CP_ACP, 0, strA, size, NULL, 0); data/wine-5.0/programs/reg/import.c:53:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, strA, size, strW, *len); data/wine-5.0/programs/reg/tests/reg.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[256]; data/wine-5.0/programs/reg/tests/reg.c:162:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char empty[1]; data/wine-5.0/programs/reg/tests/reg.c:222:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[22]; data/wine-5.0/programs/reg/tests/reg.c:497:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, "three\0little\0strings\0", 22); data/wine-5.0/programs/reg/tests/reg.c:830:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_UTF8, 0, contents, lenA, NULL, 0); data/wine-5.0/programs/reg/tests/reg.c:834:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, contents, lenA, wstr, len); data/wine-5.0/programs/reg/tests/reg.c:855:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[24]; data/wine-5.0/programs/reg/tests/reg.c:2386:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[24]; data/wine-5.0/programs/reg/tests/reg.c:4326:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(filename, "rb"); data/wine-5.0/programs/reg/tests/reg.c:4341:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, expected, -1, NULL, 0); data/wine-5.0/programs/reg/tests/reg.c:4344:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, expected, -1, wstr, len); data/wine-5.0/programs/reg/tests/reg.c:4636:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hex, "\x12\x34\x56\x78", 4); data/wine-5.0/programs/regedit/hexedit.c:236:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(infoPtr->pData, pData, cbData); data/wine-5.0/programs/regedit/hexedit.c:250:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pData, infoPtr->pData, min(cbData, infoPtr->cbData)); data/wine-5.0/programs/regedit/listview.c:164:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(linfo->val, ValBuf, dwCount); data/wine-5.0/programs/regedit/regproc.c:76:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_ACP, 0, strA, -1, NULL, 0); data/wine-5.0/programs/regedit/regproc.c:79:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, strA, -1, strW, len); data/wine-5.0/programs/regedit/regproc.c:94:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). *len = MultiByteToWideChar(CP_ACP, 0, strA, chars, NULL, 0); data/wine-5.0/programs/regedit/regproc.c:97:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, strA, chars, strW, *len); data/wine-5.0/programs/regedit/tests/regedit.c:31:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmdline[256]; data/wine-5.0/programs/regedit/tests/regedit.c:82:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int len = MultiByteToWideChar(CP_UTF8, 0, contents, lenA, NULL, 0); data/wine-5.0/programs/regedit/tests/regedit.c:86:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, contents, lenA, wstr, len); data/wine-5.0/programs/regedit/tests/regedit.c:210:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char empty[1]; data/wine-5.0/programs/regedit/tests/regedit.c:273:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/regedit/tests/regedit.c:685:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/regedit/tests/regedit.c:3401:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(filename, "rb"); data/wine-5.0/programs/regedit/tests/regedit.c:3416:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, 0, expected, -1, NULL, 0); data/wine-5.0/programs/regedit/tests/regedit.c:3419:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, expected, -1, wstr, len); data/wine-5.0/programs/regedit/tests/regedit.c:3655:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hex, "\x12\x34\x56\x78", 4); data/wine-5.0/programs/rpcss/epmp.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char annotation[ept_max_annotation_size]; data/wine-5.0/programs/rpcss/epmp.c:116:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(entry->annotation, entries[i].annotation, sizeof(entries[i].annotation)); data/wine-5.0/programs/rpcss/irotp.c:103:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&rot_entry->object->abData, obj->abData, obj->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:114:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&rot_entry->moniker->abData, mk->abData, mk->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:123:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&rot_entry->moniker_data->abData, data->abData, data->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:177:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*obj)->abData, rot_entry->object->abData, (*obj)->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:179:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*mk)->abData, rot_entry->moniker->abData, (*mk)->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:247:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*obj)->abData, rot_entry->object->abData, (*obj)->ulCntData); data/wine-5.0/programs/rpcss/irotp.c:350:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*list)->interfaces[i]->abData, rot_entry->moniker->abData, rot_entry->moniker->ulCntData); data/wine-5.0/programs/rundll.exe16/rundll.c:39:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, "\\rundll32.exe " ); data/wine-5.0/programs/schtasks/schtasks.c:125:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_ACP, 0, (const char *)data, read_size, NULL, 0); data/wine-5.0/programs/schtasks/schtasks.c:128:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (const char *)data, read_size, ret, size); data/wine-5.0/programs/schtasks/tests/schtasks.c:54:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/programs/schtasks/tests/schtasks.c:56:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/programs/schtasks/tests/schtasks.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char command[1024]; data/wine-5.0/programs/services/rpc.c:359:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, name, (len + 1)*sizeof(*name)); data/wine-5.0/programs/services/rpc.c:401:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lpBuffer, entry->name, (len + 1)*sizeof(*entry->name)); data/wine-5.0/programs/services/rpc.c:833:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(status, &service->status, sizeof(service->status)); data/wine-5.0/programs/services/rpc.c:1205:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (data_size) memcpy(&ssi->data[ssi->name_size * sizeof(WCHAR)], data, data_size); data/wine-5.0/programs/services/rpc.c:1495:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, service->name, sz); data/wine-5.0/programs/services/rpc.c:1503:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, service->config.lpDisplayName, sz); data/wine-5.0/programs/services/rpc.c:1620:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, service->name, sz); data/wine-5.0/programs/services/rpc.c:1628:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + offset, service->config.lpDisplayName, sz); data/wine-5.0/programs/services/tests/service.c:32:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char service_name[100], named_pipe_name[100]; data/wine-5.0/programs/services/tests/service.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/programs/services/tests/service.c:62:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/wine-5.0/programs/services/tests/service.c:214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/programs/services/tests/service.c:342:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char current_event[32]; data/wine-5.0/programs/services/tests/service.c:348:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service_cmd[MAX_PATH+150], *ptr; data/wine-5.0/programs/services/tests/service.c:355:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, ".so"); data/wine-5.0/programs/services/tests/service.c:359:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, " service "); data/wine-5.0/programs/services/tests/service.c:381:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char evt[32]; data/wine-5.0/programs/services/tests/service.c:401:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512], *ptr; data/wine-5.0/programs/services/tests/service.c:443:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *argv[2] = {"param1", "param2"}; data/wine-5.0/programs/services/tests/service.c:587:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(service_name, "WineTestService%d", GetTickCount()); data/wine-5.0/programs/start/start.c:163:2: [2] (buffer) CopyMemory: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. CopyMemory(result, path, (len-1)*sizeof(WCHAR)); data/wine-5.0/programs/start/start.c:274:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(thisDir, pathposn, (pos-pathposn) * sizeof(WCHAR)); data/wine-5.0/programs/start/start.c:326:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, thisExt, (nextExt-thisExt) * sizeof(WCHAR)); data/wine-5.0/programs/start/start.c:638:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&name[filename_len], start, (ptr - start) * sizeof(WCHAR)); data/wine-5.0/programs/taskmgr/dbgchnl.c:116:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, channel->name, sizeof(channel->name), nameW, ARRAY_SIZE(nameW)); data/wine-5.0/programs/taskmgr/dbgchnl.c:165:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(IMAGEHLP_SYMBOL) + 256]; data/wine-5.0/programs/taskmgr/dbgchnl.c:292:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/programs/taskmgr/graphctl.c:101:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->m_strXUnitsString, "Samples"); /* can also be set with SetXUnits */ data/wine-5.0/programs/taskmgr/graphctl.c:102:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->m_strYUnitsString, "Y units"); /* can also be set with SetYUnits */ data/wine-5.0/programs/taskmgr/graphctl.h:38:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char m_strXUnitsString[50]; data/wine-5.0/programs/taskmgr/graphctl.h:39:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char m_strYUnitsString[50]; data/wine-5.0/programs/taskmgr/perfdata.c:167:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&SystemPerfInfo, &SysPerfInfo, sizeof(SYSTEM_PERFORMANCE_INFORMATION)); data/wine-5.0/programs/taskmgr/perfdata.c:172:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&SystemCacheInfo, &SysCacheInfo, sizeof(SYSTEM_CACHE_INFORMATION)); data/wine-5.0/programs/taskmgr/perfdata.c:183:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&SystemHandleInfo, SysHandleInfoData, sizeof(SYSTEM_HANDLE_INFORMATION)); data/wine-5.0/programs/taskmgr/perfdata.c:652:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pIoCounters, &pPerfData[Index].IOCounters, sizeof(IO_COUNTERS)); data/wine-5.0/programs/taskmgr/procpage.c:62:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(strNumber, temp, min(nMaxCount, j) * sizeof(WCHAR)); data/wine-5.0/programs/taskmgr/run.c:74:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szTitle[64]; data/wine-5.0/programs/view/view.c:145:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[128]; data/wine-5.0/programs/view/view.c:146:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Computed checksum %04x != stored checksum %04x\n", data/wine-5.0/programs/wineboot/wineboot.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/programs/wineboot/wineboot.c:148:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. count = sprintf( buffer, "%lu\n", timestamp ); data/wine-5.0/programs/wineboot/wineboot.c:1177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char token_buf[sizeof(TOKEN_USER) + sizeof(SID) + sizeof(DWORD) * SID_MAX_SUB_AUTHORITIES]; data/wine-5.0/programs/winebrowser/main.c:151:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( browsers, defaultbrowsers, sizeof(defaultbrowsers) ); data/wine-5.0/programs/winebrowser/main.c:182:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( mailers, defaultmailers, sizeof(defaultmailers) ); data/wine-5.0/programs/winecfg/appdefaults.c:91:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). build = atoi(build_str); data/wine-5.0/programs/winecfg/appdefaults.c:108:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). build = atoi(build_str); data/wine-5.0/programs/winecfg/appdefaults.c:110:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). minor = atoi(minor_str); data/wine-5.0/programs/winecfg/appdefaults.c:112:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). major = atoi(ver); data/wine-5.0/programs/winecfg/appdefaults.c:420:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Buffer[40]; data/wine-5.0/programs/winecfg/drive.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char driveValue[4]; data/wine-5.0/programs/winecfg/drive.c:140:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(driveValue, "%c:", letter); data/wine-5.0/programs/winecfg/drive.c:146:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[80]; data/wine-5.0/programs/winecfg/drive.c:196:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[16]; data/wine-5.0/programs/winecfg/drive.c:198:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%X\n", serial ); data/wine-5.0/programs/winecfg/drivedetect.c:323:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fstab = fopen("/etc/fstab", "r"); data/wine-5.0/programs/winecfg/driveui.c:214:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char letter[4]; data/wine-5.0/programs/winecfg/driveui.c:410:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char serial[16]; data/wine-5.0/programs/winecfg/driveui.c:467:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( serial, "%X", current_drive->serial ); data/wine-5.0/programs/winecfg/libraries.c:144:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[256]; data/wine-5.0/programs/winecfg/libraries.c:296:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, de->d_name, len ); data/wine-5.0/programs/winecfg/libraries.c:313:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char item1[256], item2[256]; data/wine-5.0/programs/winecfg/libraries.c:320:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( dir, "/dlls" ); data/wine-5.0/programs/winecfg/libraries.c:384:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(str, " ("); data/wine-5.0/programs/winecfg/libraries.c:468:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024], *ptr; data/wine-5.0/programs/winecfg/theme.c:540:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[13]; data/wine-5.0/programs/winecfg/theme.c:542:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d %d %d", GetRValue (clr), GetGValue (clr), GetBValue (clr)); data/wine-5.0/programs/winecfg/theme.c:623:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(filter + lstrlenW (filter), filterMask, filterMaskLen * sizeof (WCHAR)); data/wine-5.0/programs/winecfg/theme.c:716:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szLinkTarget[FILENAME_MAX]; /* in unix locale */ data/wine-5.0/programs/winecfg/theme.c:898:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szBackupPath[FILENAME_MAX], szUnixPath[FILENAME_MAX], *pszUnixPath = NULL; data/wine-5.0/programs/winecfg/theme.c:988:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(metrics[IDC_SYSPARAMS_MENU_TEXT - IDC_SYSPARAMS_BUTTON].lf), data/wine-5.0/programs/winecfg/theme.c:990:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(metrics[IDC_SYSPARAMS_ACTIVE_TITLE_TEXT - IDC_SYSPARAMS_BUTTON].lf), data/wine-5.0/programs/winecfg/theme.c:992:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(metrics[IDC_SYSPARAMS_TOOLTIP_TEXT - IDC_SYSPARAMS_BUTTON].lf), data/wine-5.0/programs/winecfg/theme.c:994:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(metrics[IDC_SYSPARAMS_MSGBOX_TEXT - IDC_SYSPARAMS_BUTTON].lf), data/wine-5.0/programs/winecfg/theme.c:1234:55: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). metrics[index].size = atoi(text); data/wine-5.0/programs/winecfg/winecfg.c:88:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (newStr, buf, len * sizeof (WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:293:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:294:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:299:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, def, -1, wdef, strlen(def)+1); data/wine-5.0/programs/winecfg/winecfg.c:369:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s->value, value, sizeof(DWORD) ); data/wine-5.0/programs/winecfg/winecfg.c:399:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( s->value, value, sizeof(DWORD) ); data/wine-5.0/programs/winecfg/winecfg.c:411:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:416:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:422:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, value, -1, wvalue, strlen(value)+1); data/wine-5.0/programs/winecfg/winecfg.c:439:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:440:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:575:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.h:145:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lenW = MultiByteToWideChar(CP_UNIXCP, 0, unix_str, -1, NULL, 0); data/wine-5.0/programs/winecfg/winecfg.h:148:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, unix_str, -1, unicode_str, lenW); data/wine-5.0/programs/wineconsole/curses.c:345:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/wineconsole/curses.c:433:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch[2]; data/wine-5.0/programs/wineconsole/curses.c:627:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0,&ch,1,&ir[numEvent].Event.KeyEvent.uChar.UnicodeChar, 1); data/wine-5.0/programs/wineconsole/wineconsole.c:223:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data->curcfg.color_map, cfg->color_map, color_map_size); data/wine-5.0/programs/wineconsole/wineconsole.c:910:19: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, wci.ptr, -1, NULL, 0); data/wine-5.0/programs/wineconsole/wineconsole.c:916:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, wci.ptr, -1, buffer, len); data/wine-5.0/programs/winedbg/be_arm.c:105:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4]; data/wine-5.0/programs/winedbg/be_arm.c:1570:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[64]; data/wine-5.0/programs/winedbg/be_arm.c:1695:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8]; data/wine-5.0/programs/winedbg/be_arm.c:1699:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0: strcpy(buf, "User26"); break; data/wine-5.0/programs/winedbg/be_arm.c:1700:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 1: strcpy(buf, "FIQ26"); break; data/wine-5.0/programs/winedbg/be_arm.c:1701:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 2: strcpy(buf, "IRQ26"); break; data/wine-5.0/programs/winedbg/be_arm.c:1702:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 3: strcpy(buf, "SVC26"); break; data/wine-5.0/programs/winedbg/be_arm.c:1703:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 16: strcpy(buf, "User"); break; data/wine-5.0/programs/winedbg/be_arm.c:1704:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 17: strcpy(buf, "FIQ"); break; data/wine-5.0/programs/winedbg/be_arm.c:1705:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 18: strcpy(buf, "IRQ"); break; data/wine-5.0/programs/winedbg/be_arm.c:1706:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 19: strcpy(buf, "SVC"); break; data/wine-5.0/programs/winedbg/be_arm.c:1707:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 23: strcpy(buf, "ABT"); break; data/wine-5.0/programs/winedbg/be_arm.c:1708:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 27: strcpy(buf, "UND"); break; data/wine-5.0/programs/winedbg/be_arm.c:1709:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. default: strcpy(buf, "UNKNWN"); break; data/wine-5.0/programs/winedbg/be_arm.c:1870:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(long double)]; data/wine-5.0/programs/winedbg/be_arm64.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8]; data/wine-5.0/programs/winedbg/be_arm64.c:65:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0: strcpy(buf, "EL0t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:66:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 4: strcpy(buf, "EL1t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:67:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 5: strcpy(buf, "EL1t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:68:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 8: strcpy(buf, "EL2t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:69:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 9: strcpy(buf, "EL2t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:70:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 12: strcpy(buf, "EL3t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:71:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 13: strcpy(buf, "EL3t"); break; data/wine-5.0/programs/winedbg/be_arm64.c:72:14: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. default: strcpy(buf, "UNKNWN"); break; data/wine-5.0/programs/winedbg/be_arm64.c:254:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(long double)]; data/wine-5.0/programs/winedbg/be_i386.c:158:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char mxcsr_flags[16][4] = { "IE", "DE", "ZE", "OE", "UE", "PE", "DAZ", "IM", data/wine-5.0/programs/winedbg/be_i386.c:216:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ST[cnt], &ctx->FloatSave.RegisterArea[cnt * 10], 10); data/wine-5.0/programs/winedbg/be_i386.c:222:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ST[cnt], &ctx->FloatSave.RegisterArea[cnt * 10], 10); data/wine-5.0/programs/winedbg/be_i386.c:256:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[33]; data/wine-5.0/programs/winedbg/be_i386.c:834:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(long double)]; data/wine-5.0/programs/winedbg/be_x86_64.c:87:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char mxcsr_flags[16][4] = { "IE", "DE", "ZE", "OE", "UE", "PE", "DAZ", "IM", data/wine-5.0/programs/winedbg/be_x86_64.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[33]; data/wine-5.0/programs/winedbg/be_x86_64.c:737:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(long double)]; data/wine-5.0/programs/winedbg/break.c:352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hexbuf[MAX_OFFSET_TO_STR_LEN]; data/wine-5.0/programs/winedbg/db_disasm.c:1033:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const db_index_reg_16[8] = { data/wine-5.0/programs/winedbg/db_disasm.c:1044:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const db_reg[5][8] = { data/wine-5.0/programs/winedbg/db_disasm.c:1052:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const db_seg_reg[8] = { data/wine-5.0/programs/winedbg/db_disasm.c:1074:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4]; data/wine-5.0/programs/winedbg/db_disasm64.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8]; data/wine-5.0/programs/winedbg/db_disasm64.c:1023:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const db_reg[2][4][16] = { data/wine-5.0/programs/winedbg/db_disasm64.c:1044:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const db_seg_reg[8] = { data/wine-5.0/programs/winedbg/debugger.h:191:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[9]; data/wine-5.0/programs/winedbg/debugger.h:246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source_current_file[MAX_PATH]; data/wine-5.0/programs/winedbg/display.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char func_buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/display.c:100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/display.c:165:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/display.c:234:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/expr.c:114:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char expr_list[4096]; data/wine-5.0/programs/winedbg/gdbproxy.c:339:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[9]; data/wine-5.0/programs/winedbg/gdbproxy.c:373:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[256]; data/wine-5.0/programs/winedbg/gdbproxy.c:610:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Unknown process"); data/wine-5.0/programs/winedbg/gdbproxy.c:615:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Running"); data/wine-5.0/programs/winedbg/gdbproxy.c:624:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case ABOVE_NORMAL_PRIORITY_CLASS: strcat(buffer, ", above normal priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:627:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case BELOW_NORMAL_PRIORITY_CLASS: strcat(buffer, ", below normal priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:629:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case HIGH_PRIORITY_CLASS: strcat(buffer, ", high priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:630:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case IDLE_PRIORITY_CLASS: strcat(buffer, ", idle priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:631:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case NORMAL_PRIORITY_CLASS: strcat(buffer, ", normal priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:632:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case REALTIME_PRIORITY_CLASS: strcat(buffer, ", realtime priority"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:648:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "No information"); data/wine-5.0/programs/winedbg/gdbproxy.c:659:22: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 0: strcpy(buffer, "Running"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:669:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(buffer, "Unknown threadID"); data/wine-5.0/programs/winedbg/gdbproxy.c:674:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_ABOVE_NORMAL: strcat(buffer, ", priority +1 above normal"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:675:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_BELOW_NORMAL: strcat(buffer, ", priority -1 below normal"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:676:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_HIGHEST: strcat(buffer, ", priority +2 above normal"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:677:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_LOWEST: strcat(buffer, ", priority -2 below normal"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:678:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_IDLE: strcat(buffer, ", priority idle"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:679:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_NORMAL: strcat(buffer, ", priority normal"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:680:41: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case THREAD_PRIORITY_TIME_CRITICAL: strcat(buffer, ", priority time-critical"); break; data/wine-5.0/programs/winedbg/gdbproxy.c:740:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&gdbctx->out_buf[gdbctx->out_len], str, len); data/wine-5.0/programs/winedbg/gdbproxy.c:1200:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/programs/winedbg/gdbproxy.c:1231:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/programs/winedbg/gdbproxy.c:1339:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1340:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clsName[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1341:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wndName[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1346:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(clsName, "-- Unknown --"); data/wine-5.0/programs/winedbg/gdbproxy.c:1348:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(wndName, "-- Empty --"); data/wine-5.0/programs/winedbg/gdbproxy.c:1368:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1388:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[31+MAX_PATH]; data/wine-5.0/programs/winedbg/gdbproxy.c:1434:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prot[3+1]; data/wine-5.0/programs/winedbg/gdbproxy.c:1435:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1513:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1553:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1597:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/programs/winedbg/gdbproxy.c:1636:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result[128]; data/wine-5.0/programs/winedbg/gdbproxy.c:1865:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[MAX_PATH]; data/wine-5.0/programs/winedbg/gdbproxy.c:1873:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(buf, "/winegdb.XXXXXX"); data/wine-5.0/programs/winedbg/info.c:151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/programs/winedbg/info.c:291:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clsName[128]; data/wine-5.0/programs/winedbg/info.c:376:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clsName[128]; data/wine-5.0/programs/winedbg/info.c:377:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wndName[128]; data/wine-5.0/programs/winedbg/info.c:383:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(clsName, "-- Unknown --"); data/wine-5.0/programs/winedbg/info.c:385:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(wndName, "-- Empty --"); data/wine-5.0/programs/winedbg/info.c:400:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clsName[128]; data/wine-5.0/programs/winedbg/info.c:401:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wndName[128]; data/wine-5.0/programs/winedbg/info.c:418:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(clsName, "-- Unknown --"); data/wine-5.0/programs/winedbg/info.c:420:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(wndName, "-- Empty --"); data/wine-5.0/programs/winedbg/info.c:687:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char flags[3]; data/wine-5.0/programs/winedbg/info.c:727:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prot[3+1]; data/wine-5.0/programs/winedbg/info.c:847:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hexbuf[MAX_OFFSET_TO_STR_LEN]; data/wine-5.0/programs/winedbg/info.c:917:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dll[32], name[256]; data/wine-5.0/programs/winedbg/info.c:926:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( name, "%ld", rec->ExceptionInformation[1] ); data/wine-5.0/programs/winedbg/memory.c:101:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(result, (void*)(DWORD_PTR)lvalue->addr.Offset, size); data/wine-5.0/programs/winedbg/memory.c:135:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*)(DWORD_PTR)lvalue->addr.Offset, value, size); data/wine-5.0/programs/winedbg/memory.c:148:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/winedbg/memory.c:288:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, buff, sz, buffer, size); data/wine-5.0/programs/winedbg/memory.c:317:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str, "0x%08x", (unsigned int) offset); data/wine-5.0/programs/winedbg/memory.c:319:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str, "0x%08x%08x", (unsigned int)(offset >> 32), data/wine-5.0/programs/winedbg/memory.c:327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[24], *ptr = tmp + sizeof(tmp) - 1; data/wine-5.0/programs/winedbg/memory.c:430:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/programs/winedbg/memory.c:462:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/memory.c:465:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winedbg/memory.c:568:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hexbuf[MAX_OFFSET_TO_STR_LEN]; data/wine-5.0/programs/winedbg/memory.c:596:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/source.c:174:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmppath[MAX_PATH]; data/wine-5.0/programs/winedbg/source.c:204:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zbuf[256]; data/wine-5.0/programs/winedbg/source.c:282:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/programs/winedbg/source.c:290:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buffer, addr + ol->linelist[i], data/wine-5.0/programs/winedbg/stack.c:267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/symbol.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/symbol.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[64]; data/wine-5.0/programs/winedbg/symbol.c:264:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/programs/winedbg/symbol.c:305:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). i = atoi(buffer); data/wine-5.0/programs/winedbg/symbol.c:368:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/programs/winedbg/symbol.c:408:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, name, offset + 1); data/wine-5.0/programs/winedbg/symbol.c:527:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/winedbg/symbol.c:528:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/wine-5.0/programs/winedbg/symbol.c:530:24: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(symbolfile = fopen(filename, "r"))) data/wine-5.0/programs/winedbg/symbol.c:578:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/symbol.c:640:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/programs/winedbg/symbol.c:713:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/wine-5.0/programs/winedbg/symbol.c:797:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/programs/winedbg/tgt_active.c:182:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(SYMBOL_INFO) + 256]; data/wine-5.0/programs/winedbg/tgt_active.c:333:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufferA[256]; data/wine-5.0/programs/winedbg/tgt_active.c:546:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hexbuf[MAX_OFFSET_TO_STR_LEN]; data/wine-5.0/programs/winedbg/tgt_active.c:579:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hexbuf[MAX_OFFSET_TO_STR_LEN]; data/wine-5.0/programs/winedbg/tgt_active.c:732:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char str[64]; data/wine-5.0/programs/winedbg/tgt_active.c:933:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[8 + 1 + 2 + MAX_PATH]; /* minidump "<file>" */ data/wine-5.0/programs/winedbg/tgt_active.c:965:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, "minidump \"", 10); data/wine-5.0/programs/winedbg/tgt_active.c:968:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/programs/winedbg/tgt_minidump.c:145:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, data/wine-5.0/programs/winedbg/tgt_minidump.c:232:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(exec_name, mds->Buffer, mds->Length); data/wine-5.0/programs/winedbg/tgt_minidump.c:249:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/wine-5.0/programs/winedbg/tgt_minidump.c:258:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tmp, "Intel "); data/wine-5.0/programs/winedbg/tgt_minidump.c:272:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp + strlen(tmp), " (%c%d)", data/wine-5.0/programs/winedbg/tgt_minidump.c:276:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp + strlen(tmp), " (%c%d)", data/wine-5.0/programs/winedbg/tgt_minidump.c:280:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(tmp + strlen(tmp), " (%d.%d)", data/wine-5.0/programs/winedbg/tgt_minidump.c:432:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nameW, mds->Buffer, mds->Length); data/wine-5.0/programs/winedbg/tgt_minidump.c:451:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(nameW, mds->Buffer, mds->Length); data/wine-5.0/programs/winedbg/tgt_module.c:59:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, -1, NULL, 0); data/wine-5.0/programs/winedbg/tgt_module.c:68:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, name, -1, nameW, len); data/wine-5.0/programs/winedbg/types.c:243:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/types.c:246:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winedbg/types.c:477:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/types.c:480:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winedbg/types.c:526:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/programs/winedbg/types.c:600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winedbg/types.c:642:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/types.c:645:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winedbg/types.c:708:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[sizeof(TI_FINDCHILDREN_PARAMS) + 256 * sizeof(DWORD)]; data/wine-5.0/programs/winedbg/winedbg.c:100:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char line_buff[4096]; data/wine-5.0/programs/winedbg/winedbg.c:108:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( line_buff + line_pos, buffer, count ); data/wine-5.0/programs/winedbg/winedbg.c:155:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[4*1024]; data/wine-5.0/programs/winedbg/winedbg.c:406:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(x, in, (last - in) * sizeof(WCHAR)); data/wine-5.0/programs/winefile/winefile.c:351:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&entry->data, &w32fd, sizeof(WIN32_FIND_DATAW)); data/wine-5.0/programs/winefile/winefile.c:474:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, (LPCSTR)shiid+str->UNION_MEMBER(uOffset), -1, buffer, len); data/wine-5.0/programs/winefile/winefile.c:478:2: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str->UNION_MEMBER(cStr), -1, buffer, len); data/wine-5.0/programs/winefile/winefile.c:629:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(next_pidl, pidl, pidl->mkid.cb); data/wine-5.0/programs/winefile/winefile.c:1193:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path+1, name, l*sizeof(WCHAR)); data/wine-5.0/programs/winefile/winefile.c:1201:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(path, name, l*sizeof(WCHAR)); data/wine-5.0/programs/winefile/winefile.c:1582:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, pInfoString, -1, infoStr, 100); data/wine-5.0/programs/winefile/winefile.c:1669:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dlg.entry, entry, sizeof(Entry)); data/wine-5.0/programs/winefile/winefile.c:2211:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pane->positions, orgPositions, sizeof(orgPositions)); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:340:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). INT size = MultiByteToWideChar(CP_UTF8, 0, string, -1, NULL, 0); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:343:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UTF8, 0, string, -1, ret, size); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:574:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&icons[*iconOffset], &iconData16->fileBytes[matchingIcon->offset << iconData16->alignmentShiftCount], grpIconDir->idEntries[i].dwBytesInRes); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:607:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&icons[*iconOffset], pIcon, size); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1421:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_UNIXCP, 0, unix_file, -1, NULL, 0); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1425:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, unix_file, -1, unix_fileW, size); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1426:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). size = MultiByteToWideChar(CP_UNIXCP, 0, windows_file, -1, NULL, 0); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1431:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_UNIXCP, 0, windows_file, -1, windows_fileW, size); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1463:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(location, "w"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1500:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(location, "w"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1607:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(menuPath + strlen(menuPath) - strlen(".desktop"), ".menu"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1770:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (relative, unix_link + len_unix_locn + 1, len_rel); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2024:28: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *globs_file = fopen(globs_filename, "r"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2175:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lower_extensionW, extensionW, (len + 1)*sizeof(WCHAR)); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2439:29: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *packageFile = fopen(filename, "w"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2544:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). desktop = fopen(desktopPath, "w"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:3401:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *argv[3]; data/wine-5.0/programs/winemsibuilder/main.c:177:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/wine-5.0/programs/winepath/winepath.c:152:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:63:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char build_id[64]; data/wine-5.0/programs/winetest/main.c:68:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *filters[64]; data/wine-5.0/programs/winetest/main.c:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, dllname[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:113:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char version[32]; data/wine-5.0/programs/winetest/main.c:126:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "%d.%d.%d.%d", data/wine-5.0/programs/winetest/main.c:132:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "version not available"); data/wine-5.0/programs/winetest/main.c:134:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "unknown"); data/wine-5.0/programs/winetest/main.c:137:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "failed"); data/wine-5.0/programs/winetest/main.c:139:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "version not available"); data/wine-5.0/programs/winetest/main.c:163:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:330:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/programs/winetest/main.c:332:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\\StringFileInfo\\%04x%04x\\OriginalFilename", MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US), 1200); data/wine-5.0/programs/winetest/main.c:468:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lang[32], *p = lang; data/wine-5.0/programs/winetest/main.c:489:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:493:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (path, dir, dirlen); data/wine-5.0/programs/winetest/main.c:494:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (path + dirlen++, "\\*"); data/wine-5.0/programs/winetest/main.c:518:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:681:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[8192], *index; data/wine-5.0/programs/winetest/main.c:684:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[MAX_PATH], subname[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:843:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char keyname[100]; data/wine-5.0/programs/winetest/main.c:844:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:850:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(keyname, "CLSID\\{%08x-%04x-%04x-%02x%2x-%02x%2x%02x%2x%02x%2x}\\InprocServer32", data/wine-5.0/programs/winetest/main.c:876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllpath[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:888:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dllname[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:889:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:936:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, dllname, -1, dllnameW, MAX_PATH); data/wine-5.0/programs/winetest/main.c:1007:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmppath[MAX_PATH], tempdir[MAX_PATH+4]; data/wine-5.0/programs/winetest/main.c:1022:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmpname[MAX_PATH]; data/wine-5.0/programs/winetest/main.c:1051:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( tempdir, "wct" ); data/wine-5.0/programs/winetest/main.c:1179:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/programs/winetest/send.c:128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFLEN+1]; data/wine-5.0/programs/winetest/send.c:270:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[BUFLEN+1]; data/wine-5.0/programs/winetest/util.c:51:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(res, str, len); data/wine-5.0/programs/winevdm/winevdm.c:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char startdir[64]; /* 0x65 */ data/wine-5.0/programs/winevdm/winevdm.c:56:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char optparams[64]; /* 0xa5 seems to be zero terminated */ data/wine-5.0/programs/winevdm/winevdm.c:134:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, "/dosbox" ); data/wine-5.0/programs/winevdm/winevdm.c:156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *buffer, app[MAX_PATH]; data/wine-5.0/programs/winevdm/winevdm.c:177:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "[autoexec]\n" ); data/wine-5.0/programs/winevdm/winevdm.c:181:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "mount -z %c\n", 'a' + i ); data/wine-5.0/programs/winevdm/winevdm.c:187:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "%c:\ncd ", path[0] ); data/wine-5.0/programs/winevdm/winevdm.c:189:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "\nconfig -securemode\n" ); data/wine-5.0/programs/winevdm/winevdm.c:191:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "exit\n" ); data/wine-5.0/programs/winevdm/winevdm.c:194:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *args[5]; data/wine-5.0/programs/winevdm/winevdm.c:307:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char progpath[MAX_PATH]; data/wine-5.0/programs/winevdm/winevdm.c:308:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[308]; data/wine-5.0/programs/winevdm/winevdm.c:309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char progname[64]; data/wine-5.0/programs/winevdm/winevdm.c:310:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[31]; data/wine-5.0/programs/winevdm/winevdm.c:311:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char optparams[65]; data/wine-5.0/programs/winevdm/winevdm.c:312:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char startdir[65]; data/wine-5.0/programs/winevdm/winevdm.c:495:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH]; data/wine-5.0/programs/winhelp.exe16/winhelp.c:38:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( buffer, "\\winhlp32.exe " ); data/wine-5.0/programs/winhlp32/hlpfile.c:257:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newptr, phptr, phend - phptr); data/wine-5.0/programs/winhlp32/hlpfile.c:291:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, &hlpfile->phrases_buffer[hlpfile->phrases_offsets[idx]], len); data/wine-5.0/programs/winhlp32/hlpfile.c:307:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, &hlpfile->phrases_buffer[hlpfile->phrases_offsets[idx]], len); data/wine-5.0/programs/winhlp32/hlpfile.c:314:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src + 1, len); data/wine-5.0/programs/winhlp32/hlpfile.c:347:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, ch); data/wine-5.0/programs/winhlp32/hlpfile.c:700:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rd->ptr, str, sz); data/wine-5.0/programs/winhlp32/hlpfile.c:730:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char xx[8]; data/wine-5.0/programs/winhlp32/hlpfile.c:731:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. rlen = sprintf(xx, "\\'%x", *(const BYTE*)p); data/wine-5.0/programs/winhlp32/hlpfile.c:754:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/wine-5.0/programs/winhlp32/hlpfile.c:849:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tgt, str, win - str); data/wine-5.0/programs/winhlp32/hlpfile.c:971:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winhlp32/hlpfile.c:1035:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\dibitmap0\\picw%d\\pich%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1042:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\wbitmap0\\wbmbitspixel%d\\wbmplanes%d\\picw%d\\pich%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1068:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winhlp32/hlpfile.c:1077:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "{\\pict\\wmetafile%d\\picw%d\\pich%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[16]; data/wine-5.0/programs/winhlp32/hlpfile.c:1163:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "|bm%u", index); data/wine-5.0/programs/winhlp32/hlpfile.c:1193:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(link_str, str, len); data/wine-5.0/programs/winhlp32/hlpfile.c:1233:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/wine-5.0/programs/winhlp32/hlpfile.c:1255:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text, buf + datalen, size); data/wine-5.0/programs/winhlp32/hlpfile.c:1259:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text, buf + datalen, size); data/wine-5.0/programs/winhlp32/hlpfile.c:1295:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\trgaph%d\\trleft%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1306:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\cellx%d", data/wine-5.0/programs/winhlp32/hlpfile.c:1315:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\trleft%d\\cellx%d ", data/wine-5.0/programs/winhlp32/hlpfile.c:1349:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\sb%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1354:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\sa%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1359:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\sl%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1364:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\li%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1369:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\ri%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1374:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\fi%d", HLPFILE_HalfPointsScale(page, fetch_short(&format))); data/wine-5.0/programs/winhlp32/hlpfile.c:1395:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\brdrw%d", HLPFILE_HalfPointsScale(page, w)); data/wine-5.0/programs/winhlp32/hlpfile.c:1711:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/wine-5.0/programs/winhlp32/hlpfile.c:1753:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "{\\rtf1\\ansi\\ansicpg%d\\deff0", cpg); data/wine-5.0/programs/winhlp32/hlpfile.c:1783:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "\\red%d\\green%d\\blue%d;", data/wine-5.0/programs/winhlp32/hlpfile.c:1935:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->fonts[i].LogFont.lfFaceName, ref + face_offset + idx * len, min(len, LF_FACESIZE - 1)); data/wine-5.0/programs/winhlp32/hlpfile.c:1941:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(hlpfile->fonts[i].LogFont.lfFaceName, "Helv"); data/wine-5.0/programs/winhlp32/hlpfile.c:1982:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->file_buffer, header, 16); data/wine-5.0/programs/winhlp32/hlpfile.c:2178:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->Context, cbuf, clen); data/wine-5.0/programs/winhlp32/hlpfile.c:2196:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->kwbtree, cbuf, clen); data/wine-5.0/programs/winhlp32/hlpfile.c:2211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->kwdata, cbuf, clen); data/wine-5.0/programs/winhlp32/hlpfile.c:2255:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->TOMap, cbuf+9, clen); data/wine-5.0/programs/winhlp32/hlpfile.c:2379:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->phrases_buffer, buf + 15 + 2*num, dec_size); data/wine-5.0/programs/winhlp32/hlpfile.c:2456:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->phrases_buffer, buf_phs + 9, dec_size); data/wine-5.0/programs/winhlp32/hlpfile.c:2523:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hlpfile->topic_map[i], buf + i * hlpfile->tbsize + 0x0C, hlpfile->dsize); data/wine-5.0/programs/winhlp32/hlpfile.c:2562:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(page->lpszTitle, title, titlesize); data/wine-5.0/programs/winhlp32/hlpfile.c:2566:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(page->lpszTitle, title, titlesize); data/wine-5.0/programs/winhlp32/hlpfile.c:2621:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(macro_str, ptr, len + 1); data/wine-5.0/programs/winhlp32/hlpfile.h:27:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[10]; data/wine-5.0/programs/winhlp32/hlpfile.h:28:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[9]; data/wine-5.0/programs/winhlp32/hlpfile.h:29:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char caption[132]; data/wine-5.0/programs/winhlp32/macro.c:423:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFile[MAX_PATH]; data/wine-5.0/programs/winhlp32/winhelp.c:97:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buff, rd->where, cb); data/wine-5.0/programs/winhlp32/winhelp.c:156:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "*.hlp"); data/wine-5.0/programs/winhlp32/winhelp.c:160:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "*.*"); data/wine-5.0/programs/winhlp32/winhelp.c:214:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szFullName[MAX_PATH]; data/wine-5.0/programs/winhlp32/winhelp.c:215:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char szAddPath[MAX_PATH]; data/wine-5.0/programs/winhlp32/winhelp.c:274:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mwi.type, "primary"); data/wine-5.0/programs/winhlp32/winhelp.c:275:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mwi.name, "main"); data/wine-5.0/programs/winhlp32/winhelp.c:278:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[40]; data/wine-5.0/programs/winhlp32/winhelp.c:1168:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/programs/winhlp32/winhelp.c:1179:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ptr1, len); data/wine-5.0/programs/winhlp32/winhelp.c:1547:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/wine-5.0/programs/wordpad/wordpad.c:249:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszCaption, wszNewFileName, lstrlenW(wszNewFileName)*sizeof(WCHAR)); data/wine-5.0/programs/wordpad/wordpad.c:251:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszCaption + length, wszSeparator, sizeof(wszSeparator)); data/wine-5.0/programs/wordpad/wordpad.c:253:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(wszCaption + length, wszAppTitle, sizeof(wszAppTitle)); data/wine-5.0/programs/wordpad/wordpad.c:772:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fileStart[5]; data/wine-5.0/programs/wordpad/wordpad.c:1020:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[4]; data/wine-5.0/programs/wordpad/wordpad.c:1023:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(id, "%d\n", (int)ps->lParam); data/wine-5.0/programs/wordpad/wordpad.c:1072:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sid[4]; data/wine-5.0/programs/wordpad/wordpad.c:1076:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). id = atoi(sid); data/wine-5.0/programs/wordpad/wordpad.c:2094:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/programs/wordpad/wordpad.c:2098:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buf,"selection = %d..%d, line count=%ld", data/wine-5.0/programs/wordpad/wordpad.c:2379:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/wine-5.0/programs/wordpad/wordpad.c:2385:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "Start = %d, End = %d", range.cpMin, range.cpMax); data/wine-5.0/programs/wscript/host.c:369:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr, strs[i], len*sizeof(WCHAR)); data/wine-5.0/programs/wscript/main.c:356:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, file_map, size, NULL, 0); data/wine-5.0/programs/wscript/main.c:358:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, file_map, size, ret, len); data/wine-5.0/programs/wscript/tests/run.c:80:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, stra, -1, buf, ARRAY_SIZE(buf)); data/wine-5.0/programs/wscript/tests/run.c:100:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/programs/wscript/tests/run.c:102:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/programs/wscript/tests/run.c:249:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fullPath[MAX_PATH]; data/wine-5.0/programs/wscript/tests/run.c:266:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fullPath[MAX_PATH]; data/wine-5.0/programs/wscript/tests/run.c:344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char command[MAX_PATH]; data/wine-5.0/programs/wscript/tests/run.c:377:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[MAX_PATH]; data/wine-5.0/programs/wusa/main.c:473:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buf->buf[buf->pos], str, len * sizeof(WCHAR)); data/wine-5.0/programs/wusa/wusa.h:122:11: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_ACP, 0, str, -1, NULL, 0); data/wine-5.0/programs/wusa/wusa.h:124:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, str, -1, ret, len); data/wine-5.0/programs/wusa/wusa.h:144:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, str, len * sizeof(WCHAR)); data/wine-5.0/programs/xcopy/tests/xcopy.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[MAX_PATH]; data/wine-5.0/programs/xcopy/xcopy.c:479:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char answer[10]; data/wine-5.0/programs/xcopy/xcopy.c:504:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char answer[10]; data/wine-5.0/programs/xcopy/xcopy.c:1034:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char answer[10] = ""; data/wine-5.0/programs/xcopy/xcopy.c:1155:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pausestr[10]; data/wine-5.0/server/atom.c:257:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( entry->str, str->str, str->len ); data/wine-5.0/server/change.c:158:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char state[1]; data/wine-5.0/server/change.c:683:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( record->event.name, relpath, len ); data/wine-5.0/server/change.c:747:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( path, "/proc/self/fd/%u/", unix_fd ); data/wine-5.0/server/change.c:813:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, segment, extra - 1 ); data/wine-5.0/server/change.c:819:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, segment, extra ); data/wine-5.0/server/change.c:890:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[0x1000]; data/wine-5.0/server/change.c:975:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[32]; data/wine-5.0/server/change.c:1001:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( path, "/proc/self/fd/%u", unix_fd ); data/wine-5.0/server/change.c:1053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link[35], *name; data/wine-5.0/server/change.c:1069:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( link, "/proc/self/fd/%u/..", unix_fd ); data/wine-5.0/server/change.c:1090:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( link, "/proc/self/fd/%u", unix_fd ); data/wine-5.0/server/change.c:1281:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( event, &record->event, len ); data/wine-5.0/server/class.c:55:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extra_bytes[1]; /* extra bytes storage */ data/wine-5.0/server/class.c:268:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &reply->old_extra_value, class->extra_bytes + req->extra_offset, req->extra_size ); data/wine-5.0/server/class.c:292:39: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (req->flags & SET_CLASS_EXTRA) memcpy( class->extra_bytes + req->extra_offset, data/wine-5.0/server/console.c:470:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &screen_buffer->data[i * screen_buffer->width], screen_buffer->data, data/wine-5.0/server/console.c:669:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_rec + console->recnum, records, count * sizeof(INPUT_RECORD) ); data/wine-5.0/server/console.c:681:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &console->records[console->recnum + i], data/wine-5.0/server/console.c:785:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new_title, title, len ); data/wine-5.0/server/console.c:870:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &new_data[i * new_width], &screen_buffer->data[i * old_width], data/wine-5.0/server/console.c:881:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &new_data[i * new_width + old_width], &new_data[old_width], data/wine-5.0/server/console.c:892:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &new_data[i * new_width], &new_data[old_height * new_width], data/wine-5.0/server/console.c:1069:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( font_name, (char *)get_req_data() + offset, font_name_len ); data/wine-5.0/server/console.c:1095:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, buf, len * sizeof(WCHAR) ); data/wine-5.0/server/console.c:1414:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdst, psrc, w * sizeof(*pdst) ); data/wine-5.0/server/console.c:1787:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, screen_buffer->color_map, min( total, sizeof(screen_buffer->color_map) )); data/wine-5.0/server/console.c:1790:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)data + sizeof(screen_buffer->color_map), screen_buffer->font.face_name, data/wine-5.0/server/debugger.c:670:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data.exception.params, get_req_data(), req->len ); data/wine-5.0/server/directory.c:492:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, name, name_len ); data/wine-5.0/server/directory.c:493:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)ptr + name_len, type_name, type_len ); data/wine-5.0/server/fd.c:274:25: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). struct list open; /* list of open file descriptors */ data/wine-5.0/server/fd.c:415:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[64]; data/wine-5.0/server/fd.c:425:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "+%ld.%07ld", secs, nsecs ); data/wine-5.0/server/fd.c:437:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%x%08x (+%ld.%07ld)", data/wine-5.0/server/fd.c:440:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%x%08x (-%ld.%07ld)", data/wine-5.0/server/fd.c:570:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char release[32]; data/wine-5.0/server/fd.c:576:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (atoi(release) < 9) return; data/wine-5.0/server/fd.c:1058:32: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). assert( list_empty(&inode->open) ); data/wine-5.0/server/fd.c:1107:28: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). list_init( &inode->open ); data/wine-5.0/server/fd.c:1518:37: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). LIST_FOR_EACH( ptr, &fd->inode->open ) data/wine-5.0/server/fd.c:1690:36: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). list_add_head( &fd->inode->open, &fd->inode_entry ); data/wine-5.0/server/fd.c:1716:46: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). LIST_FOR_EACH_ENTRY( fd_ptr, &fd->inode->open, struct fd, inode_entry ) data/wine-5.0/server/fd.c:1810:24: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd->unix_fd = open( name, rw_mode | (flags & ~O_TRUNC), *mode )) == -1) data/wine-5.0/server/fd.c:1816:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd->unix_fd = open( name, O_RDONLY | (flags & ~(O_TRUNC | O_CREAT | O_EXCL)), *mode ); data/wine-5.0/server/fd.c:1848:32: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). list_add_head( &inode->open, &fd->inode_entry ); data/wine-5.0/server/fd.c:2152:46: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). LIST_FOR_EACH_ENTRY( fd, &inode->open, struct fd, inode_entry ) data/wine-5.0/server/fd.c:2345:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, nameptr, len ); data/wine-5.0/server/fd.c:2380:48: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int is_empty = list_empty( &inode->open ); data/wine-5.0/server/file.c:211:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, nameptr, len ); data/wine-5.0/server/file.c:365:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, user, sd->owner_len ); data/wine-5.0/server/file.c:367:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, group, sd->group_len ); data/wine-5.0/server/file.c:389:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, local_system_sid, security_sid_len( local_system_sid )); data/wine-5.0/server/file.c:405:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, user, security_sid_len( user )); data/wine-5.0/server/file.c:424:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, user, security_sid_len( user )); data/wine-5.0/server/file.c:440:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, world_sid, security_sid_len( world_sid )); data/wine-5.0/server/handle.c:373:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, parent_table->entries, (table->last + 1) * sizeof(struct handle_entry) ); data/wine-5.0/server/handle.c:762:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &req_sd, sizeof(req_sd) ); data/wine-5.0/server/handle.c:764:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, owner, req_sd.owner_len ); data/wine-5.0/server/handle.c:766:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, group, req_sd.group_len ); data/wine-5.0/server/handle.c:768:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, sacl, req_sd.sacl_len ); data/wine-5.0/server/handle.c:770:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, dacl, req_sd.dacl_len ); data/wine-5.0/server/mach.c:368:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, (char *)data + offset, size ); data/wine-5.0/server/mach.c:444:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char*)task_mem + offset, src, size ); data/wine-5.0/server/mach.c:497:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( base, ldt + entry, sizeof(int) ); data/wine-5.0/server/mach.c:498:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( limit, ldt + entry + 8192, sizeof(int) ); data/wine-5.0/server/mach.c:499:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( flags, (char *)(ldt + 2 * 8192) + entry, 1 ); data/wine-5.0/server/main.c:86:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). debug_level = atoi( optarg ); data/wine-5.0/server/main.c:99:44: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ret = kill_lock_owner( atoi( optarg ) ); data/wine-5.0/server/main.c:105:56: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). master_socket_timeout = (timeout_t)atoi( optarg ) * -TICKS_PER_SEC; data/wine-5.0/server/mapping.c:569:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/server/named_pipe.c:601:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (reply_size) memcpy( &name_info->FileName[1], name, reply_size ); data/wine-5.0/server/named_pipe.c:771:26: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (writing) memcpy( buf + write_pos, (const char *)message->iosb->in_data + message->read_pos, writing ); data/wine-5.0/server/named_pipe.c:987:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buffer->Data + write_pos, (const char *)message->iosb->in_data + message->read_pos, data/wine-5.0/server/object.c:122:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ptr) memcpy( ptr, data, len ); data/wine-5.0/server/object.c:154:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr->name, name->str, name->len ); data/wine-5.0/server/object.c:189:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + len - name->len, name->name, name->len ); data/wine-5.0/server/object.c:191:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret + len, &backslash, sizeof(WCHAR) ); data/wine-5.0/server/object.c:648:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, &new_sd, sizeof(new_sd) ); data/wine-5.0/server/object.c:650:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, owner, new_sd.owner_len ); data/wine-5.0/server/object.c:652:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, group, new_sd.group_len ); data/wine-5.0/server/object.c:654:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, sacl, new_sd.sacl_len ); data/wine-5.0/server/object.c:656:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ptr, dacl, new_sd.dacl_len ); data/wine-5.0/server/process.c:696:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( process_default_sd + 1, security_builtin_admins_sid, admins_sid_len ); data/wine-5.0/server/process.c:697:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)(process_default_sd + 1) + admins_sid_len, security_domain_users_sid, users_sid_len ); data/wine-5.0/server/process.c:710:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &aaa->SidStart, security_domain_users_sid, users_sid_len ); data/wine-5.0/server/process.c:716:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &aaa->SidStart, security_builtin_admins_sid, admins_sid_len ); data/wine-5.0/server/process.c:1196:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->data, info_ptr, info_size ); data/wine-5.0/server/process.c:1198:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->data + 1, (const char *)info_ptr + req->info_size, env_size ); data/wine-5.0/server/process.c:1451:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char proc_path[32], line[256]; data/wine-5.0/server/process.c:1454:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( proc_path, "/proc/%u/status", process->unix_pid ); data/wine-5.0/server/process.c:1455:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( proc_path, "r" ))) data/wine-5.0/server/procfs.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[32]; data/wine-5.0/server/procfs.c:58:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "/proc/%u/as", process->unix_pid ); data/wine-5.0/server/procfs.c:59:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( buffer, flags )) == -1) data/wine-5.0/server/procfs.c:73:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[48]; data/wine-5.0/server/procfs.c:78:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "/proc/%u/lwp/%u/lwpctl", thread->unix_pid, thread->unix_tid ); data/wine-5.0/server/procfs.c:79:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( buffer, O_WRONLY )) == -1) data/wine-5.0/server/ptrace.c:369:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char procmem[24]; data/wine-5.0/server/ptrace.c:372:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( procmem, "/proc/%u/mem", process->unix_pid ); data/wine-5.0/server/ptrace.c:373:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( procmem, O_RDONLY )) != -1) data/wine-5.0/server/ptrace.c:388:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, (char *)&data + first_offset, sizeof(long) - first_offset ); data/wine-5.0/server/ptrace.c:397:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, &data, sizeof(long) ); data/wine-5.0/server/ptrace.c:403:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dest, (char *)&data + first_offset, last_offset - first_offset ); data/wine-5.0/server/ptrace.c:470:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char procmem[24]; data/wine-5.0/server/ptrace.c:473:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( procmem, "/proc/%u/mem", process->unix_pid ); data/wine-5.0/server/ptrace.c:474:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( procmem, O_WRONLY )) != -1) data/wine-5.0/server/ptrace.c:489:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)&data + first_offset, src, sizeof(long) - first_offset ); data/wine-5.0/server/ptrace.c:499:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &data, src, sizeof(long) ); data/wine-5.0/server/ptrace.c:506:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)&data + first_offset, src, last_offset - first_offset ); data/wine-5.0/server/queue.c:116:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char keystate[256]; /* state of each key */ data/wine-5.0/server/queue.c:2129:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data + 1, module, module_size ); data/wine-5.0/server/queue.c:2893:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desktop->keystate, get_req_data(), size ); data/wine-5.0/server/queue.c:2899:28: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (thread->queue) memcpy( thread->queue->input->keystate, get_req_data(), size ); data/wine-5.0/server/queue.c:2902:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desktop->keystate, get_req_data(), size ); data/wine-5.0/server/region.c:611:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( region->rects, rects, nb_rects * sizeof(*rects) ); data/wine-5.0/server/region.c:757:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( dst->rects, src->rects, src->num_rects * sizeof(*dst->rects) ); data/wine-5.0/server/registry.c:372:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( key_default_sd + 1, security_builtin_admins_sid, admins_sid_len ); data/wine-5.0/server/registry.c:373:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)(key_default_sd + 1) + admins_sid_len, security_builtin_admins_sid, admins_sid_len ); data/wine-5.0/server/registry.c:386:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &aaa->SidStart, security_builtin_users_sid, users_sid_len ); data/wine-5.0/server/registry.c:392:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &aaa->SidStart, security_builtin_admins_sid, admins_sid_len ); data/wine-5.0/server/registry.c:958:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, key->name, namelen ); data/wine-5.0/server/registry.c:959:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data + namelen, key->class, len - namelen ); data/wine-5.0/server/registry.c:968:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (pos < len) memcpy( data + pos, k->name, data/wine-5.0/server/registry.c:971:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (pos < len) memcpy( data + pos, backslash, data/wine-5.0/server/registry.c:974:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, root_name, min( sizeof(root_name) - sizeof(backslash), len ) ); data/wine-5.0/server/registry.c:979:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, key->name, len ); data/wine-5.0/server/registry.c:1203:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, value->name, namelen ); data/wine-5.0/server/registry.c:1204:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( (char *)data + namelen, value->data, maxlen - namelen ); data/wine-5.0/server/registry.c:1209:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, value->name, maxlen ); data/wine-5.0/server/registry.c:1722:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen( filename, "r" ))) data/wine-5.0/server/registry.c:1943:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( path, O_WRONLY )) != -1) data/wine-5.0/server/registry.c:1963:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "reg%lx%04x.tmp", (long) getpid(), count++ ); data/wine-5.0/server/registry.c:1964:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( tmp, O_CREAT | O_EXCL | O_WRONLY, 0666 )) != -1) break; data/wine-5.0/server/request.c:394:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmsg_buffer[256]; data/wine-5.0/server/request.c:480:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmsg_buffer[256]; data/wine-5.0/server/request.c:623:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, dir, len ); data/wine-5.0/server/request.c:661:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( p, "/.wine" ); data/wine-5.0/server/request.c:669:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((config_dir_fd = open( ".", O_RDONLY )) == -1) data/wine-5.0/server/request.c:682:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( server_dir, "/.wineserver" ); data/wine-5.0/server/request.c:737:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). stream = fopen( wineserver_file, "r" ); data/wine-5.0/server/request.c:800:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( server_dir, "/server-" ); data/wine-5.0/server/request.c:804:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "%lx%08lx-", (unsigned long)((unsigned long long)st.st_dev >> 32), data/wine-5.0/server/request.c:807:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. p += sprintf( p, "%lx-", (unsigned long)st.st_dev ); data/wine-5.0/server/request.c:810:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%lx%08lx", (unsigned long)((unsigned long long)st.st_ino >> 32), data/wine-5.0/server/request.c:813:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( p, "%lx", (unsigned long)st.st_ino ); data/wine-5.0/server/request.c:819:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((server_dir_fd = open( ".", O_RDONLY )) == -1) data/wine-5.0/server/request.c:847:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( server_lock_name, O_CREAT|O_TRUNC|O_WRONLY, 0600 )) == -1) data/wine-5.0/server/request.c:1008:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( "/dev/null", O_RDWR ); data/wine-5.0/server/request.h:100:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (ret) memcpy( ret, data, size ); data/wine-5.0/server/sock.c:1043:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[PIPE_BUF]; data/wine-5.0/server/thread.c:568:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc, get_req_data(), desc_len ); data/wine-5.0/server/thread.c:1553:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &select_op, result + 1, op_size ); data/wine-5.0/server/thread.c:1831:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( current->suspend_context, get_req_data(), sizeof(context_t) ); data/wine-5.0/server/token.c:377:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( label_ace, ace, ace->AceSize ); data/wine-5.0/server/token.c:434:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( replaced_ace, ace, ace->AceSize ); data/wine-5.0/server/token.c:445:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( replaced_ace, ace, ace->AceSize ); data/wine-5.0/server/token.c:586:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &group->sid, groups[i].Sid, security_sid_len( groups[i].Sid )); data/wine-5.0/server/token.c:667:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( newgroup, group, size ); data/wine-5.0/server/token.c:718:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, &local_system_sid, sizeof(local_system_sid) ); data/wine-5.0/server/token.c:727:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( sid, user, security_sid_len( user )); data/wine-5.0/server/token.c:769:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &smla->SidStart, label_sid, sid_len ); data/wine-5.0/server/token.c:1404:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( privs, &priv, sizeof(priv) ); data/wine-5.0/server/token.c:1510:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sid_ptr, &group->sid, security_sid_len( &group->sid )); data/wine-5.0/server/token.c:1576:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( acl_reply, token->default_dacl, reply->acl_len ); data/wine-5.0/server/trace.c:565:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &ctx, context, size ); data/wine-5.0/server/trace.c:599:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ®, &ctx.fp.i386_regs.regs[10 * i], 10 ); data/wine-5.0/server/trace.c:758:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &event, cur_data, size ); data/wine-5.0/server/trace.c:5692:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[10]; data/wine-5.0/server/trace.c:5699:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%x", status ); data/wine-5.0/server/unicode.c:30:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char utf8_length[128] = data/wine-5.0/server/unicode.c:43:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char utf8_mask[4] = { 0x7f, 0x1f, 0x0f, 0x07 }; data/wine-5.0/server/unicode.c:152:66: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. int dump_strW( const WCHAR *str, data_size_t len, FILE *f, const char escape[2] ) data/wine-5.0/server/unicode.c:154:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char escapes[32] = ".......abtnvfr.............e...."; data/wine-5.0/server/unicode.c:155:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/server/unicode.c:170:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\x%04x", *str ); data/wine-5.0/server/unicode.c:172:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\x%x", *str ); data/wine-5.0/server/unicode.c:179:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%c", escapes[*str] ); data/wine-5.0/server/unicode.c:181:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%03o", *str ); data/wine-5.0/server/unicode.c:183:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%o", *str ); data/wine-5.0/server/unicode.h:37:73: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern int dump_strW( const WCHAR *str, data_size_t len, FILE *f, const char escape[2] ); data/wine-5.0/server/user.h:79:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char keystate[256]; /* asynchronous key state */ data/wine-5.0/server/window.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extra_bytes[1]; /* extra bytes storage */ data/wine-5.0/server/window.c:2120:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &reply->old_extra_value, win->extra_bytes + req->extra_offset, req->extra_size ); data/wine-5.0/server/window.c:2144:37: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (req->flags & SET_WIN_EXTRA) memcpy( win->extra_bytes + req->extra_offset, data/wine-5.0/server/window.c:2430:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( text, get_req_data(), len * sizeof(WCHAR) ); data/wine-5.0/server/winstation.c:687:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( full_name, winstation_name, winstation_len ); data/wine-5.0/server/winstation.c:689:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( full_name + winstation_len / sizeof(WCHAR) + 1, desktop_name, desktop_len ); data/wine-5.0/tools/make_xftmpl.c:173:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output_data + output_pos, data, size ); data/wine-5.0/tools/make_xftmpl.c:198:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &val, &value, sizeof(value) ); data/wine-5.0/tools/make_xftmpl.c:229:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[39]; data/wine-5.0/tools/make_xftmpl.c:261:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[512]; data/wine-5.0/tools/make_xftmpl.c:285:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/tools/make_xftmpl.c:321:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *tok, buffer[512]; data/wine-5.0/tools/make_xftmpl.c:456:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char header[16]; data/wine-5.0/tools/make_xftmpl.c:475:27: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). } else if (!(infile = fopen(infile_name, "rb"))) { data/wine-5.0/tools/make_xftmpl.c:518:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(outfile = fopen(output_file, "wb"))) { data/wine-5.0/tools/makedep.c:602:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, name, name_len ); data/wine-5.0/tools/makedep.c:621:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, path, len ); data/wine-5.0/tools/makedep.c:650:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret, str, pos ); data/wine-5.0/tools/makedep.c:695:47: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. for (p = ret; dotdots; dotdots--, p += 3) memcpy( p, "../", 3 ); data/wine-5.0/tools/makedep.c:1314:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen( name, "r" ))) return NULL; data/wine-5.0/tools/makedep.c:1712:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(ret = fopen( input_file_name, "r" ))) fatal_perror( "open" ); data/wine-5.0/tools/makedep.c:2571:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *lib, *dst, *ext[4]; data/wine-5.0/tools/makedep.c:3960:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( name, O_RDWR | O_CREAT | O_EXCL, 0666 )) != -1) data/wine-5.0/tools/makedep.c:3998:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer1[8192], buffer2[8192]; data/wine-5.0/tools/makedep.c:4016:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((file1 = fopen( dest, "r" ))) data/wine-5.0/tools/makedep.c:4018:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((file2 = fopen( temp_file_name, "r" ))) data/wine-5.0/tools/makedep.c:4138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:92:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dfCopyright[60]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:349:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tableA[0x100]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:355:5: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar( enc, 0, tableA, 0x100, tableW, 0x100 ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:365:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tableA[0x100]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:478:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(info->hdr.dfCopyright, sfntname.string, len); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:606:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( info->data + data_pos, face->family_name, strlen( face->family_name )); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:645:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp_hdr, &info->hdr, sizeof(info->hdr)); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:652:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp_chartable, info->dfCharTable + info->hdr.fi.dfFirstChar, num_chars * sizeof(CHAR_TABLE_ENTRY)); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:671:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). option_defchar = atoi( optarg ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:680:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). option_dpi = atoi( optarg ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:703:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char resident_name[200]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:705:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char non_resident_name[200]; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:758:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(non_resident_name + strlen(non_resident_name), ",%d", info[i]->hdr.fi.dfPoints ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:763:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(non_resident_name, " (VGA res)"); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:765:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(non_resident_name, " (8514 res)"); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:818:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(ofp = fopen(option_output, "wb"))) data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:906:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tmp_hdr, &info[i]->hdr, sz); data/wine-5.0/tools/widl/client.c:500:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(client = fopen(client_name, "w"))) data/wine-5.0/tools/widl/hash.c:31:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_16[128 * 3] = { data/wine-5.0/tools/widl/hash.c:69:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_32[128 * 3] = { data/wine-5.0/tools/widl/hash.c:107:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_48[128 * 3] = { data/wine-5.0/tools/widl/hash.c:145:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_64[128 * 3] = { data/wine-5.0/tools/widl/hash.c:182:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_80[128 * 3] = { data/wine-5.0/tools/widl/hash.c:220:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_112[128 * 3] = { data/wine-5.0/tools/widl/hash.c:258:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_128[128 * 3] = { data/wine-5.0/tools/widl/hash.c:296:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_144[128 * 3] = { data/wine-5.0/tools/widl/hash.c:334:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_160[128 * 3] = { data/wine-5.0/tools/widl/hash.c:372:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_176[128 * 3] = { data/wine-5.0/tools/widl/hash.c:410:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_208[128 * 3] = { data/wine-5.0/tools/widl/hash.c:448:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char Lookup_224[128 * 3] = { data/wine-5.0/tools/widl/header.c:148:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[37]; data/wine-5.0/tools/widl/header.c:150:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x", data/wine-5.0/tools/widl/header.c:199:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/wine-5.0/tools/widl/header.c:234:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "__C89_NAMELESSSTRUCTNAME%d", ++nameless_struct_i); data/wine-5.0/tools/widl/header.c:245:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "__C89_NAMELESSUNIONNAME%d", ++nameless_union_i); data/wine-5.0/tools/widl/header.c:969:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inherit_name[256]; data/wine-5.0/tools/widl/header.c:994:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inherit_name[256]; data/wine-5.0/tools/widl/header.c:1015:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[255]; data/wine-5.0/tools/widl/header.c:1408:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). local_stubs = fopen(local_stubs_name, "w"); data/wine-5.0/tools/widl/header.c:1621:40: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (p <= hname || strcmp( p, ".h" )) strcat(hname, ".h"); data/wine-5.0/tools/widl/header.c:1795:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(header = fopen(header_name, "w"))) { data/wine-5.0/tools/widl/proxy.c:86:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(proxy = fopen(proxy_name, "w"))) data/wine-5.0/tools/widl/register.c:43:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[40]; data/wine-5.0/tools/widl/register.c:44:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}", data/wine-5.0/tools/widl/register.c:268:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *f = fopen( regscript_name, "w" ); data/wine-5.0/tools/widl/register.c:302:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id_part[12] = ""; data/wine-5.0/tools/widl/register.c:323:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(id_part, "\\%d", expr->cval); data/wine-5.0/tools/widl/server.c:453:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(server = fopen(server_name, "w"))) data/wine-5.0/tools/widl/typegen.c:1161:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[128]; data/wine-5.0/tools/widl/typegen.c:1166:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "/* flags:" ); data/wine-5.0/tools/widl/typegen.c:1167:27: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MustSize) strcat( buffer, " must size," ); data/wine-5.0/tools/widl/typegen.c:1168:27: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & MustFree) strcat( buffer, " must free," ); data/wine-5.0/tools/widl/typegen.c:1169:25: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsPipe) strcat( buffer, " pipe," ); data/wine-5.0/tools/widl/typegen.c:1170:23: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsIn) strcat( buffer, " in," ); data/wine-5.0/tools/widl/typegen.c:1171:24: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsOut) strcat( buffer, " out," ); data/wine-5.0/tools/widl/typegen.c:1172:27: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsReturn) strcat( buffer, " return," ); data/wine-5.0/tools/widl/typegen.c:1173:29: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsBasetype) strcat( buffer, " base type," ); data/wine-5.0/tools/widl/typegen.c:1174:28: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsByValue) strcat( buffer, " by value," ); data/wine-5.0/tools/widl/typegen.c:1175:30: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (flags & IsSimpleRef) strcat( buffer, " simple ref," ); data/wine-5.0/tools/widl/typegen.c:1176:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (flags >> 13) sprintf( buffer + strlen(buffer), " srv size=%u,", (flags >> 13) * 8 ); data/wine-5.0/tools/widl/typegen.c:1177:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer + strlen( buffer ) - 1, " */" ); data/wine-5.0/tools/widl/typegen.c:4641:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[16]; data/wine-5.0/tools/widl/typegen.c:4648:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "_W%u", i++); data/wine-5.0/tools/widl/typelib.c:323:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return open(name, O_RDONLY | O_BINARY ); data/wine-5.0/tools/widl/typelib.c:325:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(file_name, O_RDONLY | O_BINARY ); data/wine-5.0/tools/widl/typelib.c:343:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tlb_name, importlib->name, len); data/wine-5.0/tools/widl/typelib.c:344:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tlb_name + len, ".tlb"); data/wine-5.0/tools/widl/typetree.c:97:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ptr, "ABI"); data/wine-5.0/tools/widl/typetree.c:159:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[3]; data/wine-5.0/tools/widl/utils.c:300:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( name, O_WRONLY | O_CREAT | O_TRUNC | O_BINARY, 0666 ); data/wine-5.0/tools/widl/utils.c:322:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). put_word( atoi( str + 1 )); data/wine-5.0/tools/widl/utils.c:380:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( name, O_WRONLY | O_CREAT | O_TRUNC | O_BINARY, 0666 ); data/wine-5.0/tools/widl/utils.c:398:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output_buffer + output_buffer_pos, data, size ); data/wine-5.0/tools/widl/widl.c:255:15: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). version = atoi(p) * 0x10000; data/wine-5.0/tools/widl/widl.c:261:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). version += atoi(p + 1) * 0x100; data/wine-5.0/tools/widl/widl.c:267:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). version += atoi(p + 1); data/wine-5.0/tools/widl/widl.c:271:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version_str[11]; data/wine-5.0/tools/widl/widl.c:384:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). dlldata = fopen(dlldata_name, "w"); data/wine-5.0/tools/widl/widl.c:430:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). dlldata = fopen(dlldata_name, "r"); data/wine-5.0/tools/widl/widl.c:529:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). idfile = fopen(idfile_name, "w"); data/wine-5.0/tools/widl/widl.c:858:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(header_name, ".h"); data/wine-5.0/tools/widl/widl.c:863:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(typelib_name, ".tlb"); data/wine-5.0/tools/widl/widl.c:868:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(proxy_name, "_p.c"); data/wine-5.0/tools/widl/widl.c:873:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(client_name, "_c.c"); data/wine-5.0/tools/widl/widl.c:878:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(server_name, "_s.c"); data/wine-5.0/tools/widl/widl.c:883:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(regscript_name, "_r.rgs"); data/wine-5.0/tools/widl/widl.c:888:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(idfile_name, "_i.c"); data/wine-5.0/tools/widl/widl.c:911:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( name, ".XXXXXX" ); data/wine-5.0/tools/widl/widl.c:930:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(parser_in = fopen(temp_name, "r"))) { data/wine-5.0/tools/widl/widl.c:936:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(parser_in = fopen(input_name, "r"))) { data/wine-5.0/tools/widl/write_msft.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[0]; /* preceded by two bytes of encoded (length << 2) + flags in the low two bits. */ data/wine-5.0/tools/widl/write_msft.c:88:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char *typelib_segment_data[MSFT_SEG_MAX]; data/wine-5.0/tools/widl/write_msft.c:302:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(converted_name + 4, name, length); data/wine-5.0/tools/widl/write_msft.c:353:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(converted_string + 2, string, length); data/wine-5.0/tools/widl/write_msft.c:564:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&name_space->namelen, encoded_name, length); data/wine-5.0/tools/widl/write_msft.c:608:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(string_space, encoded_string, length); data/wine-5.0/tools/widl/write_msft.c:689:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&importfile->filename, encoded_string, length); data/wine-5.0/tools/widl/write_msft.c:709:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&guid.guid, &importlib->guid, sizeof(GUID)); data/wine-5.0/tools/widl/write_msft.c:728:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&guid.guid, &importinfo->guid, sizeof(GUID)); data/wine-5.0/tools/widl/write_msft.c:1198:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&typelib->typelib_segment_data[MSFT_SEG_CUSTDATA][offset+2], &value, 4); data/wine-5.0/tools/widl/write_msft.c:1209:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&typelib->typelib_segment_data[MSFT_SEG_CUSTDATA][offset+2], &len, sizeof(len)); data/wine-5.0/tools/widl/write_msft.c:1210:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&typelib->typelib_segment_data[MSFT_SEG_CUSTDATA][offset+6], value, len); data/wine-5.0/tools/widl/write_msft.c:2668:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char typelib_id[13] = "#1"; data/wine-5.0/tools/widl/write_msft.c:2672:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( typelib_id, "#%d", expr->cval ); data/wine-5.0/tools/widl/write_msft.c:2690:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char info_string[128]; data/wine-5.0/tools/widl/write_msft.c:2734:32: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cur_time = time_override ? atol( time_override) : time(NULL); data/wine-5.0/tools/winebuild/import.c:166:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const ppc_regs[32] = { "r0", "r1", "r2", "r3", "r4", "r5", "r6", "r7", data/wine-5.0/tools/winebuild/import.c:273:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( buffer, O_RDONLY )) != -1) data/wine-5.0/tools/winebuild/import.c:352:30: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (!strchr( ret, '.' )) strcat( ret, ".dll" ); data/wine-5.0/tools/winebuild/import.c:617:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *cmd, buffer[1024], name_prefix[16]; data/wine-5.0/tools/winebuild/main.c:189:37: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). spec->subsystem_minor = atoi( minor ); data/wine-5.0/tools/winebuild/main.c:191:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). spec->subsystem_major = atoi( major ); data/wine-5.0/tools/winebuild/main.c:414:31: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). spec->heap_size = atoi(optarg); data/wine-5.0/tools/winebuild/parser.c:39:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char ParseBuffer[512]; data/wine-5.0/tools/winebuild/parser.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char TokenBuffer[512]; data/wine-5.0/tools/winebuild/parser.c:50:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const TypeNames[TYPE_NBTYPES] = data/wine-5.0/tools/winebuild/parser.c:77:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const ArgNames[ARG_MAXARG + 1] = data/wine-5.0/tools/winebuild/parser.c:873:38: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (odp->u.func.nb_args > 0) memcpy( odp->u.func.args, odp16->u.func.args, data/wine-5.0/tools/winebuild/parser.c:906:38: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (!parse_spec_ordinal( atoi(token), spec )) continue; data/wine-5.0/tools/winebuild/parser.c:1047:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ordinal = atoi( token+1 ); data/wine-5.0/tools/winebuild/res32.c:289:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (!str->str) sprintf( ret, "%04x", str->id ); data/wine-5.0/tools/winebuild/res32.c:682:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( res_file, O_WRONLY|O_CREAT|O_TRUNC|O_BINARY, 0600 )) == -1) data/wine-5.0/tools/winebuild/spec16.c:50:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const nop_sequence[4] = data/wine-5.0/tools/winebuild/spec16.c:71:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[MAX_ARGUMENTS*2+1]; data/wine-5.0/tools/winebuild/spec16.c:90:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case ARG_DOUBLE: strcat( buffer, "ll" ); break; data/wine-5.0/tools/winebuild/spec16.c:241:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[80]; data/wine-5.0/tools/winebuild/spec16.c:247:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "p_" ); data/wine-5.0/tools/winebuild/spec16.c:250:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "v_" ); data/wine-5.0/tools/winebuild/spec16.c:254:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( buffer, "c_" ); data/wine-5.0/tools/winebuild/spec16.c:266:37: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (odp->flags & FLAG_REGISTER) strcat( buffer, "_regs" ); data/wine-5.0/tools/winebuild/spec16.c:465:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char args1[80]; data/wine-5.0/tools/winebuild/spec16.c:491:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name1[80]; data/wine-5.0/tools/winebuild/spec16.c:849:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char data_segment[16] = { 0 }; data/wine-5.0/tools/winebuild/spec32.c:51:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char builtin_signature[32] = "Wine builtin DLL"; data/wine-5.0/tools/winebuild/spec32.c:52:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char fakedll_signature[32] = "Wine placeholder DLL"; data/wine-5.0/tools/winebuild/spec32.c:107:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void get_arg_string( ORDDEF *odp, char str[MAX_ARGUMENTS + 1] ) data/wine-5.0/tools/winebuild/spec32.c:144:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static void output_data_directories( const char *names[16] ) data/wine-5.0/tools/winebuild/spec32.c:166:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_ARGUMENTS + 2]; data/wine-5.0/tools/winebuild/spec32.c:636:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *data_dirs[16] = { NULL }; data/wine-5.0/tools/winebuild/spec32.c:1083:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( argv[i], O_RDWR | O_BINARY )) == -1) fatal_perror( "Cannot open %s", argv[i] ); data/wine-5.0/tools/winebuild/utils.c:154:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( array.str, src.str, array.count * sizeof(*array.str) ); data/wine-5.0/tools/winebuild/utils.c:367:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *alt_names[2]; data/wine-5.0/tools/winebuild/utils.c:512:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, prefix, ext - prefix ); data/wine-5.0/tools/winebuild/utils.c:513:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name + (ext - prefix), ".XXXXXX" ); data/wine-5.0/tools/winebuild/utils.c:518:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name, "/tmp/" ); data/wine-5.0/tools/winebuild/utils.c:519:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name + 5, basename, ext - basename ); data/wine-5.0/tools/winebuild/utils.c:520:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( name + 5 + (ext - basename), ".XXXXXX" ); data/wine-5.0/tools/winebuild/utils.c:561:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fd = open( file, O_RDONLY | O_BINARY )) == -1) fatal_perror( "Cannot open %s", file ); data/wine-5.0/tools/winebuild/utils.c:624:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output_buffer + output_buffer_pos, data, size ); data/wine-5.0/tools/winebuild/utils.c:713:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *file = fopen( name, "r" ); data/wine-5.0/tools/winebuild/utils.c:718:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen( fullname, "r" ); data/wine-5.0/tools/winebuild/utils.c:753:33: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(output_file = fopen( output_file_name, "w" ))) data/wine-5.0/tools/winebuild/utils.c:778:25: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(output_file = fopen( tmp_file, "w" ))) data/wine-5.0/tools/winebuild/utils.c:798:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return atoi( end + 1 ); data/wine-5.0/tools/winebuild/utils.c:876:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buffer[256]; data/wine-5.0/tools/winedump/debug.c:496:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char namebuff[9]; data/wine-5.0/tools/winedump/debug.c:501:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(namebuff, coff_sym->N.ShortName, 8); data/wine-5.0/tools/winedump/debug.c:517:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[7]; data/wine-5.0/tools/winedump/debug.c:524:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "#%d", sc); data/wine-5.0/tools/winedump/debug.c:676:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char n_buffer[16]; data/wine-5.0/tools/winedump/debug.c:721:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(n_buffer, "<0x%02x>", stab_ptr->n_type); data/wine-5.0/tools/winedump/dump.c:78:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[4 * 1024]; data/wine-5.0/tools/winedump/dump.c:106:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( buf, str, len ); data/wine-5.0/tools/winedump/dump.c:181:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(tmp, "void"); data/wine-5.0/tools/winedump/dump.c:184:36: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (i > start) strcat(tmp, ", "); data/wine-5.0/tools/winedump/dump.c:187:37: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if (symbol.varargs) strcat(tmp, ", ..."); data/wine-5.0/tools/winedump/dump.c:203:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str, "{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}", data/wine-5.0/tools/winedump/dump.c:254:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(name, O_RDONLY | O_BINARY); data/wine-5.0/tools/winedump/emf.c:50:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[80]; data/wine-5.0/tools/winedump/font.c:87:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dfCopyright[60]; /* Copyright notice */ data/wine-5.0/tools/winedump/le.c:42:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char o32_name[4]; data/wine-5.0/tools/winedump/le.c:66:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[8]; data/wine-5.0/tools/winedump/lib.c:98:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (!strcmp((const char *)ish[i].Name, ".idata$5")) data/wine-5.0/tools/winedump/lib.c:102:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. else if (!strcmp((const char *)ish[i].Name, ".idata$6")) data/wine-5.0/tools/winedump/lib.c:106:53: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. else if (globals.do_debug && !strcmp((const char *)ish[i].Name, ".debug$S")) data/wine-5.0/tools/winedump/lib.c:179:55: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). unsigned long long_names_offset = atol((const char *)&iamh->Name[1]); data/wine-5.0/tools/winedump/lnk.c:160:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char a[1]; data/wine-5.0/tools/winedump/lnk.c:298:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char table_dec85[0x80] = { data/wine-5.0/tools/winedump/lnk.c:358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comp_str[40]; data/wine-5.0/tools/winedump/lnk.c:377:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(comp_str, comp, feat - comp); data/wine-5.0/tools/winedump/main.c:123:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). globals.start_ordinal = atoi (arg); data/wine-5.0/tools/winedump/main.c:131:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). globals.end_ordinal = atoi (arg); data/wine-5.0/tools/winedump/main.c:140:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char symstring[256]; /* keep count with "%<width>s" below */ data/wine-5.0/tools/winedump/main.c:143:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(arg, "rt"))) data/wine-5.0/tools/winedump/main.c:341:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, (const void*)ptr, len); data/wine-5.0/tools/winedump/minidump.c:247:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/wine-5.0/tools/winedump/minidump.c:256:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tmp, "Intel "); data/wine-5.0/tools/winedump/minidump.c:267:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(tmp, " ("); data/wine-5.0/tools/winedump/minidump.c:271:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp + strlen(tmp), "%c%d", 'A' + ((msi->ProcessorRevision>>4)&0xf)-0x0a, msi->ProcessorRevision&0xf); data/wine-5.0/tools/winedump/minidump.c:273:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp + strlen(tmp), "%c%d", 'A' + HIBYTE(msi->ProcessorRevision), LOBYTE(msi->ProcessorRevision)); data/wine-5.0/tools/winedump/minidump.c:275:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(tmp + strlen(tmp), "%d.%d", HIBYTE(msi->ProcessorRevision), LOBYTE(msi->ProcessorRevision)); data/wine-5.0/tools/winedump/misc.c:85:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp + len - 8, "%d", num); data/wine-5.0/tools/winedump/misc.c:104:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (newstr, start, end - start); data/wine-5.0/tools/winedump/misc.c:127:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, newstr, newlen); data/wine-5.0/tools/winedump/misc.c:199:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[128]; data/wine-5.0/tools/winedump/misc.c:209:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen (fname, mode); data/wine-5.0/tools/winedump/msc.c:52:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[256 + 1]; data/wine-5.0/tools/winedump/msc.c:53:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, s->name, s->namelen); data/wine-5.0/tools/winedump/msc.c:190:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[128]; data/wine-5.0/tools/winedump/msc.c:194:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case fv_integer: sprintf(tmp, "0x%x", fv->v.i); break; data/wine-5.0/tools/winedump/msc.c:195:23: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. case fv_longlong: sprintf(tmp, "0x%x%08x", (unsigned)(fv->v.llu >> 32), (unsigned)fv->v.llu); break; data/wine-5.0/tools/winedump/msc.c:215:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[256]; data/wine-5.0/tools/winedump/msc.c:220:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 1: strcpy(tmp, "private "); break; data/wine-5.0/tools/winedump/msc.c:221:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 2: strcpy(tmp, "protected "); break; data/wine-5.0/tools/winedump/msc.c:222:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. case 3: strcpy(tmp, "public "); break; data/wine-5.0/tools/winedump/msc.c:227:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 1: strcat(tmp, "virtual "); break; data/wine-5.0/tools/winedump/msc.c:228:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 2: strcat(tmp, "static "); break; data/wine-5.0/tools/winedump/msc.c:229:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 3: strcat(tmp, "friend "); break; data/wine-5.0/tools/winedump/msc.c:230:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 4: strcat(tmp, "introducing virtual "); break; data/wine-5.0/tools/winedump/msc.c:231:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 5: strcat(tmp, "pure virtual "); break; data/wine-5.0/tools/winedump/msc.c:232:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 6: strcat(tmp, "pure introducing virtual "); break; data/wine-5.0/tools/winedump/msc.c:233:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. case 7: strcat(tmp, "reserved "); break; data/wine-5.0/tools/winedump/msc.c:235:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if ((attr >> 5) & 1) strcat(tmp, "pseudo "); data/wine-5.0/tools/winedump/msc.c:236:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if ((attr >> 6) & 1) strcat(tmp, "no-inherit "); data/wine-5.0/tools/winedump/msc.c:237:26: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. if ((attr >> 7) & 1) strcat(tmp, "no-construct "); data/wine-5.0/tools/winedump/msc.c:243:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[1024]; data/wine-5.0/tools/winedump/msc.c:259:32: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (prop & ~0x01FF) pos += sprintf(tmp, "unk%x", prop & ~0x01FF); data/wine-5.0/tools/winedump/msc.c:1148:32: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[16]; data/wine-5.0/tools/winedump/msc.c:1149:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "machine=%x", sym->compiland_v1.unknown & 0xFF); data/wine-5.0/tools/winedump/msc.c:1165:32: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char tmp[16]; data/wine-5.0/tools/winedump/msc.c:1166:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tmp, "language=%x", (sym->compiland_v1.unknown >> 8) & 0xFF); data/wine-5.0/tools/winedump/msc.c:1410:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/wine-5.0/tools/winedump/msc.c:1415:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(filename, p_fn->name, p_fn->namelen); data/wine-5.0/tools/winedump/ne.c:166:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[5]; data/wine-5.0/tools/winedump/ne.c:182:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( buffer, "%04x", id ); data/wine-5.0/tools/winedump/ne.c:217:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[256]; data/wine-5.0/tools/winedump/ne.c:240:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( name, pstr + 1, *pstr ); data/wine-5.0/tools/winedump/ne.c:321:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[256]; data/wine-5.0/tools/winedump/output.c:65:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ord_spec[20]; data/wine-5.0/tools/winedump/output.c:78:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (ord_spec, " -i386"); /* For binary compatibility only */ data/wine-5.0/tools/winedump/output.c:500:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ord_spec[16]; data/wine-5.0/tools/winedump/pdb.c:81:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + i * pdb->block_size, data/wine-5.0/tools/winedump/pdb.c:389:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sidx, data/wine-5.0/tools/winedump/pdb.c:404:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sidx, data/wine-5.0/tools/winedump/pdb.c:806:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer + i * header->block_size, data/wine-5.0/tools/winedump/pe.c:146:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const DirectoryNames[16] = { data/wine-5.0/tools/winedump/pe.c:395:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ((offset = atoi((const char*)sectHead->Name + 1)) < *(const DWORD*)strtable)) data/wine-5.0/tools/winedump/pe.c:545:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if ((const char *)RVA(pFunc[i],1) >= (const char *)exportDir && data/wine-5.0/tools/winedump/pe.c:546:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (const char *)RVA(pFunc[i],1) < (const char *)exportDir + size) data/wine-5.0/tools/winedump/pe.c:547:39: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. printf(" (-> %s)", (const char *)RVA(pFunc[i],1)); data/wine-5.0/tools/winedump/pe.c:667:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const reg_names[16] = data/wine-5.0/tools/winedump/pe.c:780:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char intregs[32] = {0}, intregspop[32] = {0}, vfpregs[32] = {0}; data/wine-5.0/tools/winedump/pe.c:805:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregs, "r4-r%u", fnc->u.s.Reg + 4); data/wine-5.0/tools/winedump/pe.c:806:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregspop, "r4-r%u", fnc->u.s.Reg + 4); data/wine-5.0/tools/winedump/pe.c:810:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(intregs, "r4"); data/wine-5.0/tools/winedump/pe.c:811:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(intregspop, "r4"); data/wine-5.0/tools/winedump/pe.c:816:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, ", "); data/wine-5.0/tools/winedump/pe.c:818:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, ", "); data/wine-5.0/tools/winedump/pe.c:825:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregs, "r%u-r3", (~fnc->u.s.StackAdjust) & 3); data/wine-5.0/tools/winedump/pe.c:826:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregspop, "r%u-r3", (~fnc->u.s.StackAdjust) & 3); data/wine-5.0/tools/winedump/pe.c:830:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregs, "r3"); data/wine-5.0/tools/winedump/pe.c:831:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregspop, "r3"); data/wine-5.0/tools/winedump/pe.c:836:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, ", "); data/wine-5.0/tools/winedump/pe.c:838:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, ", "); data/wine-5.0/tools/winedump/pe.c:843:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregs, "r%u-r%u", (~fnc->u.s.StackAdjust) & 3, fnc->u.s.Reg + 4); data/wine-5.0/tools/winedump/pe.c:844:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(intregspop, "r%u-r%u", (~fnc->u.s.StackAdjust) & 3, fnc->u.s.Reg + 4); data/wine-5.0/tools/winedump/pe.c:848:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, ", "); data/wine-5.0/tools/winedump/pe.c:850:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, ", "); data/wine-5.0/tools/winedump/pe.c:857:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(intregs, "none"); data/wine-5.0/tools/winedump/pe.c:858:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(intregspop, "none"); data/wine-5.0/tools/winedump/pe.c:864:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, "r11"); data/wine-5.0/tools/winedump/pe.c:865:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, "r11"); data/wine-5.0/tools/winedump/pe.c:869:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, "r11, lr"); data/wine-5.0/tools/winedump/pe.c:871:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, "r11"); data/wine-5.0/tools/winedump/pe.c:873:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, "r11, pc"); data/wine-5.0/tools/winedump/pe.c:877:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregs, "lr"); data/wine-5.0/tools/winedump/pe.c:879:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(intregspop, "pc"); data/wine-5.0/tools/winedump/pe.c:885:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(vfpregs, "d8-d%u", fnc->u.s.Reg + 8); data/wine-5.0/tools/winedump/pe.c:887:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(vfpregs, "d8"); data/wine-5.0/tools/winedump/pe.c:890:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(vfpregs, "none"); data/wine-5.0/tools/winedump/pe.c:2021:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char escapes[32] = ".......abtnvfr.............e...."; data/wine-5.0/tools/winedump/pe.c:2022:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/tools/winedump/pe.c:2036:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\x%02x", *str ); data/wine-5.0/tools/winedump/pe.c:2043:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%c", escapes[*str] ); data/wine-5.0/tools/winedump/pe.c:2045:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%03o", *str ); data/wine-5.0/tools/winedump/pe.c:2047:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%o", *str ); data/wine-5.0/tools/winedump/pe.c:2061:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char escapes[32] = ".......abtnvfr.............e...."; data/wine-5.0/tools/winedump/pe.c:2062:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/tools/winedump/pe.c:2077:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\x%04x", *str ); data/wine-5.0/tools/winedump/pe.c:2079:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\x%x", *str ); data/wine-5.0/tools/winedump/pe.c:2086:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%c", escapes[*str] ); data/wine-5.0/tools/winedump/pe.c:2088:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%03o", *str ); data/wine-5.0/tools/winedump/pe.c:2090:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. pos += sprintf( pos, "\\%o", *str ); data/wine-5.0/tools/winedump/pe.c:2429:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ordinal_text[256]; data/wine-5.0/tools/winedump/tlb.c:146:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char * const tkind[TKIND_MAX] = { data/wine-5.0/tools/winedump/tlb.c:197:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/tools/winedump/tlb.c:227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/wine-5.0/tools/winedump/tlb.c:270:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char *vartypes[VT_LPWSTR+1] = { data/wine-5.0/tools/winedump/tlb.c:570:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/wine-5.0/tools/winedump/tlb.c:571:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "\\%u", c); data/wine-5.0/tools/winedump/tlb.c:1266:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/tools/winedump/tlb.c:1269:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Block entry %d", idx); data/wine-5.0/tools/winedump/tlb.c:1327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/tools/winedump/tlb.c:1329:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Other typeinfo %d", idx); data/wine-5.0/tools/winedump/tlb.c:1596:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/tools/winedump/tlb.c:1601:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "variable %d", i); data/wine-5.0/tools/winedump/tlb.c:1711:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/tools/winedump/tlb.c:1713:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "impl.type %d (current offset %#x)", i, offset); data/wine-5.0/tools/winedump/tlb.c:1740:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/wine-5.0/tools/winedump/tlb.c:1744:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "function %d (current offset %#x)", i, offset); data/wine-5.0/tools/winedump/tlb.c:1839:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/tools/winedump/tlb.c:1842:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "arg %d", j); data/wine-5.0/tools/winedump/tlb.c:1991:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/wine-5.0/tools/winedump/tlb.c:1995:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Block %d", i); data/wine-5.0/tools/winedump/winedump.h:86:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arg_type [MAX_FUNCTION_ARGS]; data/wine-5.0/tools/winedump/winedump.h:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arg_flag [MAX_FUNCTION_ARGS]; data/wine-5.0/tools/winedump/winedump.h:88:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *arg_text [MAX_FUNCTION_ARGS]; data/wine-5.0/tools/winedump/winedump.h:89:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *arg_name [MAX_FUNCTION_ARGS]; data/wine-5.0/tools/winedump/winedump.h:97:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char symbolname[1]; /* static string, be ANSI C compliant by [1] */ data/wine-5.0/tools/winegcc/utils.c:203:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ( !(file = fopen(name, "w")) ) data/wine-5.0/tools/winegcc/utils.c:215:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char elf_sig[4] = "\177ELF"; data/wine-5.0/tools/winegcc/utils.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(res_sig)]; data/wine-5.0/tools/winegcc/utils.c:219:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( filename, O_RDONLY ); data/wine-5.0/tools/winegcc/winegcc.c:507:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int ret = 0, fd = open( file, O_RDONLY ); data/wine-5.0/tools/winegcc/winegcc.c:510:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char header[16]; data/wine-5.0/tools/winegcc/winegcc.c:598:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, target_multiarch, target_len ); data/wine-5.0/tools/winegcc/winegcc.c:601:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p, build_multiarch, build_len ); data/wine-5.0/tools/winegcc/winegcc.c:608:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p + 4, bit_suffix, 2 ); data/wine-5.0/tools/winegcc/winegcc.c:614:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p + 4, bit_suffix, 2 ); data/wine-5.0/tools/winegcc/winegcc.c:619:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( p + 4, other_bit_suffix, 2 ); data/wine-5.0/tools/winegcc/winegcc.c:915:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sout = open(out, O_RDONLY); data/wine-5.0/tools/wmc/lang.c:195:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). GetCPInfoExA( atoi(cp), 0, &info ); data/wine-5.0/tools/wmc/lang.c:213:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar( codepage, flags, src, srclen, dst, dstlen ); data/wine-5.0/tools/wmc/mcl.c:111:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char char_table[256] = { data/wine-5.0/tools/wmc/po.c:556:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( name, O_RDONLY | O_BINARY ); data/wine-5.0/tools/wmc/po.c:722:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/tools/wmc/po.c:740:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen( name, "r" ))) return; data/wine-5.0/tools/wmc/utils.c:304:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open( name, O_WRONLY | O_CREAT | O_TRUNC | O_BINARY, 0666 ); data/wine-5.0/tools/wmc/utils.c:315:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( output_buffer + output_buffer_pos, data, size ); data/wine-5.0/tools/wmc/wmc.c:181:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cmdline, "wmc "); data/wine-5.0/tools/wmc/wmc.c:295:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(output_name, ".rc"); data/wine-5.0/tools/wmc/wmc.c:301:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(header_name, ".h"); data/wine-5.0/tools/wmc/wmc.c:306:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(yyin = fopen(input_name, "rb"))) data/wine-5.0/tools/wmc/write.c:168:7: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(fname, "w"); data/wine-5.0/tools/wmc/write.c:346:41: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. int n = sprintf(cptr, "\\x%04x", *uc & 0xffff); data/wine-5.0/tools/wmc/write.c:407:41: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. int n = sprintf(cptr, "\\x%02x", *cc & 0xff); data/wine-5.0/tools/wmc/write.c:482:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen(fname, "w"); data/wine-5.0/tools/wmc/write.c:551:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( cptr, ".bin" ); data/wine-5.0/tools/wrc/dumpres.c:105:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/wine-5.0/tools/wrc/dumpres.c:130:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[256]; data/wine-5.0/tools/wrc/dumpres.c:137:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer, "%d", n->name.i_name); data/wine-5.0/tools/wrc/genres.c:492:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(res->data[res->size]), raw->data + offset, wsize); data/wine-5.0/tools/wrc/genres.c:1707:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[MAXNAMELEN+1]; data/wine-5.0/tools/wrc/genres.c:1743:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%u", nid->name.i_name); data/wine-5.0/tools/wrc/newstruc.c:573:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rd->data + ide.offset, &info, sizeof(info)); data/wine-5.0/tools/wrc/newstruc.c:665:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rd->data + cde.offset, &info, sizeof(info)); data/wine-5.0/tools/wrc/newstruc.c:789:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char riff[4] = "RIFF"; data/wine-5.0/tools/wrc/newstruc.c:790:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char acon[4] = "ACON"; data/wine-5.0/tools/wrc/newstruc.c:791:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char list[4] = "LIST"; data/wine-5.0/tools/wrc/newstruc.c:792:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char info[4] = "INFO"; data/wine-5.0/tools/wrc/newstruc.c:793:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char inam[4] = "INAM"; data/wine-5.0/tools/wrc/newstruc.c:794:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char iart[4] = "IART"; data/wine-5.0/tools/wrc/newstruc.c:795:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char fram[4] = "fram"; data/wine-5.0/tools/wrc/newstruc.c:796:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char icon[4] = "icon"; data/wine-5.0/tools/wrc/newstruc.c:797:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char anih[4] = "anih"; data/wine-5.0/tools/wrc/newstruc.c:798:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char rate[4] = "rate"; data/wine-5.0/tools/wrc/newstruc.c:799:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char seq[4] = "seq "; data/wine-5.0/tools/wrc/newstruc.c:1215:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst->data + dst->size, src->data + offs, len); data/wine-5.0/tools/wrc/po.c:680:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[20]; data/wine-5.0/tools/wrc/po.c:687:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( name, "%02x-%02x", lang->id, lang->sub ); data/wine-5.0/tools/wrc/po.c:1124:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open( name, O_RDONLY | O_BINARY ); data/wine-5.0/tools/wrc/po.c:1292:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( new->entries, stt->entries, new->nentries * sizeof(*new->entries) ); data/wine-5.0/tools/wrc/po.c:1371:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *english_block_name[2] = { "040904b0", "040904e4" }; data/wine-5.0/tools/wrc/po.c:1372:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *block_name[2]; data/wine-5.0/tools/wrc/po.c:1543:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/wine-5.0/tools/wrc/po.c:1561:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen( name, "r" ))) data/wine-5.0/tools/wrc/readres.c:237:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->str.wstr, &res->data[tag], idx-tag); data/wine-5.0/tools/wrc/readres.c:271:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(str->str.wstr, &res->data[tag], idx-tag); data/wine-5.0/tools/wrc/readres.c:355:7: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(inname, "rb"); data/wine-5.0/tools/wrc/utils.c:301:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). return MultiByteToWideChar( codepage, flags, src, srclen, dst, dstlen ); data/wine-5.0/tools/wrc/utils.c:367:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->str.wstr, str->str.wstr, ret->size * sizeof(WCHAR) ); data/wine-5.0/tools/wrc/utils.c:375:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( ret->str.cstr, str->str.cstr, ret->size ); data/wine-5.0/tools/wrc/wrc.c:216:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/wine-5.0/tools/wrc/wrc.c:265:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(output = fopen( output_name, "w" ))) data/wine-5.0/tools/wrc/wrc.c:300:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!(parser_in = fopen(input_name, "rb"))) data/wine-5.0/tools/wrc/wrc.c:363:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cmdline, "wrc "); data/wine-5.0/tools/wrc/wrc.c:564:21: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat( output_name, ".pot" ); data/wine-5.0/tools/wrc/wrc.c:581:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(output_name, ".res"); data/wine-5.0/tools/wrc/writeres.c:50:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zeros[3] = {0, 0, 0}; data/wine-5.0/tools/wrc/writeres.c:52:7: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fo = fopen(outname, "wb"); data/wine-5.0/dlls/advapi32/cred.c:530:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = SecKeychainAddGenericPassword(NULL, strlen(servername), servername, strlen(username), data/wine-5.0/dlls/advapi32/cred.c:530:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = SecKeychainAddGenericPassword(NULL, strlen(servername), servername, strlen(username), data/wine-5.0/dlls/advapi32/cred.c:531:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). username, strlen(password), password, &keychain_item); data/wine-5.0/dlls/advapi32/cred.c:536:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = SecKeychainFindGenericPassword(NULL, strlen(servername), servername, strlen(username), data/wine-5.0/dlls/advapi32/cred.c:536:87: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = SecKeychainFindGenericPassword(NULL, strlen(servername), servername, strlen(username), data/wine-5.0/dlls/advapi32/cred.c:564:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). preserve_blob ? 0 : strlen(password), data/wine-5.0/dlls/advapi32/crypt.c:2447:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(dev_random, pbBuffer, dwLen) == (ssize_t)dwLen) data/wine-5.0/dlls/advapi32/crypt_lmhash.c:51:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CRYPT_LMhash( (unsigned char*)hash, (const unsigned char*)password, strlen(password) ); data/wine-5.0/dlls/advapi32/registry.c:382:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return RegSetKeyValueA( hkey, subkey, NULL, type, data, strlen(data) + 1 ); data/wine-5.0/dlls/advapi32/service.c:143:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n += (strlen( &str[n] ) + 1); data/wine-5.0/dlls/advapi32/service.c:381:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (argc=0, p=strA; *p; p += strlen(p) + 1) data/wine-5.0/dlls/advapi32/tests/crypt.c:578:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ch = szName + strlen(szName); data/wine-5.0/dlls/advapi32/tests/crypt.c:717:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). keyname = LocalAlloc(LMEM_ZEROINIT, (user ? strlen(userstr) : strlen(machinestr)) + 1); data/wine-5.0/dlls/advapi32/tests/crypt.c:717:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). keyname = LocalAlloc(LMEM_ZEROINIT, (user ? strlen(userstr) : strlen(machinestr)) + 1); data/wine-5.0/dlls/advapi32/tests/crypt.c:721:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = keyname + strlen(keyname); data/wine-5.0/dlls/advapi32/tests/crypt.c:891:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(result && cbProvName==(strlen(MS_DEF_PROV_A) + 1), "expected %i, got %d\n", (lstrlenA(MS_DEF_PROV_A) + 1), cbProvName); data/wine-5.0/dlls/advapi32/tests/crypt.c:945:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(originalGuid)+1); data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:313:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). in.Length = strlen(datastr); data/wine-5.0/dlls/advapi32/tests/crypt_lmhash.c:317:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). key.Length = strlen(keystr); data/wine-5.0/dlls/advapi32/tests/eventlog.c:374:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD count, toread, read, needed; data/wine-5.0/dlls/advapi32/tests/eventlog.c:385:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(NULL, 0, 0, NULL, 0, &read, NULL); data/wine-5.0/dlls/advapi32/tests/eventlog.c:401:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(NULL, 0, 0, NULL, 0, &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:413:95: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(NULL, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, NULL, 0, &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:421:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:429:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:441:69: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(handle, 0, 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:447:92: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(handle, EVENTLOG_SEQUENTIAL_READ, 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:453:86: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(handle, EVENTLOG_SEEK_READ, 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:460:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:467:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:474:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:496:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:507:101: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadEventLogA(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, buf, toread, &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:510:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). broken(read < toread), /* NT4 wants a buffer size way bigger than just 1 record */ data/wine-5.0/dlls/advapi32/tests/eventlog.c:805:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, needed = 0; data/wine-5.0/dlls/advapi32/tests/eventlog.c:813:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed)) && data/wine-5.0/dlls/advapi32/tests/eventlog.c:818:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, needed, &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:927:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, needed; data/wine-5.0/dlls/advapi32/tests/eventlog.c:937:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, sizeof(EVENTLOGRECORD), &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:948:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). 0, buf, needed, &read, &needed); data/wine-5.0/dlls/advapi32/tests/eventlog.c:953:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(record->Length == read, data/wine-5.0/dlls/advapi32/tests/eventlog.c:954:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). "Expected %d, got %d\n", read, record->Length); data/wine-5.0/dlls/advapi32/tests/registry.c:449:90: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hkey_main,"TP1_EXP_SZ",0,REG_EXPAND_SZ, (const BYTE *)sTestpath1, strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:451:79: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hkey_main,"TP1_SZ",0,REG_SZ, (const BYTE *)sTestpath1, strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:455:90: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hkey_main,"TP2_EXP_SZ",0,REG_EXPAND_SZ, (const BYTE *)sTestpath2, strlen(sTestpath2)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:728:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1) + 1, "(%d,%d)\n", (DWORD)strlen(sTestpath1) + 1, size); data/wine-5.0/dlls/advapi32/tests/registry.c:728:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1) + 1, "(%d,%d)\n", (DWORD)strlen(sTestpath1) + 1, size); data/wine-5.0/dlls/advapi32/tests/registry.c:850:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1, "strlen(sTestpath1)=%d size=%d\n", lstrlenA(sTestpath1), size); data/wine-5.0/dlls/advapi32/tests/registry.c:859:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1 || broken(size == strlen(sTestpath1)+2), data/wine-5.0/dlls/advapi32/tests/registry.c:859:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1 || broken(size == strlen(sTestpath1)+2), data/wine-5.0/dlls/advapi32/tests/registry.c:882:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1, "strlen(sTestpath1)=%d size=%d\n", lstrlenA(sTestpath1), size); data/wine-5.0/dlls/advapi32/tests/registry.c:890:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((size == strlen(expanded2)+1) || /* win2k3 SP1 */ data/wine-5.0/dlls/advapi32/tests/registry.c:891:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(expanded2)+2) || /* win2k3 SP2 */ data/wine-5.0/dlls/advapi32/tests/registry.c:892:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(sTestpath2)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:900:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded)+1 || broken(size == strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:900:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded)+1 || broken(size == strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:910:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded2)+1 || broken(size == strlen(sTestpath2)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:910:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded2)+1 || broken(size == strlen(sTestpath2)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:919:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1, "strlen(sTestpath1)=%d size=%d\n", lstrlenA(sTestpath1), size); data/wine-5.0/dlls/advapi32/tests/registry.c:928:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1 || broken(size == strlen(sTestpath1)+2), data/wine-5.0/dlls/advapi32/tests/registry.c:928:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(sTestpath1)+1 || broken(size == strlen(sTestpath1)+2), data/wine-5.0/dlls/advapi32/tests/registry.c:945:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded)+1 || broken(size == strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:945:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(expanded)+1 || broken(size == strlen(sTestpath1)+1), data/wine-5.0/dlls/advapi32/tests/registry.c:1785:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:1799:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:1820:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:1822:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxsubkeylen == strlen("subsubkey"), "maxsubkeylen = %u\n", maxsubkeylen); data/wine-5.0/dlls/advapi32/tests/registry.c:1823:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxclasslen == strlen(subsubkey_class), "maxclasslen = %u\n", maxclasslen); data/wine-5.0/dlls/advapi32/tests/registry.c:1834:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:1836:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxsubkeylen == strlen("subsubkey"), "maxsubkeylen = %u\n", maxsubkeylen); data/wine-5.0/dlls/advapi32/tests/registry.c:1837:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxclasslen == strlen(subsubkey_class), "maxclasslen = %u\n", maxclasslen); data/wine-5.0/dlls/advapi32/tests/registry.c:1856:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxvaluenamelen == strlen("value one"), "maxvaluenamelen = %u\n", maxvaluenamelen); data/wine-5.0/dlls/advapi32/tests/registry.c:1863:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(maxvaluenamelen == strlen("value one"), "maxvaluenamelen = %u\n", maxvaluenamelen); data/wine-5.0/dlls/advapi32/tests/registry.c:1871:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class) /* win2k */ || data/wine-5.0/dlls/advapi32/tests/registry.c:1880:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(classlen == strlen(subkey_class) /* win2k */ || data/wine-5.0/dlls/advapi32/tests/registry.c:1901:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:1924:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). classlen == strlen(subkey_class), "classlen = %u\n", classlen); data/wine-5.0/dlls/advapi32/tests/registry.c:3940:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(hFile, filename, strlen(filename), &size, NULL); data/wine-5.0/dlls/advapi32/tests/registry.c:3945:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = test_case[i].value ? strlen(test_case[i].value) + 1 : 0; data/wine-5.0/dlls/advapi32/tests/security.c:652:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(cchName == strlen("SeCreateTokenPrivilege") + 1, data/wine-5.0/dlls/advapi32/tests/security.c:659:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cchName == strlen("SeCreateTokenPrivilege"), data/wine-5.0/dlls/advapi32/tests/security.c:662:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int)strlen("SeCreateTokenPrivilege")); data/wine-5.0/dlls/advapi32/tests/security.c:2566:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(domain) == domain_size, "Expected %d, got %d\n", lstrlenA(domain), domain_size); data/wine-5.0/dlls/advapi32/tests/security.c:2584:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(domain) == domain_size, "Expected %d, got %d\n", lstrlenA(domain), domain_size); data/wine-5.0/dlls/advapi32/tests/security.c:4359:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len >= (strlen(exp_str) + 1), "Length mismatch (expected %d, got %d)\n", lstrlenA(exp_str) + 1, len); \ data/wine-5.0/dlls/advapi32/tests/security.c:4364:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len >= (strlen(exp_str1) + 1) || len >= (strlen(exp_str2) + 1), "Length mismatch (expected %d or %d, got %d)\n", lstrlenA(exp_str1) + 1, lstrlenA(exp_str2) + 1, len); \ data/wine-5.0/dlls/advapi32/tests/security.c:4364:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len >= (strlen(exp_str1) + 1) || len >= (strlen(exp_str2) + 1), "Length mismatch (expected %d or %d, got %d)\n", lstrlenA(exp_str1) + 1, lstrlenA(exp_str2) + 1, len); \ data/wine-5.0/dlls/advapi32/tests/security.c:7467:15: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL ret, equal; data/wine-5.0/dlls/advapi32/tests/security.c:7502:48: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ret = pEqualDomainSid(sid, domainsid, &equal); data/wine-5.0/dlls/advapi32/tests/security.c:7507:56: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == 0xdeadbeef, "%u: got %d\n", i, equal); data/wine-5.0/dlls/advapi32/tests/security.c:7513:43: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == 0, "%u: got %d\n", i, equal); data/wine-5.0/dlls/advapi32/tests/security.c:7521:43: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ret = pEqualDomainSid(sid, sid2, &equal); data/wine-5.0/dlls/advapi32/tests/security.c:7524:43: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == 1, "%u: got %d\n", i, equal); data/wine-5.0/dlls/advapi32/tests/service.c:623:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(displayname) == tempsize/2, data/wine-5.0/dlls/advapi32/tests/service.c:693:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(displaysize == strlen(servicename) * 2, data/wine-5.0/dlls/advapi32/tests/service.c:875:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(servicename) == tempsize/2, data/wine-5.0/dlls/advapi32/tests/service.c:889:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(servicename) == tempsize/2, data/wine-5.0/dlls/advpack/files.c:550:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char *last = FileList + strlen(FileList) - 1; data/wine-5.0/dlls/advpack/tests/advpack.c:198:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *str += strlen(*str); data/wine-5.0/dlls/advpack/tests/advpack.c:454:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(PROG_FILES_ROOT)+1, "Expected size %d, got %d\n", data/wine-5.0/dlls/advpack/tests/advpack.c:465:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(PROG_FILES_ROOT)+1, "Expected size %d, got %d\n", data/wine-5.0/dlls/advpack/tests/advpack.c:481:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(drive)+1, "Expected size %d, got %d\n", data/wine-5.0/dlls/advpack/tests/advpack.c:539:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(PROG_FILES_ROOT)+1, "Expected size %d, got %d\n", data/wine-5.0/dlls/advpack/tests/files.c:61:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/advpack/tests/files.c:62:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/advpack/tests/files.c:292:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tempname && (strlen(tempname) < (unsigned)cbTempName)) data/wine-5.0/dlls/avifil32/avifile.c:1947:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (mmioRead(This->hmmio, (HPSTR)lp, read) != read) { data/wine-5.0/dlls/avifil32/avifile.c:1947:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (mmioRead(This->hmmio, (HPSTR)lp, read) != read) { data/wine-5.0/dlls/avifil32/avifile.c:1951:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size -= read; data/wine-5.0/dlls/avifil32/avifile.c:1956:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). AVIFILE_ParseIndex(This, lp, read / sizeof(AVIINDEXENTRY), data/wine-5.0/dlls/avifil32/tests/api.c:368:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:460:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:483:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/avifil32/tests/api.c:519:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(filename+strlen(filename), testfilename); data/wine-5.0/dlls/bcrypt/tests/bcrypt.c:223:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == (strlen(exname)+1)*sizeof(WCHAR), "got %u\n", size); data/wine-5.0/dlls/cabinet/cabinet_main.c:162:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pNode->FileName = HeapAlloc(GetProcessHeap(), 0, strlen(szFilename) + 1); data/wine-5.0/dlls/cabinet/cabinet_main.c:243:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(ptr = szDirectory + strlen(pDestination->Destination)+1; *ptr; ptr++) { data/wine-5.0/dlls/cabinet/cabinet_main.c:368:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name = HeapAlloc( GetProcessHeap(), 0, strlen(end) + 1 ); data/wine-5.0/dlls/cabinet/fci.c:151:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). PFNFCIREAD read; data/wine-5.0/dlls/cabinet/fci.c:223:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret += strlen( fci->szPrevCab ) + 1 + strlen( fci->szPrevDisk ) + 1; data/wine-5.0/dlls/cabinet/fci.c:223:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret += strlen( fci->szPrevCab ) + 1 + strlen( fci->szPrevDisk ) + 1; data/wine-5.0/dlls/cabinet/fci.c:226:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret += strlen( fci->pccab->szCab ) + 1 + strlen( fci->pccab->szDisk ) + 1; data/wine-5.0/dlls/cabinet/fci.c:226:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret += strlen( fci->pccab->szCab ) + 1 + strlen( fci->pccab->szDisk ) + 1; data/wine-5.0/dlls/cabinet/fci.c:270:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int size = FIELD_OFFSET( struct file, name[strlen(filename) + 1] ); data/wine-5.0/dlls/cabinet/fci.c:286:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fci->files_size += sizeof(CFFILE) + strlen(filename) + 1; data/wine-5.0/dlls/cabinet/fci.c:292:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int size = FIELD_OFFSET( struct file, name[strlen(orig->name) + 1] ); data/wine-5.0/dlls/cabinet/fci.c:371:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). len = fci->read( handle, fci->data_in + fci->cdata_in, data/wine-5.0/dlls/cabinet/fci.c:498:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (fci->read( handle, fci->data_out, block->compressed, data/wine-5.0/dlls/cabinet/fci.c:571:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_size = sizeof(CFFILE) + strlen( (char *)(cffile + 1) ) + 1; data/wine-5.0/dlls/cabinet/fci.c:620:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). len = fci->read( folder->data.handle, data, block->compressed, &err, fci->pv ); data/wine-5.0/dlls/cabinet/fci.c:698:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen( ptr ) + 1; data/wine-5.0/dlls/cabinet/fci.c:700:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen( ptr ) + 1; data/wine-5.0/dlls/cabinet/fci.c:706:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen( ptr ) + 1; data/wine-5.0/dlls/cabinet/fci.c:708:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen( ptr ) + 1; data/wine-5.0/dlls/cabinet/fci.c:845:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cab_ULONG size = sizeof(CFFILE) + strlen(file->name) + 1; data/wine-5.0/dlls/cabinet/fci.c:1179:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szCab)+1 + /* next cabinet name */ data/wine-5.0/dlls/cabinet/fci.c:1180:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szDisk)+1 /* next disk name */ data/wine-5.0/dlls/cabinet/fci.c:1192:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szCab)+1 + /* next cabinet name */ data/wine-5.0/dlls/cabinet/fci.c:1193:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szDisk)+1 /* next disk name */ data/wine-5.0/dlls/cabinet/fci.c:1328:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->ccab.szCab)+1+ data/wine-5.0/dlls/cabinet/fci.c:1329:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->ccab.szDisk)+1 data/wine-5.0/dlls/cabinet/fci.c:1407:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (!pfnfcigoi) || strlen(pszFileName)>=CB_MAX_FILENAME) { data/wine-5.0/dlls/cabinet/fci.c:1448:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). read_result+= sizeof(CFFILE) + strlen(pszFileName)+1 + data/wine-5.0/dlls/cabinet/fci.c:1493:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szCab)+1+ data/wine-5.0/dlls/cabinet/fci.c:1494:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szDisk)+1 data/wine-5.0/dlls/cabinet/fci.c:1566:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szCab)+1+ data/wine-5.0/dlls/cabinet/fci.c:1567:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_fci_internal->pccab->szDisk)+1 data/wine-5.0/dlls/cabinet/fdi.c:119:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). PFNREAD read; data/wine-5.0/dlls/cabinet/fdi.c:490:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!fdi->read(hf, buf, len)) break; data/wine-5.0/dlls/cabinet/fdi.c:521:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fdi->seek(hf, base + strlen((char *)buf) + 1, SEEK_SET); data/wine-5.0/dlls/cabinet/fdi.c:547:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (fdi->read(hf, buf, cfhead_SIZEOF) != cfhead_SIZEOF) { data/wine-5.0/dlls/cabinet/fdi.c:587:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (fdi->read(hf, buf, cfheadext_SIZEOF) != cfheadext_SIZEOF) { data/wine-5.0/dlls/cabinet/fdi.c:1969:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (CAB(fdi)->read(cab->cabhf, buf, cfdata_SIZEOF) != cfdata_SIZEOF) data/wine-5.0/dlls/cabinet/fdi.c:1980:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (CAB(fdi)->read(cab->cabhf, data, len) != len) data/wine-5.0/dlls/cabinet/fdi.c:2022:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pathlen = pszCabPath ? strlen(pszCabPath) : 0; data/wine-5.0/dlls/cabinet/fdi.c:2040:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pathlen = strlen(userpath); data/wine-5.0/dlls/cabinet/fdi.c:2041:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filenamelen = cab->mii.nextname ? strlen(cab->mii.nextname) : 0; data/wine-5.0/dlls/cabinet/fdi.c:2054:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(fullpath, "\\"); data/wine-5.0/dlls/cabinet/fdi.c:2120:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (CAB(fdi)->read(cab->cabhf, buf2, cffold_SIZEOF) != cffold_SIZEOF) data/wine-5.0/dlls/cabinet/fdi.c:2145:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (CAB(fdi)->read(cab->cabhf, buf2, cffile_SIZEOF) != cffile_SIZEOF) data/wine-5.0/dlls/cabinet/fdi.c:2453:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pathlen = pszCabPath ? strlen(pszCabPath) : 0; data/wine-5.0/dlls/cabinet/fdi.c:2454:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filenamelen = pszCabinet ? strlen(pszCabinet) : 0; data/wine-5.0/dlls/cabinet/fdi.c:2510:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (fdi->read(cabhf, buf, cffold_SIZEOF) != cffold_SIZEOF) { data/wine-5.0/dlls/cabinet/fdi.c:2538:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (fdi->read(cabhf, buf, cffile_SIZEOF) != cffile_SIZEOF) { data/wine-5.0/dlls/cabinet/tests/extract.c:78:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/cabinet/tests/extract.c:79:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/cabinet/tests/extract.c:234:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tempname && (strlen(tempname) < (unsigned)cbTempName)) data/wine-5.0/dlls/cabinet/tests/fdi.c:405:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/cabinet/tests/fdi.c:406:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/cabinet/tests/fdi.c:547:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tempname && (strlen(tempname) < (unsigned)cbTempName)) data/wine-5.0/dlls/comctl32/listview.c:602:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = text + strlen(text); data/wine-5.0/dlls/comctl32/listview.c:653:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = text + strlen(text); data/wine-5.0/dlls/comctl32/listview.c:700:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = text + strlen(text); data/wine-5.0/dlls/comctl32/propsheet.c:197:59: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. #define add_flag(a) if (dwFlags & a) {strcat(string, #a );strcat(string," ");} data/wine-5.0/dlls/comctl32/propsheet.c:2985:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(lpPropSheetPage->u.pszTemplate) + 1; data/wine-5.0/dlls/comctl32/string.c:139:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return (strlen(lpSrc) + 1); data/wine-5.0/dlls/comctl32/string.c:149:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(lpSrc) + 1; data/wine-5.0/dlls/comctl32/string.c:181:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LPSTR ptr = ReAlloc (*lppDest, strlen (lpSrc) + 1); data/wine-5.0/dlls/comctl32/string.c:327:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). iLen = strlen(lpszSearch); data/wine-5.0/dlls/comctl32/string.c:328:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = lpszStr + strlen(lpszStr); data/wine-5.0/dlls/comctl32/tests/button.c:1049:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buffA), "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/button.c:1053:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buffA), "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/button.c:1062:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buffA), "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/button.c:1066:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buffA), "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/edit.c:1418:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(str), "Expected %s, got len %d\n", str, ret); data/wine-5.0/dlls/comctl32/tests/edit.c:1426:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(str), "Expected %s, got len %d\n", str, ret); data/wine-5.0/dlls/comctl32/tests/edit.c:1434:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("Test"), "Unexpected text length %d\n", ret); data/wine-5.0/dlls/comctl32/tests/edit.c:2131:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(password), "Expected: %s, got len %d\n", password, r); data/wine-5.0/dlls/comctl32/tests/edit.c:2177:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((strlen(text) << 16) == r, "Unexpected length %d\n", r); data/wine-5.0/dlls/comctl32/tests/edit.c:2198:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(text) == r, "Unexpected length %d\n", r); data/wine-5.0/dlls/comctl32/tests/edit.c:3120:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(str) == len, "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/edit.c:3143:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen("first line") == len, "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/edit.c:3149:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(str2) == len, "got %d\n", len); data/wine-5.0/dlls/comctl32/tests/edit.c:3179:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(str), "Failed to get a line %d.\n", r); data/wine-5.0/dlls/comctl32/tests/edit.c:3185:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(str), "Failed to get a line %d.\n", r); data/wine-5.0/dlls/comctl32/tests/listbox.c:1143:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1199:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1230:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/comctl32/tests/listbox.c:1301:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1304:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/comctl32/tests/listbox.c:1378:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1452:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/comctl32/tests/listbox.c:1620:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1655:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1656:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( (pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']') || data/wine-5.0/dlls/comctl32/tests/listbox.c:1674:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/comctl32/tests/listbox.c:1700:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/comctl32/tests/listbox.c:1741:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1745:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( (pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']') || data/wine-5.0/dlls/comctl32/tests/listbox.c:1806:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/comctl32/tests/listbox.c:1820:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(pathBuffer, "*"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1872:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1876:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/comctl32/tests/listbox.c:1877:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tempBuffer, "]"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1894:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (strchr(tempBuffer, '.') == NULL) strcat(tempBuffer, "."); data/wine-5.0/dlls/comctl32/tests/listbox.c:1941:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/comctl32/tests/listbox.c:1945:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/comctl32/tests/listbox.c:1946:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tempBuffer, "]"); data/wine-5.0/dlls/comctl32/tests/listbox.c:1963:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (strchr(tempBuffer, '.') == NULL) strcat(tempBuffer, "."); data/wine-5.0/dlls/comctl32/tests/listview.c:5342:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(f, "f"); data/wine-5.0/dlls/comctl32/tests/listview.c:5347:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(f, "o"); data/wine-5.0/dlls/comctl32/tests/listview.c:5353:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(f, "o"); data/wine-5.0/dlls/comctl32/tests/listview.c:5359:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(f, "f"); data/wine-5.0/dlls/comctl32/tests/misc.c:93:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sourcelen = strlen(source) + 1; data/wine-5.0/dlls/comctl32/tests/mru.c:210:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(mrulist); i++) data/wine-5.0/dlls/comctl32/tests/rebar.c:196:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPoint32A(hdc, s, strlen(s), &sz); data/wine-5.0/dlls/comctl32/tests/status.c:348:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(charArray), "got %d\n", r); data/wine-5.0/dlls/comctl32/tests/tab.c:458:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPoint32A(hdc, "Tab 1", strlen("Tab 1"), &size); data/wine-5.0/dlls/comctl32/tests/toolbar.c:988:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPoint32A(hdc, s, strlen(s), &sz); data/wine-5.0/dlls/comctl32/tests/treeview.c:1637:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffA, "x"); data/wine-5.0/dlls/comctl32/toolbar.c:3020:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (p); data/wine-5.0/dlls/comctl32/toolbar.c:7067:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int ccht = strlen(nmtba.pszText); data/wine-5.0/dlls/comdlg32/colordlg.c:408:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). m = strlen(buffer); data/wine-5.0/dlls/comdlg32/filedlg.c:510:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while (*s) s = s+strlen(s)+1; data/wine-5.0/dlls/comdlg32/filedlg.c:526:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*s) s = s+strlen(s)+1; data/wine-5.0/dlls/comdlg32/filedlg.c:527:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*s) s = s+strlen(s)+1; data/wine-5.0/dlls/comdlg32/filedlg.c:2910:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len + strlen(ofn->lpstrCustomFilter) + 1 <= ofn->nMaxCustFilter) data/wine-5.0/dlls/comdlg32/filedlg.c:2913:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s += strlen(ofn->lpstrCustomFilter)+1; data/wine-5.0/dlls/comdlg32/filedlg31.c:726:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = s+strlen(s)+1; data/wine-5.0/dlls/comdlg32/filedlgbrowser.c:84:54: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. #define add_flag(a) if (flags & a) {strcat(str, #a );strcat(str," ");} data/wine-5.0/dlls/comdlg32/printdlg.c:485:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(DeviceDriverName) + 1 data/wine-5.0/dlls/comdlg32/printdlg.c:486:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). + strlen(DeviceName) + 1 data/wine-5.0/dlls/comdlg32/printdlg.c:487:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). + strlen(OutputPort) + 1 data/wine-5.0/dlls/comdlg32/printdlg.c:504:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pTempPtr += strlen(DeviceDriverName) + 1; data/wine-5.0/dlls/comdlg32/printdlg.c:508:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pTempPtr += strlen(DeviceName) + 1; data/wine-5.0/dlls/comdlg32/printdlg.c:3789:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flagstr, "|"); data/wine-5.0/dlls/comdlg32/tests/filedlg.c:1235:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szInitialDir[strlen(szInitialDir)] = '\\'; data/wine-5.0/dlls/commdlg.dll16/filedlg.c:47:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *in += strlen(*in) + 1; data/wine-5.0/dlls/compobj.dll16/compobj.c:350:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(idstr) != 38) data/wine-5.0/dlls/compobj.dll16/compobj.c:673:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = HeapAlloc(GetProcessHeap(),0,strlen(progid)+8); data/wine-5.0/dlls/crypt32/base64.c:118:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *out_len += (*out_len / 64 + (*out_len % 64 ? 1 : 0)) * strlen(sep) + 1; data/wine-5.0/dlls/crypt32/base64.c:131:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, sep, strlen(sep)); data/wine-5.0/dlls/crypt32/base64.c:176:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, sep, strlen(sep)); data/wine-5.0/dlls/crypt32/base64.c:217:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(header) + strlen(sep); data/wine-5.0/dlls/crypt32/base64.c:217:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(header) + strlen(sep); data/wine-5.0/dlls/crypt32/base64.c:219:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(trailer) + strlen(sep); data/wine-5.0/dlls/crypt32/base64.c:219:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(trailer) + strlen(sep); data/wine-5.0/dlls/crypt32/base64.c:229:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, header, strlen(header)); data/wine-5.0/dlls/crypt32/base64.c:230:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, sep, strlen(sep)); data/wine-5.0/dlls/crypt32/base64.c:236:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, trailer, strlen(trailer)); data/wine-5.0/dlls/crypt32/base64.c:237:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += stradd(ptr, end, sep, strlen(sep)); data/wine-5.0/dlls/crypt32/base64.c:655:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen(header) + strlen(trailer)) > cchString) data/wine-5.0/dlls/crypt32/base64.c:655:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen(header) + strlen(trailer)) > cchString) data/wine-5.0/dlls/crypt32/base64.c:666:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dataBegins = headerBegins + strlen(header); data/wine-5.0/dlls/crypt32/base64.c:671:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dataBegins += strlen(CERT_DELIMITER); data/wine-5.0/dlls/crypt32/base64.c:834:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cchString = strlen(pszString); data/wine-5.0/dlls/crypt32/cert.c:3029:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextOID += strlen(nextOID) + 1; data/wine-5.0/dlls/crypt32/cert.c:3100:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(LPSTR) + strlen(pszUsageIdentifier) + 1); data/wine-5.0/dlls/crypt32/cert.c:3114:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextOID += strlen(nextOID) + 1; data/wine-5.0/dlls/crypt32/cert.c:3134:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(LPSTR) + strlen(pszUsageIdentifier) + 1); data/wine-5.0/dlls/crypt32/decode.c:1326:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(str) + 1; data/wine-5.0/dlls/crypt32/decode.c:1350:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(str); data/wine-5.0/dlls/crypt32/decode.c:1375:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszObjId += strlen(pszObjId); data/wine-5.0/dlls/crypt32/decode.c:1391:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszObjId += strlen(pszObjId); data/wine-5.0/dlls/crypt32/encode.c:946:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). encodedLen = value->Value.cbData ? value->Value.cbData : strlen(str); data/wine-5.0/dlls/crypt32/encode.c:4824:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD oid_size = strlen(pszPublicKeyObjId) + 1; data/wine-5.0/dlls/crypt32/encode.c:4876:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pszPublicKeyObjId) + 1 + encodedLen; data/wine-5.0/dlls/crypt32/filestore.c:120:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/crypt32/filestore.c:122:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadFile(file, blob->pbData, blob->cbData, &read, NULL) && read == blob->cbData; data/wine-5.0/dlls/crypt32/msg.c:759:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out->pszObjId = CryptMemAlloc(strlen(in->pszObjId) + 1); data/wine-5.0/dlls/crypt32/msg.c:1397:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). msg->innerOID = CryptMemAlloc(strlen(pszInnerContentObjID) + 1); data/wine-5.0/dlls/crypt32/msg.c:1515:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out->pszObjId = CryptMemAlloc(strlen(in->pszObjId) + 1); data/wine-5.0/dlls/crypt32/msg.c:2178:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(id->pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2186:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). copy->Parameters.pbData = (BYTE *)copy->pszObjId + strlen(id->pszObjId) data/wine-5.0/dlls/crypt32/msg.c:2209:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id->Parameters.pbData = (BYTE *)id->pszObjId + strlen(id->pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2232:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(digestedData->ContentInfo.pszObjId) + 1 : 0); data/wine-5.0/dlls/crypt32/msg.c:2622:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *nextData += strlen(out->pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2644:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *nextData += strlen(in->rgAttr[i].pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2669:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(attr->rgAttr[i].pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2748:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(in->HashAlgorithm.pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2751:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(in->HashEncryptionAlgorithm.pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2817:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(in->HashAlgorithm.pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:2820:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(in->HashEncryptionAlgorithm.pszObjId) + 1; data/wine-5.0/dlls/crypt32/msg.c:3075:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(msg->u.signed_data.info->content.pszObjId) + 1); data/wine-5.0/dlls/crypt32/object.c:53:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/crypt32/object.c:55:67: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadFile(file, blob->pbData, blob->cbData, &read, NULL) && read == blob->cbData; data/wine-5.0/dlls/crypt32/object.c:1700:32: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. static const WCHAR equal[] = { '=',0 }; data/wine-5.0/dlls/crypt32/object.c:1726:31: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. locationSep = equal; data/wine-5.0/dlls/crypt32/object.c:1752:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(info->rgAccDescr[i].pszAccessMethod) data/wine-5.0/dlls/crypt32/object.c:2228:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(usage->rgpszUsageIdentifier[i]) * data/wine-5.0/dlls/crypt32/oid.c:134:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret->name = CryptMemAlloc(strlen(pszFuncName) + 1); data/wine-5.0/dlls/crypt32/oid.c:258:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). + strlen(rgFuncEntry[i].pszOID) + 1); data/wine-5.0/dlls/crypt32/oid.c:726:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). key_name = CryptMemAlloc(strlen(info->pszOID) + 16); data/wine-5.0/dlls/crypt32/oid.c:763:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). key_name = CryptMemAlloc(strlen(info->pszOID) + 16); data/wine-5.0/dlls/crypt32/oid.c:1585:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). oid_len = strlen(key_name) + 1; data/wine-5.0/dlls/crypt32/protectdata.c:130:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(report+strlen(report),"%s%02x", r ? "," : "", *p++); data/wine-5.0/dlls/crypt32/protectdata.c:518:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (pInfo->info0.cbData!=strlen(crypt_magic_str)+1 || data/wine-5.0/dlls/crypt32/protectdata.c:555:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). blob->cbData=strlen(str)+1; data/wine-5.0/dlls/crypt32/rootstore.c:68:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (buffer->used + strlen(line) + 1 > buffer->allocated) data/wine-5.0/dlls/crypt32/rootstore.c:82:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer->used + strlen(line) + 1); data/wine-5.0/dlls/crypt32/rootstore.c:91:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy((char *)buffer->data + strlen((char *)buffer->data), line); data/wine-5.0/dlls/crypt32/rootstore.c:96:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer->used += strlen(line); data/wine-5.0/dlls/crypt32/rootstore.c:120:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(line, header, strlen(header))) data/wine-5.0/dlls/crypt32/rootstore.c:126:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (!strncmp(line, trailer, strlen(trailer))) data/wine-5.0/dlls/crypt32/rootstore.c:357:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t path_len = strlen(path), bufsize = 0; data/wine-5.0/dlls/crypt32/rootstore.c:365:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t name_len = strlen(entry->d_name); data/wine-5.0/dlls/crypt32/serialize.c:435:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/crypt32/serialize.c:439:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read_func(handle, fileHeaderBuf, sizeof(fileHeaderBuf), &read); data/wine-5.0/dlls/crypt32/serialize.c:442:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!read) data/wine-5.0/dlls/crypt32/serialize.c:444:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (read != sizeof(fileHeaderBuf)) data/wine-5.0/dlls/crypt32/serialize.c:446:53: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!memcmp(fileHeaderBuf, fileHeader, read)) data/wine-5.0/dlls/crypt32/serialize.c:455:69: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read_func(handle, &propHdr, sizeof(propHdr), &read); data/wine-5.0/dlls/crypt32/serialize.c:479:67: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read_func(handle, buf, propHdr.cb, &read); data/wine-5.0/dlls/crypt32/serialize.c:486:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). X509_ASN_ENCODING, buf, read, data/wine-5.0/dlls/crypt32/serialize.c:493:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). X509_ASN_ENCODING, buf, read, data/wine-5.0/dlls/crypt32/serialize.c:500:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). X509_ASN_ENCODING, buf, read, data/wine-5.0/dlls/crypt32/serialize.c:514:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read); data/wine-5.0/dlls/crypt32/serialize.c:521:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while (ret && read > 0 && propHdr.cb); data/wine-5.0/dlls/crypt32/str.c:404:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). chars = min(strlen(prefix), csz); data/wine-5.0/dlls/crypt32/str.c:450:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sepLen = strlen(sep); data/wine-5.0/dlls/crypt32/str.c:455:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rdnSepLen = strlen(rdnSep); data/wine-5.0/dlls/crypt32/str.c:540:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). chars = min(strlen(prefix), csz); data/wine-5.0/dlls/crypt32/tests/base64.c:110:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required = strlen(expected) + 1; data/wine-5.0/dlls/crypt32/tests/base64.c:112:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required += strlen(header); data/wine-5.0/dlls/crypt32/tests/base64.c:114:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required += strlen(trailer); data/wine-5.0/dlls/crypt32/tests/base64.c:152:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(header, ptr, strlen(header)), "Expected header %s, got %s\n", header, ptr); data/wine-5.0/dlls/crypt32/tests/base64.c:153:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(header); data/wine-5.0/dlls/crypt32/tests/base64.c:155:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(expected, ptr, strlen(expected)), "Expected %s, got %s\n", expected, ptr); data/wine-5.0/dlls/crypt32/tests/base64.c:156:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(expected); data/wine-5.0/dlls/crypt32/tests/base64.c:158:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(trailer, ptr, strlen(trailer)), "Expected trailer %s, got %s\n", trailer, ptr); data/wine-5.0/dlls/crypt32/tests/base64.c:174:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required += strlen(header); data/wine-5.0/dlls/crypt32/tests/base64.c:176:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required += strlen(trailer); data/wine-5.0/dlls/crypt32/tests/base64.c:368:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(toDecode) + strlen(garbage) + 1; data/wine-5.0/dlls/crypt32/tests/base64.c:368:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(toDecode) + strlen(garbage) + 1; data/wine-5.0/dlls/crypt32/tests/base64.c:371:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(header); data/wine-5.0/dlls/crypt32/tests/base64.c:373:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(trailer); data/wine-5.0/dlls/crypt32/tests/base64.c:438:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(skipped == strlen(garbage), data/wine-5.0/dlls/crypt32/tests/cert.c:3151:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan); data/wine-5.0/dlls/crypt32/tests/cert.c:3156:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan_with_leading_space); data/wine-5.0/dlls/crypt32/tests/cert.c:3162:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan_with_intermediate_space); data/wine-5.0/dlls/crypt32/tests/cert.c:3168:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan_with_trailing_space); data/wine-5.0/dlls/crypt32/tests/cert.c:3177:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan_lower_case); data/wine-5.0/dlls/crypt32/tests/cert.c:3202:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan); data/wine-5.0/dlls/crypt32/tests/cert.c:3210:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[0].Value.cbData = strlen(juan); data/wine-5.0/dlls/crypt32/tests/cert.c:3214:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). attr[1].Value.cbData = strlen(the_wine_project); data/wine-5.0/dlls/crypt32/tests/encode.c:160:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). blob.cbData = strlen((const char*)bigInts[i].val); data/wine-5.0/dlls/crypt32/tests/encode.c:183:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). blob.cbData = strlen((const char*)bigUInts[i].val); data/wine-5.0/dlls/crypt32/tests/encode.c:284:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(blob->cbData == strlen((const char*)bigInts[i].decoded), data/wine-5.0/dlls/crypt32/tests/encode.c:309:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(blob->cbData == strlen((const char*)bigUInts[i].val), data/wine-5.0/dlls/crypt32/tests/msg.c:2914:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (const BYTE *)szOID_RSA_data, strlen(szOID_RSA_data) + 1); data/wine-5.0/dlls/crypt32/tests/msg.c:2926:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (const BYTE *)szOID_RSA_data, strlen(szOID_RSA_data) + 1); data/wine-5.0/dlls/crypt32/tests/protectdata.c:49:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). plain.cbData=strlen(secret)+1; data/wine-5.0/dlls/crypt32/tests/protectdata.c:52:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entropy.cbData=strlen(key)+1; data/wine-5.0/dlls/crypt32/tests/protectdata.c:98:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). plain.cbData=strlen(secret2)+1; data/wine-5.0/dlls/crypt32/tests/protectdata.c:118:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entropy.cbData=strlen(key)+1; data/wine-5.0/dlls/crypt32/tests/protectdata.c:161:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(plain.cbData==strlen(secret)+1,"Plain DATA_BLOB wrong length\n"); data/wine-5.0/dlls/crypt32/tests/protectdata.c:186:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(plain.cbData==strlen(secret)+1,"Plain DATA_BLOB wrong length\n"); data/wine-5.0/dlls/crypt32/tests/protectdata.c:204:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(plain.cbData==strlen(secret2)+1,"Plain DATA_BLOB wrong length\n"); data/wine-5.0/dlls/crypt32/tests/protectdata.c:226:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). input.cbData = strlen(plaintext); data/wine-5.0/dlls/crypt32/tests/protectdata.c:238:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(output.cbData == strlen(plaintext), "output wrong length %d for input '%s', wanted %d\n", output.cbData, plaintext, lstrlenA(plaintext)); data/wine-5.0/dlls/crypt32/tests/sip.c:188:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(regeditPath, "\\"); data/wine-5.0/dlls/crypt32/tests/sip.c:190:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, regeditPath, strlen(regeditPath)+1, regeditPathW, data/wine-5.0/dlls/crypt32/tests/sip.c:223:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, tempfile, strlen(tempfile)+1, tempfileW, ARRAY_SIZE(tempfileW)); data/wine-5.0/dlls/crypt32/tests/str.c:259:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(attrs[i].str) + 1, "Expected length %d, got %d\n", data/wine-5.0/dlls/crypt32/tests/str.c:269:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(ePKI) + 1 || broken(ret != strlen(ePKI) + 1), data/wine-5.0/dlls/crypt32/tests/str.c:269:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(ePKI) + 1 || broken(ret != strlen(ePKI) + 1), data/wine-5.0/dlls/crypt32/tests/str.c:271:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ret == strlen(ePKI) + 1) data/wine-5.0/dlls/crypt32/tests/str.c:378:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(i == strlen(expected) + 1, "Expected %d chars, got %d\n", data/wine-5.0/dlls/crypt32/tests/str.c:383:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(i == strlen(expected) + 1, "Expected %d chars, got %d\n", data/wine-5.0/dlls/crypt32/tests/str.c:936:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(aric) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:948:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(issuerStr) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:960:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(issuerStr) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:972:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(subjectStr) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:984:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(aric) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:995:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(aric) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:1006:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(localhost) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:1018:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(localhost) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:1030:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(localhost) + 1, "unexpected length %d\n", len); data/wine-5.0/dlls/crypt32/tests/str.c:1042:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(localhost) + 1 || broken(len == 1) /* NT4 */, data/wine-5.0/dlls/cryptdlg/main.c:673:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(pNoticeRef->pszOrganization); data/wine-5.0/dlls/cryptdlg/main.c:875:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(policy->pszPolicyIdentifier); data/wine-5.0/dlls/cryptdlg/main.c:978:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). charsNeeded += strlen(qualifierInfo->pszPolicyQualifierId); data/wine-5.0/dlls/cryptui/main.c:691:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(info->pszOID) + 1); data/wine-5.0/dlls/cryptui/main.c:695:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(str) + 1 + strlen(info->pszOID) + 1); data/wine-5.0/dlls/cryptui/main.c:695:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(str) + 1 + strlen(info->pszOID) + 1); data/wine-5.0/dlls/cryptui/main.c:700:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LPSTR ptr = firstString ? str : str + strlen(str); data/wine-5.0/dlls/cryptui/main.c:714:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(str) + 1); data/wine-5.0/dlls/cryptui/main.c:898:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(usage->rgpszUsageIdentifier[i]); data/wine-5.0/dlls/cryptui/main.c:2030:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(oid) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/cryptui/main.c:2952:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(ext->pszObjId); data/wine-5.0/dlls/cryptui/main.c:3144:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *oidCopy = HeapAlloc(GetProcessHeap(), 0, strlen(oid) + 1); data/wine-5.0/dlls/d3d10/effect.c:488:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(ptr) + 1; data/wine-5.0/dlls/d3d10/tests/effect.c:3705:17: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. DepthFunc = equal; /* 0x18 */ data/wine-5.0/dlls/d3d8/d3d8_main.c:97:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). message_size = strlen(message) + 1; data/wine-5.0/dlls/d3d8/d3d8_main.c:142:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). message_size = strlen(message) + 1; data/wine-5.0/dlls/d3d9/tests/device.c:106:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/d3d9/tests/device.c:117:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return equal; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:189:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = malloc(strlen(filename) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:191:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(path, filename, strlen(filename) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:526:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(wpp_messages) + 1; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:577:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(messages) + (preproc_messages ? strlen(preproc_messages) : 0) + 1; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:577:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(messages) + (preproc_messages ? strlen(preproc_messages) : 0) + 1; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:588:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CopyMemory(pos, preproc_messages, strlen(preproc_messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:589:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen(preproc_messages); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:591:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CopyMemory(pos, messages, strlen(messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:804:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(messages) + (preproc_messages ? strlen(preproc_messages) : 0) + 1; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:804:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(messages) + (preproc_messages ? strlen(preproc_messages) : 0) + 1; data/wine-5.0/dlls/d3dcompiler_43/compiler.c:815:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pos, preproc_messages, strlen(preproc_messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:816:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen(preproc_messages); data/wine-5.0/dlls/d3dcompiler_43/compiler.c:818:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pos, messages, strlen(messages) + 1); data/wine-5.0/dlls/d3dcompiler_43/d3dcompiler_private.h:170:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(string); data/wine-5.0/dlls/d3dcompiler_43/preproc.c:79:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str)+1; data/wine-5.0/dlls/d3dcompiler_43/preproc.c:232:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ppp->subst.text); data/wine-5.0/dlls/d3dcompiler_43/preproc.c:241:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(ppp->subst.text, cptr, strlen(cptr)+1); data/wine-5.0/dlls/d3dcompiler_43/reflection.c:182:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(ptr) + 1; data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:61:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(tests[i].text, strlen(tests[i].text), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1417:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(tests[i], strlen(tests[i]), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1469:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). && (!strncmp(include2, parent_data, strlen(include2)) data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1470:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). || !strncmp(include4, parent_data, strlen(include4))), data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1545:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1557:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1565:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1578:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = pD3DAssemble(testshader, strlen(testshader), NULL, NULL, &include.ID3DInclude_iface, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1652:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DPreprocess(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1664:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DPreprocess(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1671:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DPreprocess(test1, strlen(test1), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1683:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DPreprocess(quotation_marks_test, strlen(quotation_marks_test), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/asm.c:1699:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DPreprocess(include_test_shaders[i], strlen(include_test_shaders[i]), NULL, NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/hlsl.c:142:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DCompile(vshader_passthru_hlsl, strlen(vshader_passthru_hlsl), NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/hlsl.c:181:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DCompile(shader, strlen(shader), NULL, NULL, data/wine-5.0/dlls/d3dcompiler_43/tests/hlsl.c:621:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ppD3DCompile(tests[i], strlen(tests[i]), NULL, NULL, NULL, "test", "ps_2_0", 0, 0, &compiled, &errors); data/wine-5.0/dlls/d3drm/d3drm.c:2152:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = IDirectXFile_RegisterTemplates(file, templates, strlen(templates)); data/wine-5.0/dlls/d3drm/d3drm_main.c:99:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). req_size = strlen(object->classname) + 1; data/wine-5.0/dlls/d3drm/d3drm_main.c:118:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). req_size = object->name ? strlen(object->name) + 1 : 0; data/wine-5.0/dlls/d3drm/d3drm_main.c:144:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). req_size = strlen(name) + 1; data/wine-5.0/dlls/d3drm/meshbuilder.c:1497:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = IDirectXFile_RegisterTemplates(dxfile, templates, strlen(templates)); data/wine-5.0/dlls/d3drm/tests/d3drm.c:79:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3drm/tests/d3drm.c:96:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, "Got unexpected vector {%.8e, %.8e, %.8e}, expected {%.8e, %.8e, %.8e}.\n", data/wine-5.0/dlls/d3drm/tests/d3drm.c:174:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen(name) + 1, "wrong size: %u\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:184:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen(name) + 1, "wrong size: %u\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:187:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(name) + 1; data/wine-5.0/dlls/d3drm/tests/d3drm.c:190:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen(name) + 1, "wrong size: %u\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:193:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(name); data/wine-5.0/dlls/d3drm/tests/d3drm.c:197:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen(name), "Wrong classname size: %u.\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:245:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen("name") + 1, "Unexpected size %u.\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:247:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen("name") + 1; data/wine-5.0/dlls/d3drm/tests/d3drm.c:250:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__, line)(size == strlen("name") + 1, "Unexpected size %u.\n", size); data/wine-5.0/dlls/d3drm/tests/d3drm.c:476:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_bad_version); data/wine-5.0/dlls/d3drm/tests/d3drm.c:481:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_no_mesh); data/wine-5.0/dlls/d3drm/tests/d3drm.c:486:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_ok); data/wine-5.0/dlls/d3drm/tests/d3drm.c:494:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen("Object"); /* No space for null character */ data/wine-5.0/dlls/d3drm/tests/d3drm.c:591:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_full); data/wine-5.0/dlls/d3drm/tests/d3drm.c:734:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_bad_version); data/wine-5.0/dlls/d3drm/tests/d3drm.c:739:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_no_mesh); data/wine-5.0/dlls/d3drm/tests/d3drm.c:744:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_ok); data/wine-5.0/dlls/d3drm/tests/d3drm.c:979:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_ok); data/wine-5.0/dlls/d3drm/tests/d3drm.c:3321:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_d3drm_load); data/wine-5.0/dlls/d3drm/tests/d3drm.c:3397:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.dSize = strlen(data_frame_mesh_materials); data/wine-5.0/dlls/d3drm/tests/vector.c:43:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected matrix=\n(%f,%f,%f,%f\n %f,%f,%f,%f\n %f,%f,%f,%f\n %f,%f,%f,%f\n)\n\n" \ data/wine-5.0/dlls/d3dx9_36/effect.c:875:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *param_data = heap_alloc(strlen(string) + 1); data/wine-5.0/dlls/d3dx9_36/effect.c:1001:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (strlen(temp_parameter->name) == length && !strncmp(temp_parameter->name, name, length)) data/wine-5.0/dlls/d3dx9_36/effect.c:1046:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(name); data/wine-5.0/dlls/d3dx9_36/effect.c:1047:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). param_name_len = strlen(parameter->full_name); data/wine-5.0/dlls/d3dx9_36/effect.c:1089:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (strlen(temp_parameter->name) == length && !strncmp(temp_parameter->name, name, length)) data/wine-5.0/dlls/d3dx9_36/effect.c:5275:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int parent_name_len = strlen(parent_name); data/wine-5.0/dlls/d3dx9_36/effect.c:5276:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int name_len = strlen(param->name); data/wine-5.0/dlls/d3dx9_36/effect.c:5284:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). part_str_len = strlen(part_str); data/wine-5.0/dlls/d3dx9_36/effect.c:5308:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(param->name) + 1; data/wine-5.0/dlls/d3dx9_36/effect.c:6479:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(*skip_constants_buffer) * (strlen(skip_constants_string) + 1)); data/wine-5.0/dlls/d3dx9_36/mesh.c:2665:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename = HeapAlloc(GetProcessHeap(), 0, strlen(filename_in) + 1); data/wine-5.0/dlls/d3dx9_36/mesh.c:3395:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_size += strlen(material_ptr[i].pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/mesh.c:3431:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). defaults->NumBytes = strlen(material_ptr->pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/mesh.c:3623:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_size += strlen(mesh_data.materials[i].pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/mesh.c:3636:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strings_out_ptr += strlen(mesh_data.materials[i].pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/mesh.c:4456:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_size += strlen(in_ptr->pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/mesh.c:4478:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strings_out_ptr += strlen(in_ptr->pTextureFilename) + 1; data/wine-5.0/dlls/d3dx9_36/shader.c:256:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pathname = HeapAlloc(GetProcessHeap(), 0, (p - parent_name) + strlen(filename) + 1); data/wine-5.0/dlls/d3dx9_36/shader.c:805:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(handles[i].desc.Name) == length && !strncmp(handles[i].desc.Name, name, length)) data/wine-5.0/dlls/d3dx9_36/skin.c:250:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(name) + 1; data/wine-5.0/dlls/d3dx9_36/tests/asm.c:112:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(parent_data == NULL || !strncmp(shader, parent_data, strlen(shader)), "wrong parent_data value\n"); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:126:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(parent_data != NULL && !strncmp(include2, parent_data, strlen(include2)), "wrong parent_data value\n"); data/wine-5.0/dlls/d3dx9_36/tests/asm.c:203:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(test1, strlen(test1), data/wine-5.0/dlls/d3dx9_36/tests/asm.c:215:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(test1, strlen(test1), data/wine-5.0/dlls/d3dx9_36/tests/asm.c:223:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(test1, strlen(test1), data/wine-5.0/dlls/d3dx9_36/tests/asm.c:236:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(testshader, strlen(testshader), NULL, &include.ID3DXInclude_iface, data/wine-5.0/dlls/d3dx9_36/tests/asm.c:248:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(testshader, strlen(testshader), data/wine-5.0/dlls/d3dx9_36/tests/asm.c:261:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(testshader2, strlen(testshader2), NULL, &include.ID3DXInclude_iface, data/wine-5.0/dlls/d3dx9_36/tests/asm.c:273:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = D3DXAssembleShader(testshader3, strlen(testshader3), NULL, &include.ID3DXInclude_iface, data/wine-5.0/dlls/d3dx9_36/tests/core.c:55:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got matrix\n\t(%f,%f,%f,%f\n\t %f,%f,%f,%f\n\t %f,%f,%f,%f\n\t %f,%f,%f,%f)\n" data/wine-5.0/dlls/d3dx9_36/tests/core.c:868:97: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. static void compare_device_state(struct device_state *state1, struct device_state *state2, BOOL equal) data/wine-5.0/dlls/d3dx9_36/tests/core.c:871:27: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. const char *message = equal ? "differs" : "is the same"; data/wine-5.0/dlls/d3dx9_36/tests/core.c:874:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal ? cmp : !cmp, "Render target %s %p, %p\n", message, state1->render_target, state2->render_target); data/wine-5.0/dlls/d3dx9_36/tests/core.c:877:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal ? cmp : !cmp, "Depth stencil surface %s %p, %p\n", message, state1->depth_stencil, state2->depth_stencil); data/wine-5.0/dlls/d3dx9_36/tests/core.c:881:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal ? cmp : !cmp, "Viewport %s (%u, %u, %u, %u), (%u, %u, %u, %u)\n", message, data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7629:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(parent_data, include2, strlen(include2)), "Unexpected parent_data value.\n"); data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7636:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). todo_wine ok(parent_data && !strncmp(parent_data, effect2, strlen(effect2)), data/wine-5.0/dlls/d3dx9_36/tests/effect.c:7788:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename_size = strlen(filename); data/wine-5.0/dlls/d3dx9_36/tests/math.c:106:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:115:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:124:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:133:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:142:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:152:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:162:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:181:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:187:29: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__, line)(equal, data/wine-5.0/dlls/d3dx9_36/tests/math.c:191:14: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/d3dx9_36/tests/math.c:312:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:316:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected Fresnel term %.8e.\n", fresnel); data/wine-5.0/dlls/d3dx9_36/tests/math.c:322:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL expected, got, equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:401:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected determinant %.8e.\n", determinant); data/wine-5.0/dlls/d3dx9_36/tests/math.c:412:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected determinant %.8e.\n", determinant); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1485:33: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL expectedbool, gotbool, equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:1519:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1523:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1526:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1576:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1580:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1585:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1589:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1851:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected angle %.8e.\n", angle); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1861:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected angle %.8e.\n", angle); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1867:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected angle %.8e.\n", angle); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1877:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:1917:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected ccw %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1921:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected ccw %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1924:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected ccw %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1929:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1933:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1936:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1946:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1950:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1955:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:1959:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2050:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:2119:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2123:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2126:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2136:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2140:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2145:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2149:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2289:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:2333:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2337:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2340:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected dot %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2350:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2354:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2359:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2363:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected length %.8e.\n", got); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2630:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:2816:5: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. equal |= compare_quaternion(&exp_rotation, &got_rotation, 2); data/wine-5.0/dlls/d3dx9_36/tests/math.c:2817:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected quaternion {%.8e, %.8e, %.8e, %.8e}.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3195:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got unexpected plane {%.8e, %.8e, %.8e, %.8e} at index %u, expected {%.8e, %.8e, %.8e, %.8e}.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3198:14: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/d3dx9_36/tests/math.c:3208:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3281:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got %#x, expected %#x at index %u.\n", single.d, testdata[i].single_out_ver1.d, i); data/wine-5.0/dlls/d3dx9_36/tests/math.c:3286:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Got %#x, expected %#x at index %u.\n", single.d, testdata[i].single_out_ver2.d, i); data/wine-5.0/dlls/d3dx9_36/tests/math.c:3295:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3333:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "%u-%u: Got %.8e, expected %.8e.\n", k, i, out[i], in1[i] + in2[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:3336:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "%u-%u: Got %.8e, expected 0.0.\n", k, k * k, out[count]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:3344:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3359:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "order %u: Got %.8e, expected %.8e.\n", i, got, expected[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:3369:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3460:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Red: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3470:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Green: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3481:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Blue: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3510:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Red: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3514:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Green: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3518:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Blue: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3537:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3570:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "order %u, index %u: Got unexpected result %.8e, expected %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3582:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3684:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Red: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3694:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Green: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3705:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Blue: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3730:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3788:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Red: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3800:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Green: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3813:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Blue: case %u, order %u: expected[%u] = %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:3826:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:3940:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal || (fabs(expected) < 1.0e-6f && fabs(test[l].red_received[j]) < 1.0e-6f), data/wine-5.0/dlls/d3dx9_36/tests/math.c:3951:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal || (fabs(expected) < 1.0e-6f && fabs(test[l].green_received[j]) < 1.0e-6f), data/wine-5.0/dlls/d3dx9_36/tests/math.c:3963:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal || (fabs(expected) < 1.0e-6f && fabs(test[l].blue_received[j]) < 1.0e-6f), data/wine-5.0/dlls/d3dx9_36/tests/math.c:3984:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4005:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected[i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4013:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4042:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected[i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4050:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected_aliased[i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4058:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4091:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected[i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4104:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected[20 + i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4114:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Expected[%u] = %.8e, received = %.8e.\n", i, expected[40 + i], c[i]); data/wine-5.0/dlls/d3dx9_36/tests/math.c:4123:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4209:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Order %u index %u, expected %.8e, received %.8e.\n", data/wine-5.0/dlls/d3dx9_36/tests/math.c:4221:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4328:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal || (fabs(expected) < 2.0e-5f && fabs(out_temp[i]) < 2.0e-5f), data/wine-5.0/dlls/d3dx9_36/tests/math.c:4341:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/d3dx9_36/tests/math.c:4362:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "order %u, element %u, expected %.8e, received %.8e.\n", order, i, expected, b[i]); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:89:17: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. equal = equal && compare(*exp, *got); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:94:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok_(__FILE__,line)(equal, "%sExpected (%s), got (%s)", prefix, exp_buffer, got_buffer); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1783:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(strlen(materials[i].pTextureFilename) + 1 == got_param->NumBytes, data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1785:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (DWORD)strlen(materials[i].pTextureFilename) + 1, got_param->NumBytes); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:1798:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = HeapAlloc(GetProcessHeap(), 0, strlen(p) + 1); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:3819:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). textlen = strlen(text); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4228:104: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GLYPHMETRICSFLOAT *glyphmetrics_float = HeapAlloc(GetProcessHeap(), 0, sizeof(GLYPHMETRICSFLOAT) * strlen(text)); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4249:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). textlen = strlen(text); data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4728:9: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. int equal; data/wine-5.0/dlls/d3dx9_36/tests/mesh.c:4819:13: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (equal != 0) break; data/wine-5.0/dlls/d3dxof/d3dxof.c:586:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(This->pobj->name); data/wine-5.0/dlls/d3dxof/d3dxof.c:850:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(This->ptarget->name); data/wine-5.0/dlls/d3dxof/parsing.c:403:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(keyword); data/wine-5.0/dlls/d3dxof/parsing.c:1249:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen((char*)buf->value) + 1; data/wine-5.0/dlls/dbgeng/dbgeng.c:89:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(str), dst_len; data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:438:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) + 1 == length, "Unexpected length.\n"); data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:447:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) + 1 == length, "Unexpected length.\n"); data/wine-5.0/dlls/dbgeng/tests/dbgeng.c:451:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) + 2 == length, "Unexpected length %u.\n", length); data/wine-5.0/dlls/dbghelp/dbghelp.c:733:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while ((len = read(fd, buffer, sizeof(buffer))) > 0) data/wine-5.0/dlls/dbghelp/dwarf.c:481:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). case DW_FORM_string: step = strlen((const char*)ctx->data) + 1; break; data/wine-5.0/dlls/dbghelp/dwarf.c:983:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). last = ctx->cpp_name + MAX_SYM_NAME - strlen(name) - 1; data/wine-5.0/dlls/dbghelp/dwarf.c:1010:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(diname.u.string); data/wine-5.0/dlls/dbghelp/dwarf.c:2236:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned rellen = strlen(rel); data/wine-5.0/dlls/dbghelp/dwarf.c:2246:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned baselen = strlen(compile_dir); data/wine-5.0/dlls/dbghelp/dwarf.c:2266:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). traverse.data += strlen(name) + 1; data/wine-5.0/dlls/dbghelp/dwarf.c:2343:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). traverse.data += strlen((const char *)traverse.data) + 1; data/wine-5.0/dlls/dbghelp/dwarf.c:2651:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ctx->data += strlen(augmentation) + 1; data/wine-5.0/dlls/dbghelp/elf_module.c:660:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = symname + strlen(symname) - 1; data/wine-5.0/dlls/dbghelp/elf_module.c:1155:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD crc = *(const DWORD*)(dbg_link + ((DWORD_PTR)(strlen(dbg_link) + 4) & ~3)); data/wine-5.0/dlls/dbghelp/macho_module.c:708:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fmap->fd, &fat_header, sizeof(fat_header)) != sizeof(fat_header)) data/wine-5.0/dlls/dbghelp/macho_module.c:722:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fmap->fd, &fat_arch, sizeof(fat_arch)) != sizeof(fat_arch)) data/wine-5.0/dlls/dbghelp/macho_module.c:741:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fmap->fd, &fmap->mach_header, sizeof(fmap->mach_header)) != sizeof(fmap->mach_header)) data/wine-5.0/dlls/dbghelp/minidump.c:661:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wine_extra += strlen(build_id) + 1 + strlen(sys_name) + 1 + strlen(release_name) + 1; data/wine-5.0/dlls/dbghelp/minidump.c:661:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wine_extra += strlen(build_id) + 1 + strlen(sys_name) + 1 + strlen(release_name) + 1; data/wine-5.0/dlls/dbghelp/minidump.c:661:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wine_extra += strlen(build_id) + 1 + strlen(sys_name) + 1 + strlen(release_name) + 1; data/wine-5.0/dlls/dbghelp/minidump.c:728:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen += strlen(build_id) + 1; data/wine-5.0/dlls/dbghelp/minidump.c:730:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen += strlen(sys_name) + 1; data/wine-5.0/dlls/dbghelp/minidump.c:732:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(dc->hFile, build_id, strlen(build_id) + 1, &written, NULL); data/wine-5.0/dlls/dbghelp/minidump.c:733:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(dc->hFile, sys_name, strlen(sys_name) + 1, &written, NULL); data/wine-5.0/dlls/dbghelp/minidump.c:734:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(dc->hFile, release_name, strlen(release_name) + 1, &written, NULL); data/wine-5.0/dlls/dbghelp/msc.c:720:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + vlen + (1 + strlen(name)); data/wine-5.0/dlls/dbghelp/msc.c:869:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + leaf_len + (strlen(c_name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:884:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 4 + 2 + (strlen(type->stmember_v3.name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:899:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(type->method_v3.name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:914:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(type->nesttype_v3.name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:960:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + 4 + (strlen(type->onemethod_virt_v3.name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:964:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(type->onemethod_v3.name) + 1); data/wine-5.0/dlls/dbghelp/msc.c:1848:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr2 = ptr1 + strlen(ptr1) + 1; data/wine-5.0/dlls/dbghelp/msc.c:1850:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr1 = ptr2 + strlen(ptr2) + 1; data/wine-5.0/dlls/dbghelp/msc.c:1858:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char* ptr1 = sym->compiland_v3.name + strlen(sym->compiland_v3.name); data/wine-5.0/dlls/dbghelp/msc.c:1862:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr2 = ptr1 + strlen(ptr1) + 1; data/wine-5.0/dlls/dbghelp/msc.c:1864:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr1 = ptr2 + strlen(ptr2) + 1; data/wine-5.0/dlls/dbghelp/msc.c:2690:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = (const char*)imp + sizeof(*imp) + strlen(imp->filename); data/wine-5.0/dlls/dbghelp/msc.c:2714:96: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). imp = (const PDB_SYMBOL_IMPORT*)((const char*)first + ((ptr - (const char*)first + strlen(ptr) + 1 + 3) & ~3)); data/wine-5.0/dlls/dbghelp/msc.c:2848:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_name += strlen(file_name) + 1; data/wine-5.0/dlls/dbghelp/msc.c:2849:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file = (BYTE*)((DWORD_PTR)(file_name + strlen(file_name) + 1 + 3) & ~3); data/wine-5.0/dlls/dbghelp/path.c:40:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = str + strlen(str) - 1; p >= str && !is_sep(*p); p--); data/wine-5.0/dlls/dbghelp/path.c:205:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fptr = file + strlen(file) - 1; data/wine-5.0/dlls/dbghelp/path.c:206:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mptr = match + strlen(match) - 1; data/wine-5.0/dlls/dbghelp/source.c:76:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned bsz = strlen(base); data/wine-5.0/dlls/dbghelp/source.c:78:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = HeapAlloc(GetProcessHeap(), 0, bsz + 1 + strlen(name) + 1); data/wine-5.0/dlls/dbghelp/source.c:89:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(full) + 1; data/wine-5.0/dlls/dbghelp/source.c:173:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ptr = pair.effective->sources; *ptr; ptr += strlen(ptr) + 1) data/wine-5.0/dlls/dbghelp/stabs.c:189:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). include_defs[num_include_def].name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(file) + 1), file); data/wine-5.0/dlls/dbghelp/stabs.c:910:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l1 = strlen(udt->hash_elt.name); data/wine-5.0/dlls/dbghelp/stabs.c:911:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l2 = strlen(typename); data/wine-5.0/dlls/dbghelp/stabs.c:1253:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str_len = strlen(str); data/wine-5.0/dlls/dbghelp/stabs.c:1254:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf_len = strlen(*buf); data/wine-5.0/dlls/dbghelp/stabs.c:1322:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ptr > strs_end) || (ptr + strlen(ptr) > strs_end)) data/wine-5.0/dlls/dbghelp/stabs.c:1327:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*ptr != '\0' && (ptr[strlen(ptr) - 1] == '\\')) data/wine-5.0/dlls/dbghelp/stabs.c:1486:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ptr[strlen(symname) + 1] == 'P') data/wine-5.0/dlls/dbghelp/stabs.c:1587:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(ptr); data/wine-5.0/dlls/dbghelp/storage.c:128:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = pool_alloc(pool, strlen(str) + 1))) strcpy(ret, str); data/wine-5.0/dlls/dbghelp/symbol.c:154:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = mask = HeapAlloc(GetProcessHeap(), 0, (5 * strlen(srcfile) + 1 + sz) * sizeof(WCHAR)); data/wine-5.0/dlls/dbghelp/symbol.c:156:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). srcfileW = mask + 5 * strlen(srcfile) + 1; data/wine-5.0/dlls/dbghelp/symbol.c:708:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sym_info->NameLen = min(strlen(name), sym_info->MaxNameLen - 1); data/wine-5.0/dlls/dbghelp/symbol.c:1820:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(undecorated_name); data/wine-5.0/dlls/dbghelp/type.c:487:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sym_info->NameLen = min(strlen(tmp),sym_info->MaxNameLen-1); data/wine-5.0/dlls/ddraw/ddraw_private.h:227:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). const RECT *rect, BOOL read, unsigned int swap_interval) DECLSPEC_HIDDEN; data/wine-5.0/dlls/ddraw/surface.c:41:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). const RECT *rect, BOOL read, unsigned int swap_interval) data/wine-5.0/dlls/ddraw/surface.c:50:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (surface->ddraw->flags & DDRAW_SWAPPED && !read) data/wine-5.0/dlls/ddraw/surface.c:74:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/wine-5.0/dlls/ddraw/surface.c:106:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/wine-5.0/dlls/ddraw/tests/ddrawmodes.c:657:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). TextOutA(hdc, 0, 0, testMsg, strlen(testMsg)); data/wine-5.0/dlls/dinput/joystick_linux.c:145:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(sys_fd, id_str, 4) == 4) data/wine-5.0/dlls/dinput/joystick_linux.c:869:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (sizeof(jse)!=read(This->joyfd,&jse,sizeof(jse))) { data/wine-5.0/dlls/dinput/joystick_linuxinput.c:260:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(joydev.device = HeapAlloc(GetProcessHeap(), 0, strlen(buf) + 1))) data/wine-5.0/dlls/dinput/joystick_linuxinput.c:269:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (joydev.name = HeapAlloc(GetProcessHeap(), 0, strlen(buf) + strlen(EVDEVDRIVER) + 1))) data/wine-5.0/dlls/dinput/joystick_linuxinput.c:269:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (joydev.name = HeapAlloc(GetProcessHeap(), 0, strlen(buf) + strlen(EVDEVDRIVER) + 1))) data/wine-5.0/dlls/dinput/joystick_linuxinput.c:837:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (sizeof(ie)!=read(This->joyfd,&ie,sizeof(ie))) data/wine-5.0/dlls/dinput/joystick_osx.c:1121:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newDevice->generic.name = HeapAlloc(GetProcessHeap(),0,strlen(name) + 1); data/wine-5.0/dlls/dmband/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmband/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmband/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmband/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmband/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmcompos/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmcompos/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmcompos/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmcompos/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmcompos/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmime/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmime/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmime/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmime/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmime/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmloader/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmloader/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmloader/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmloader/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmloader/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmscript/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmscript/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmscript/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmscript/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmscript/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmstyle/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmstyle/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmstyle/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmstyle/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmstyle/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dmusic/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dmusic/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dmusic/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmusic/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dmusic/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dnsapi/dnsapi.h:42:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dst = heap_alloc( (strlen( src ) + 1) * sizeof(char) ); data/wine-5.0/dlls/dnsapi/query.c:167:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( dname ); data/wine-5.0/dlls/dnsapi/query.c:495:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( name ); data/wine-5.0/dlls/dplayx/dplay.c:1425:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(lpSrc->u1.lpszShortNameA)+1 ); data/wine-5.0/dlls/dplayx/dplay.c:1431:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(lpSrc->u2.lpszLongNameA)+1 ); data/wine-5.0/dlls/dplayx/dplay.c:2680:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwRequiredDataSize += strlen( lpGData->name.u1.lpszShortNameA ) + 1; data/wine-5.0/dlls/dplayx/dplay.c:2685:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwRequiredDataSize += strlen( lpGData->name.u2.lpszLongNameA ) + 1; data/wine-5.0/dlls/dplayx/dplay.c:3007:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwRequiredDataSize += strlen( lpPList->lpPData->name.u1.lpszShortNameA ) + 1; data/wine-5.0/dlls/dplayx/dplay.c:3012:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwRequiredDataSize += strlen( lpPList->lpPData->name.u2.lpszLongNameA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:561:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen( dest->lpSessionDesc->u1.lpszSessionNameA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:569:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen( dest->lpSessionDesc->u2.lpszPasswordA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:585:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen( dest->lpPlayerName->u1.lpszShortNameA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:593:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen( (LPSTR)dest->lpPlayerName->u2.lpszLongName ) + 1 ; data/wine-5.0/dlls/dplayx/dplayx_global.c:693:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwTotalSize += strlen( lpConn->lpSessionDesc->u1.lpszSessionNameA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:698:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwTotalSize += strlen( lpConn->lpSessionDesc->u2.lpszPasswordA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:708:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwTotalSize += strlen( lpConn->lpPlayerName->u1.lpszShortNameA ) + 1; data/wine-5.0/dlls/dplayx/dplayx_global.c:713:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwTotalSize += strlen( lpConn->lpPlayerName->u2.lpszLongNameA ) + 1; data/wine-5.0/dlls/dplayx/dplobby.c:1158:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((lpData->lpszCommandLine = HeapAlloc( GetProcessHeap(), 0, strlen(returnBuffer)+1 ))) data/wine-5.0/dlls/dplayx/dplobby.c:1172:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((lpData->lpszCurrentDirectory = HeapAlloc( GetProcessHeap(), 0, strlen(returnBuffer)+1 ))) data/wine-5.0/dlls/dplayx/dplobby.c:1186:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((lpData->lpszFileName = HeapAlloc( GetProcessHeap(), 0, strlen(returnBuffer)+1 ))) data/wine-5.0/dlls/dplayx/dplobby.c:1200:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((lpData->lpszPath = HeapAlloc( GetProcessHeap(), 0, strlen(returnBuffer)+1 ))) data/wine-5.0/dlls/dplayx/dplobby.c:1333:3: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( temp, "\\" ); data/wine-5.0/dlls/dplayx/dplobby.c:1337:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((appName = HeapAlloc( GetProcessHeap(), 0, strlen(temp)+1 ))) strcpy( appName, temp ); data/wine-5.0/dlls/dplayx/dplobby.c:1340:3: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( temp, " " ); data/wine-5.0/dlls/dplayx/dplobby.c:1343:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((enumData.lpszCommandLine = HeapAlloc( GetProcessHeap(), 0, strlen(temp)+1 ))) data/wine-5.0/dlls/dplayx/tests/dplayx.c:569:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen(flags) == 0) && (dwFlags != 0)) data/wine-5.0/dlls/dplayx/tests/dplayx.c:572:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). flags[strlen(flags)-1] = '\0'; data/wine-5.0/dlls/dplayx/tests/dplayx.c:2321:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwDataSizeFake = strlen(lpDataFake)+1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:2324:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwDataSize = strlen(lpData)+1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:2327:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwDataSizeLocal = strlen(lpDataLocal)+1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:3304:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwDataSize = strlen(lpData)+1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:3700:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen("DPENUMPLAYERS_") ) ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:3701:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( callbackData->szTrace2, ":" ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:4031:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen("DPENUMGROUPS_") ) ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:4032:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( callbackData->szTrace2, ":" ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:5036:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD messageSize = strlen(message) + 1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:5135:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). check( strlen(message)+1, dwDataSize ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:5157:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). check( strlen(message)+1, dwDataSize ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:5313:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). check( strlen(message)+1, lpDataSecure->dwDataSize ); data/wine-5.0/dlls/dplayx/tests/dplayx.c:5370:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD messageSize = strlen(message) + 1; data/wine-5.0/dlls/dplayx/tests/dplayx.c:6203:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwDataSizeLocal = strlen(lpDataLocal[0])+1, data/wine-5.0/dlls/dplayx/tests/dplayx.c:6204:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwDataSizeRemote = strlen(lpDataRemote[0])+1, data/wine-5.0/dlls/dplayx/tests/dplayx.c:6205:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwDataSizeFake = strlen(lpDataFake)+1, data/wine-5.0/dlls/dpnet/address.c:44:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = HeapAlloc( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/dlls/dpnet/address.c:501:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen((const CHAR*)lpvData)+1) != dwDataSize) data/wine-5.0/dlls/dsound/tests/capture.c:275:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/dsound/tests/ds3d.c:147:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer, "|"); data/wine-5.0/dlls/dswave/dmobject.c:292:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/dswave/dmobject.c:295:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, data, size, &read); data/wine-5.0/dlls/dswave/dmobject.c:298:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dswave/dmobject.c:298:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (!read && read < size) { data/wine-5.0/dlls/dswave/dmobject.c:300:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE_(dmfile)("Short read: %u < %u\n", read, size); data/wine-5.0/dlls/dwrite/analyzer.c:882:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). UINT32 read; data/wine-5.0/dlls/dwrite/analyzer.c:890:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (read < length && *text) { data/wine-5.0/dlls/dwrite/analyzer.c:893:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IDWriteTextAnalysisSource_GetTextAtPosition(source, read, text, &len); data/wine-5.0/dlls/dwrite/analyzer.c:898:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(*buff + read, *text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:898:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(*buff + read, *text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:1023:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). UINT32 read; data/wine-5.0/dlls/dwrite/analyzer.c:1031:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (read < length && text) { data/wine-5.0/dlls/dwrite/analyzer.c:1034:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IDWriteTextAnalysisSource_GetTextAtPosition(source, read, &text, &len); data/wine-5.0/dlls/dwrite/analyzer.c:1037:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(&buff[read], text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/analyzer.c:1037:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(&buff[read], text, min(len, length-read)*sizeof(WCHAR)); data/wine-5.0/dlls/dwrite/bidi.c:145:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(debug_type[types[i]])+1; data/wine-5.0/dlls/dwrite/bidi.c:485:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(debug_type[*run->item[i].class])+1; data/wine-5.0/dlls/explorerframe/tests/nstc.c:450:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/explorerframe/tests/nstc.c:451:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/fusion/tests/asmcache.c:802:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &written, NULL); data/wine-5.0/dlls/fusion/tests/asmenum.c:159:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &written, NULL); data/wine-5.0/dlls/fusion/tests/asmenum.c:230:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ptr, *end = path + strlen( path ); data/wine-5.0/dlls/fusion/tests/asmenum.c:265:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(format) + strlen(parent) + strlen(ffd.cFileName) + strlen(culture) + strlen(ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:265:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(format) + strlen(parent) + strlen(ffd.cFileName) + strlen(culture) + strlen(ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:265:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(format) + strlen(parent) + strlen(ffd.cFileName) + strlen(culture) + strlen(ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:265:91: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(format) + strlen(parent) + strlen(ffd.cFileName) + strlen(culture) + strlen(ptr); data/wine-5.0/dlls/fusion/tests/asmenum.c:279:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *end = path + strlen( path ); data/wine-5.0/dlls/gdi.exe16/env.c:76:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (buffer[0] && buffer[strlen(buffer)-1] == ':') buffer[strlen(buffer)-1] = 0; data/wine-5.0/dlls/gdi.exe16/env.c:76:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (buffer[0] && buffer[strlen(buffer)-1] == ':') buffer[strlen(buffer)-1] = 0; data/wine-5.0/dlls/gdi.exe16/printdrv.c:372:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pPrintJob->pszOutput = HeapAlloc(GetProcessHeap(), 0, strlen(lpOutput)+1); data/wine-5.0/dlls/gdi.exe16/printdrv.c:376:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pPrintJob->pszTitle = HeapAlloc(GetProcessHeap(), 0, strlen(lpTitle)+1); data/wine-5.0/dlls/gdi.exe16/printdrv.c:585:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Printers) + strlen(lpPrinter) + 2); data/wine-5.0/dlls/gdi.exe16/printdrv.c:585:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Printers) + strlen(lpPrinter) + 2); data/wine-5.0/dlls/gdi.exe16/printdrv.c:680:4: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Printers) + strlen(lpPrinter) + 2); data/wine-5.0/dlls/gdi.exe16/printdrv.c:680:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Printers) + strlen(lpPrinter) + 2); data/wine-5.0/dlls/gdi.exe16/printdrv.c:694:2: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(RegStr_Printer, "\\"); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:293:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len1 = strlen(description); data/wine-5.0/dlls/gdi32/enhmfdrv/init.c:294:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len2 = strlen(description + len1 + 1); data/wine-5.0/dlls/gdi32/font.c:464:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(count == -1) count = strlen(str); data/wine-5.0/dlls/gdi32/freetype.c:783:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(cached_path) + strlen(wine) + strlen(fonts) + 1 > sizeof(cached_path)) data/wine-5.0/dlls/gdi32/freetype.c:783:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(cached_path) + strlen(wine) + strlen(fonts) + 1 > sizeof(cached_path)) data/wine-5.0/dlls/gdi32/freetype.c:783:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(cached_path) + strlen(wine) + strlen(fonts) + 1 > sizeof(cached_path)) data/wine-5.0/dlls/gdi32/freetype.c:869:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). output_len = strlen(out_dir) + 1 + strlen(filename) + 5 + 5; data/wine-5.0/dlls/gdi32/freetype.c:869:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). output_len = strlen(out_dir) + 1 + strlen(filename) + 5 + 5; data/wine-5.0/dlls/gdi32/freetype.c:2875:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( file ); data/wine-5.0/dlls/gdi32/freetype.c:3017:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(name = HeapAlloc( GetProcessHeap(), 0, strlen(data_dir) + 1 + sizeof(WINE_FONT_DIR) ))) data/wine-5.0/dlls/gdi32/freetype.c:3020:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( name, "/" ); data/wine-5.0/dlls/gdi32/freetype.c:3025:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(name = HeapAlloc( GetProcessHeap(), 0, strlen(build_dir) + sizeof("/fonts") ))) data/wine-5.0/dlls/gdi32/freetype.c:3042:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name = HeapAlloc(GetProcessHeap(), 0, strlen(font_dir) + len + 1 ); data/wine-5.0/dlls/gdi32/freetype.c:3044:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(unix_name, "/"); data/wine-5.0/dlls/gdi32/freetype.c:3046:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WideCharToMultiByte(CP_UNIXCP, 0, file, -1, unix_name + strlen(unix_name), len, NULL, NULL); data/wine-5.0/dlls/gdi32/freetype.c:3629:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). import_name_len = strlen( last_part ) + 1; data/wine-5.0/dlls/gdi32/freetype.c:3635:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). non_res_name_len = sizeof( FONTRES ) + strlen( fontdir->szFaceName ); data/wine-5.0/dlls/gdi32/freetype.c:3676:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy( ptr + sizeof(FONTRES), fontdir->szFaceName, strlen( fontdir->szFaceName ) ); data/wine-5.0/dlls/gdi32/freetype.c:3906:75: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "Courier", 0, REG_SZ, (const BYTE *)fl->courier, strlen(fl->courier)+1); data/wine-5.0/dlls/gdi32/freetype.c:3907:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "MS Serif", 0, REG_SZ, (const BYTE *)fl->serif, strlen(fl->serif)+1); data/wine-5.0/dlls/gdi32/freetype.c:3908:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "MS Sans Serif", 0, REG_SZ, (const BYTE *)sserif, strlen(sserif)+1); data/wine-5.0/dlls/gdi32/freetype.c:3909:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "Small Fonts", 0, REG_SZ, (const BYTE *)fl->small, strlen(fl->small)+1); data/wine-5.0/dlls/gdi32/freetype.c:3915:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, name, 0, REG_SZ, (const BYTE *)value, strlen(value) + 1); data/wine-5.0/dlls/gdi32/freetype.c:4079:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "Codepages", 0, REG_SZ, (const BYTE *)cpbuf, strlen(cpbuf)+1); data/wine-5.0/dlls/gdi32/freetype.c:4091:103: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "OEMFONT.FON", 0, REG_SZ, (const BYTE *)nls_update_font_list[i].oem, strlen(nls_update_font_list[i].oem)+1); data/wine-5.0/dlls/gdi32/freetype.c:4092:106: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "FIXEDFON.FON", 0, REG_SZ, (const BYTE *)nls_update_font_list[i].fixed, strlen(nls_update_font_list[i].fixed)+1); data/wine-5.0/dlls/gdi32/freetype.c:4093:104: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "FONTS.FON", 0, REG_SZ, (const BYTE *)nls_update_font_list[i].system, strlen(nls_update_font_list[i].system)+1); data/wine-5.0/dlls/gdi32/freetype.c:4107:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(nls_update_font_list[i].shelldlg)+1); data/wine-5.0/dlls/gdi32/freetype.c:4109:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(nls_update_font_list[i].tmsrmn)+1); data/wine-5.0/dlls/gdi32/freetype.c:4355:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unixname = HeapAlloc( GetProcessHeap(), 0, strlen(ptr) + strlen(home) ))) data/wine-5.0/dlls/gdi32/freetype.c:4355:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unixname = HeapAlloc( GetProcessHeap(), 0, strlen(ptr) + strlen(home) ))) data/wine-5.0/dlls/gdi32/tests/dc.c:1448:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(WORD *)buf = strlen(buf + 2); data/wine-5.0/dlls/gdi32/tests/dc.c:1458:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(WORD *)buf = strlen(buf + 2); data/wine-5.0/dlls/gdi32/tests/dib.c:3051:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA( hdc, origin.x, origin.y, 0, NULL, str, strlen(str), NULL ); data/wine-5.0/dlls/gdi32/tests/dib.c:3060:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(str); i++) data/wine-5.0/dlls/gdi32/tests/font.c:1084:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPointA(hdc, szAlphabet, strlen(szAlphabet), &size); data/wine-5.0/dlls/gdi32/tests/font.c:4271:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD info[4], info2[32], read; data/wine-5.0/dlls/gdi32/tests/font.c:4380:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(h, file, sizeof(file), &read, NULL); data/wine-5.0/dlls/gdi32/tests/font.c:6111:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(lf.lfFaceName, "@"); data/wine-5.0/dlls/gdi32/tests/font.c:6280:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(lf.lfFaceName, "@"); data/wine-5.0/dlls/gdi32/tests/font.c:6913:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(teststr); data/wine-5.0/dlls/gdi32/tests/metafile.c:128:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(ret == (sizeof(device_lf) - LF_FACESIZE + strlen(device_lf.lfFaceName) + 1)), /* NT4 */ data/wine-5.0/dlls/gdiplus/image.c:2474:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return value->u.pszVal ? strlen(value->u.pszVal) + 1 : 0; data/wine-5.0/dlls/gdiplus/metafile.c:3901:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). UINT read; data/wine-5.0/dlls/gdiplus/metafile.c:3913:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read) data/wine-5.0/dlls/gdiplus/metafile.c:3915:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). copy = heap_alloc_zero(read); data/wine-5.0/dlls/gdiplus/metafile.c:3916:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). GetMetaFileBitsEx(hwmf, read, copy); data/wine-5.0/dlls/gdiplus/metafile.c:3918:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hemf = SetWinMetaFileBits(read, copy, NULL, NULL); data/wine-5.0/dlls/gdiplus/tests/matrix.c:165:42: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, inverted, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:166:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:190:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/gdiplus/tests/matrix.c:201:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:202:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:211:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:212:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:221:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:222:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:231:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:232:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:241:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:242:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:251:41: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. GdipIsMatrixEqual(matrix, sheared, &equal); data/wine-5.0/dlls/gdiplus/tests/matrix.c:252:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. expect(TRUE, equal); data/wine-5.0/dlls/glu32/glu.c:335:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen( ext ); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:41:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char* dst = HeapAlloc(GetProcessHeap(), 0, strlen(str)+1); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:103:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newfolder = HeapAlloc(GetProcessHeap(), 0, strlen(folder)+1+strlen(name)+1); data/wine-5.0/dlls/gphoto2.ds/gphoto2_main.c:103:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newfolder = HeapAlloc(GetProcessHeap(), 0, strlen(folder)+1+strlen(name)+1); data/wine-5.0/dlls/hhctrl.ocx/chm.c:52:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/hhctrl.ocx/chm.c:65:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BLOCK_SIZE, &read); data/wine-5.0/dlls/hhctrl.ocx/chm.c:82:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD ver=0xdeadbeef, read, buf_size; data/wine-5.0/dlls/hhctrl.ocx/chm.c:99:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). IStream_Read(stream, &ver, sizeof(ver), &read); data/wine-5.0/dlls/hhctrl.ocx/chm.c:106:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(stream, &entry, sizeof(entry), &read); data/wine-5.0/dlls/hhctrl.ocx/chm.c:113:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(stream, buf, entry.len, &read); data/wine-5.0/dlls/hhctrl.ocx/chm.c:175:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD size, read, i; data/wine-5.0/dlls/hhctrl.ocx/chm.c:188:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(ivb_stream, &size, sizeof(size), &read); data/wine-5.0/dlls/hhctrl.ocx/chm.c:196:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(ivb_stream, buf, size, &read); data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:525:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen("mapid")+1; data/wine-5.0/dlls/hhctrl.ocx/hhctrl.c:549:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(szCmdLine); data/wine-5.0/dlls/hhctrl.ocx/stream.c:171:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). node_len = strlen(node)+1; data/wine-5.0/dlls/hhctrl.ocx/stream.c:179:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(name); data/wine-5.0/dlls/hid/tests/device.c:244:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/hid/tests/device.c:297:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). GetOverlappedResult(device, &overlapped, &read, FALSE); data/wine-5.0/dlls/hid/tests/device.c:298:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/wine-5.0/dlls/hid/tests/device.c:303:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). for (i = 0; i < read && i < Caps.InputReportByteLength; i++) data/wine-5.0/dlls/hid/tests/device.c:309:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). trace("Input report (%i): %s\n", read, report); data/wine-5.0/dlls/hid/tests/device.c:311:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). process_data(Caps, ppd, data, read); data/wine-5.0/dlls/hlink/link.c:762:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/hlink/link.c:765:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pStm, &len, sizeof(len), &read); data/wine-5.0/dlls/hlink/link.c:767:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != sizeof(len)) return STG_E_READFAULT; data/wine-5.0/dlls/hlink/link.c:774:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pStm, str, len * sizeof(WCHAR), &read); data/wine-5.0/dlls/hlink/link.c:780:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != len * sizeof(WCHAR)) data/wine-5.0/dlls/hlink/link.c:796:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/hlink/link.c:799:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = IStream_Read(pStm, hdr, sizeof(hdr), &read); data/wine-5.0/dlls/hlink/link.c:800:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != sizeof(hdr) || (hdr[0] != HLINK_SAVE_MAGIC)) data/wine-5.0/dlls/http.sys/http.c:805:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return !memicmp(queue->url + 7, conn_host, strlen(queue->url) - 8 /* strip final slash */); data/wine-5.0/dlls/http.sys/http.c:932:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer + strlen(buffer), "Date: %s, %02u %s %u %02u:%02u:%02u GMT\r\n", data/wine-5.0/dlls/http.sys/http.c:948:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). format_date(buffer + strlen(buffer)); data/wine-5.0/dlls/http.sys/http.c:950:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (send(conn->socket, buffer, strlen(buffer), 0) < 0) data/wine-5.0/dlls/http.sys/http.c:1065:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). || params->url[strlen(params->url) - 1] != '/') data/wine-5.0/dlls/http.sys/http.c:1070:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(url = heap_alloc(strlen(params->url)+1))) data/wine-5.0/dlls/httpapi/httpapi_main.c:34:15: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = wcslen(str) + 1; data/wine-5.0/dlls/httpapi/httpapi_main.c:372:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer + strlen(buffer), "Date: %s, %02u %s %u %02u:%02u:%02u GMT\r\n", data/wine-5.0/dlls/httpapi/httpapi_main.c:455:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(header_names[i]) + 2 + response->s.Headers.KnownHeaders[i].RawValueLength + 2; data/wine-5.0/dlls/httpapi/httpapi_main.c:459:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(header_names[i]) + 2 + sprintf(dummy, "%d", body_len) + 2; data/wine-5.0/dlls/httpapi/httpapi_main.c:482:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer->buffer + strlen(buffer->buffer), "%s: %.*s\r\n", data/wine-5.0/dlls/httpapi/httpapi_main.c:485:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer->buffer + strlen(buffer->buffer), "Content-Length: %d\r\n", body_len); data/wine-5.0/dlls/httpapi/httpapi_main.c:490:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer->buffer + strlen(buffer->buffer), "%.*s: %.*s\r\n", header->NameLength, data/wine-5.0/dlls/httpapi/httpapi_main.c:493:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer->buffer + strlen(buffer->buffer); data/wine-5.0/dlls/httpapi/tests/httpapi.c:231:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:232:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:284:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->Headers.KnownHeaders[i].RawValueLength == strlen(expect), "Got length %u.\n", data/wine-5.0/dlls/httpapi/tests/httpapi.c:304:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->BytesReceived == strlen(req_text), "Got %s bytes.\n", wine_dbgstr_longlong(req->BytesReceived)); data/wine-5.0/dlls/httpapi/tests/httpapi.c:392:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:393:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:464:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s1, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:465:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:473:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s2, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:474:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:507:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s1, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:508:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:509:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s1, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:510:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:557:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:558:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:639:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:640:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:653:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->BytesReceived == strlen(req_text) + 1, "Got %s bytes.\n", wine_dbgstr_longlong(req->BytesReceived)); data/wine-5.0/dlls/httpapi/tests/httpapi.c:693:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:694:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:717:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:718:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:726:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->BytesReceived == strlen(req_text) + 1, "Got %s bytes.\n", wine_dbgstr_longlong(req->BytesReceived)); data/wine-5.0/dlls/httpapi/tests/httpapi.c:742:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:743:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:754:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->BytesReceived == strlen(req_text) + 2048, "Got %s bytes.\n", wine_dbgstr_longlong(req->BytesReceived)); data/wine-5.0/dlls/httpapi/tests/httpapi.c:771:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:772:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:797:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:798:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:824:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:825:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:845:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text) + 1, 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:846:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text) + 1, "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:859:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:860:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:903:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, "foo\r\n", strlen("foo\r\n"), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:904:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("foo\r\n"), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:915:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, "foo\r\n", strlen("foo\r\n"), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:916:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("foo\r\n"), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:960:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:961:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:985:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:986:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1040:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1041:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1228:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1229:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1278:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->Headers.KnownHeaders[i].RawValueLength == strlen(expect), "Got length %u.\n", data/wine-5.0/dlls/httpapi/tests/httpapi.c:1298:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(req->BytesReceived == strlen(req_text), "Got %s bytes.\n", wine_dbgstr_longlong(req->BytesReceived)); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1395:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = send(s, req_text, strlen(req_text), 0); data/wine-5.0/dlls/httpapi/tests/httpapi.c:1396:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(req_text), "send() returned %d.\n", ret); data/wine-5.0/dlls/ieframe/tests/intshcut.c:345:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, test->data, strlen(test->data), &size, NULL); data/wine-5.0/dlls/imagehlp/access.c:185:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(szFileName) + 1); data/wine-5.0/dlls/imagehlp/integrity.c:645:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( !memcmp( hdr->Name, section, strlen(section) ) ) data/wine-5.0/dlls/inetcomm/internettransport.c:262:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return InternetTransport_Write(This, pszCommand, strlen(pszCommand), fnCompletion); data/wine-5.0/dlls/inetcomm/mimeintl.c:413:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). src_len = strlen(pIn->u.pszVal); data/wine-5.0/dlls/inetcomm/mimeole.c:482:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(str); data/wine-5.0/dlls/inetcomm/mimeole.c:508:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/inetcomm/mimeole.c:523:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, buf + offset, size - offset, &read); data/wine-5.0/dlls/inetcomm/mimeole.c:526:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). offset += read; data/wine-5.0/dlls/inetcomm/mimeole.c:649:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(cp, cp + 1, strlen(cp + 1) + 1); data/wine-5.0/dlls/inetcomm/mimeole.c:1344:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(param->name) + 1; data/wine-5.0/dlls/inetcomm/mimeole.c:1347:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(param->value) + 1; data/wine-5.0/dlls/inetcomm/mimeole.c:2062:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, boundary_start; data/wine-5.0/dlls/inetcomm/mimeole.c:2063:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int boundary_len = strlen(boundary); data/wine-5.0/dlls/inetcomm/mimeole.c:2082:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, overlap, PARSER_BUF_SIZE, &read); data/wine-5.0/dlls/inetcomm/mimeole.c:2085:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). overlap[read] = '\0'; data/wine-5.0/dlls/inetcomm/mimeole.c:2136:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). start += read; data/wine-5.0/dlls/inetcomm/pop3transport.c:66:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(This->response) < 3) data/wine-5.0/dlls/inetcomm/pop3transport.c:252:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(This->response); data/wine-5.0/dlls/inetcomm/pop3transport.c:298:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(This->response); data/wine-5.0/dlls/inetcomm/pop3transport.c:654:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(pass) + strlen(This->InetTransport.ServerInfo.szPassword) + 2; /* "\r\n" */ data/wine-5.0/dlls/inetcomm/pop3transport.c:684:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(user) + strlen(This->InetTransport.ServerInfo.szUserName) + 2; /* "\r\n" */ data/wine-5.0/dlls/inetcomm/pop3transport.c:880:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(user) + strlen(username) + 2; /* "\r\n" */ data/wine-5.0/dlls/inetcomm/pop3transport.c:903:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(pass) + strlen(password) + 2; /* "\r\n" */ data/wine-5.0/dlls/inetcomm/protocol.c:328:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/inetcomm/protocol.c:336:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(pstgmed->u.pstm, buf, sizeof(buf), &read); data/wine-5.0/dlls/inetcomm/protocol.c:339:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read) data/wine-5.0/dlls/inetcomm/protocol.c:341:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Write(This->stream, buf, read, NULL); data/wine-5.0/dlls/inetcomm/protocol.c:574:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(This->stream, pv, cb, &read); data/wine-5.0/dlls/inetcomm/protocol.c:576:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/inetcomm/protocol.c:580:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read ? S_OK : S_FALSE; data/wine-5.0/dlls/inetcomm/smtptransport.c:315:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszCommand = HeapAlloc(GetProcessHeap(), 0, strlen(pszHello) + strlen(szHostName) + 2); data/wine-5.0/dlls/inetcomm/smtptransport.c:315:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszCommand = HeapAlloc(GetProcessHeap(), 0, strlen(pszHello) + strlen(szHostName) + 2); data/wine-5.0/dlls/inetcomm/smtptransport.c:318:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszCommand[strlen(pszCommand)+1] = '\0'; data/wine-5.0/dlls/inetcomm/smtptransport.c:319:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszCommand[strlen(pszCommand)] = '\n'; data/wine-5.0/dlls/inetcomm/smtptransport.c:489:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(This->pending_message.rAddressList.prgAddress[This->ulCurrentAddressIndex].szEmail); data/wine-5.0/dlls/inetcomm/smtptransport.c:710:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(szCommandFormat) - 2 /* "%s" */ + strlen(pszFromAddress); data/wine-5.0/dlls/inetcomm/smtptransport.c:737:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(szCommandFormat) - 2 /* "%s" */ + strlen(pszEmailFrom); data/wine-5.0/dlls/inetcomm/smtptransport.c:764:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(szCommandFormat) - 2 /* "%s" */ + strlen(pszEmailTo); data/wine-5.0/dlls/inetcomm/smtptransport.c:840:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(szCommandFormat) - 2 /* "%s" */ + strlen(pszAuthType); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:235:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:245:79: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IMimeInternational_ConvertBuffer(internat, 1252, 28591, &src, &dst, &read); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:247:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(test_string), "got %d\n", read); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:252:79: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IMimeInternational_ConvertBuffer(internat, 1252, 28591, &src, &dst, &read); data/wine-5.0/dlls/inetcomm/tests/mimeintl.c:254:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 2, "got %d\n", read); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:167:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = IStream_Write(stream, data, strlen(data), NULL); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:469:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ULONG read = 0xdeadbeed, exread = strlen(exdata); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:476:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(stream, buf, read_size, &read); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:478:82: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok_(__FILE__,line)(read == exread, "unexpected read size %u, expected %u\n", read, exread); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:479:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buf[read] = 0; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:480:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok_(__FILE__,line)(read == exread && !memcmp(buf, exdata, read), "unexpected data %s\n", buf); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:871:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:897:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:935:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:943:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:972:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:979:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(subject)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1069:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(string)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1083:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(zero)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1156:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1169:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1367:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1378:80: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(current_binding_protocol, buf, sizeof(buf), &read); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1380:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buf[read] = 0; data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1383:80: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(current_binding_protocol, buf, sizeof(buf), &read); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1429:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, test->content, strlen(test->content), &size, NULL); data/wine-5.0/dlls/inetcomm/tests/mimeole.c:1527:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). exlen = strlen(combine_tests[i].expected_result); data/wine-5.0/dlls/iphlpapi/ifenum.c:278:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int left, read; data/wine-5.0/dlls/iphlpapi/ifenum.c:293:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read < 0) goto fail; data/wine-5.0/dlls/iphlpapi/ifenum.c:306:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cur = HeapAlloc( GetProcessHeap(), 0, sizeof(*cur) + read ); data/wine-5.0/dlls/iphlpapi/ifenum.c:309:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cur->size = read; data/wine-5.0/dlls/iphlpapi/ifenum.c:311:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy( cur->hdr, buf, read ); data/wine-5.0/dlls/iphlpapi/ifenum.c:623:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcmp(sdl->sdl_data, name, max(sdl->sdl_nlen, strlen(name))) != 0) data/wine-5.0/dlls/iphlpapi/ifenum.c:782:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entry->dwDescrLen = min(strlen(name), MAX_INTERFACE_DESCRIPTION - 1); data/wine-5.0/dlls/iphlpapi/ipstats.c:300:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int nameLen = strlen(name); data/wine-5.0/dlls/iphlpapi/ipstats.c:1975:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_socket = strlen( socket ); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:407:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf( buffer + strlen(buffer), " mask %s", ntoa( buf->table[i].dwForwardMask )); data/wine-5.0/dlls/iphlpapi/tests/iphlpapi.c:1487:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(temp + strlen(temp), "%d ", aa->ZoneIndices[i]); data/wine-5.0/dlls/itss/tests/protocol.c:518:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == (combine_tests[i].combined_url ? strlen(combine_tests[i].combined_url)+1 data/wine-5.0/dlls/jscript/tests/activex.c:1059:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/jscript/tests/jscript.c:1328:5: [1] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant character. wcscpy(str, L"C"); data/wine-5.0/dlls/jsproxy/main.c:574:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *result_len = strlen( *result_str ) + 1; data/wine-5.0/dlls/jsproxy/main.c:607:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (hostname && len_hostname < strlen( hostname )) data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:54:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.dwScriptBufferSize = strlen(script) + 1; data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:58:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:58:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:63:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.dwScriptBufferSize = strlen(script2) + 1; data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:68:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:68:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:73:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.dwScriptBufferSize = strlen(script2) + 2; data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:77:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:77:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:83:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.dwScriptBufferSize = strlen(script3); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:106:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:106:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:113:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.dwScriptBufferSize = strlen(script) + 1; data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:119:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:119:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:122:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("DIRECT") + 1, "got %u\n", len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:127:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url) + 1, host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:127:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url) + 1, host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:130:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("DIRECT") + 1, "got %u\n", len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:135:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url) - 1, host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:135:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url) - 1, host, strlen(host), &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:138:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("DIRECT") + 1, "got %u\n", len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:143:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host) + 1, &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:143:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = pInternetGetProxyInfo( url, strlen(url), host, strlen(host) + 1, &proxy, &len ); data/wine-5.0/dlls/jsproxy/tests/jsproxy.c:146:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("DIRECT") + 1, "got %u\n", len ); data/wine-5.0/dlls/kernel32/atom.c:117:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, strlen(str), buffer, MAX_ATOM_LEN ); data/wine-5.0/dlls/kernel32/atom.c:256:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = MultiByteToWideChar( CP_ACP, 0, str, strlen(str), buffer, MAX_ATOM_LEN ); data/wine-5.0/dlls/kernel32/computername.c:95:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen( host->h_name ) < size) strcpy( name, host->h_name ); data/wine-5.0/dlls/kernel32/computername.c:265:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *size = strlen(computername); data/wine-5.0/dlls/kernel32/console.c:380:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). i = read(fd, &input[idx], 1); data/wine-5.0/dlls/kernel32/console.c:467:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (wine_server_call_err( req ) || !reply->read) ret = rci_error; data/wine-5.0/dlls/kernel32/console.c:542:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(title); data/wine-5.0/dlls/kernel32/console.c:848:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/kernel32/console.c:850:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadConsoleInputW( handle, buffer, length, &read )) return FALSE; data/wine-5.0/dlls/kernel32/console.c:851:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). input_records_WtoA( buffer, read ); data/wine-5.0/dlls/kernel32/console.c:852:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (count) *count = read; data/wine-5.0/dlls/kernel32/debugger.c:60:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). args[0] = strlen(str) + 1; data/wine-5.0/dlls/kernel32/debugger.c:111:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int str_len = strlen( str ); data/wine-5.0/dlls/kernel32/lzexpand.c:276:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). t=s+strlen(s)-1; data/wine-5.0/dlls/kernel32/lzexpand.c:297:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len=strlen(t)-1; data/wine-5.0/dlls/kernel32/lzexpand.c:515:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *mfn = HeapAlloc( GetProcessHeap(), 0, strlen(fn) + 3 ); /* "._" and \0 */ data/wine-5.0/dlls/kernel32/lzexpand.c:522:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(p) < 3) strcat( p, "_" ); /* append '_' */ data/wine-5.0/dlls/kernel32/lzexpand.c:522:28: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (strlen(p) < 3) strcat( p, "_" ); /* append '_' */ data/wine-5.0/dlls/kernel32/lzexpand.c:523:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else p[strlen(p)-1] = '_'; /* replace last character */ data/wine-5.0/dlls/kernel32/module.c:795:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (len < size) len = strlen( file_name ); data/wine-5.0/dlls/kernel32/process.c:199:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(cmdline = HeapAlloc( GetProcessHeap(), 0, strlen(lpCmdLine)+1 ))) return 0; data/wine-5.0/dlls/kernel32/process.c:243:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(cmdline = HeapAlloc( GetProcessHeap(), 0, strlen(filename) + len + 2 ))) data/wine-5.0/dlls/kernel32/process.c:247:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = cmdline + strlen(cmdline); data/wine-5.0/dlls/kernel32/process.c:562:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *pdwSize = strlen(lpExeName); data/wine-5.0/dlls/kernel32/profile.c:1478:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while(*p) p += strlen(p) + 1; data/wine-5.0/dlls/kernel32/string.c:85:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( dst, src, strlen(src)+1 ); data/wine-5.0/dlls/kernel32/tape.c:52:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). LPDWORD read, BOOL abort, BOOL security, LPVOID *context ) data/wine-5.0/dlls/kernel32/tape.c:55:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). to_read, read, abort, security, context ); data/wine-5.0/dlls/kernel32/term.c:364:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). TERM_dbkey[TERM_dbkey_index].string_len = strlen(string); data/wine-5.0/dlls/kernel32/term.c:384:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tmp); data/wine-5.0/dlls/kernel32/tests/actctx.c:588:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). manifest_len = strlen(manifest); data/wine-5.0/dlls/kernel32/tests/actctx.c:607:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, depmanifest, strlen(depmanifest), &size, NULL); data/wine-5.0/dlls/kernel32/tests/actctx.c:615:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WCHAR *wmanifest = HeapAlloc(GetProcessHeap(), 0, (strlen(manifest)+2) * sizeof(WCHAR)); data/wine-5.0/dlls/kernel32/tests/actctx.c:619:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, manifest, -1, &wmanifest[1], (strlen(manifest)+1)); data/wine-5.0/dlls/kernel32/tests/actctx.c:624:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(manifest)+1; i++) data/wine-5.0/dlls/kernel32/tests/actctx.c:627:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = create_manifest_file(filename, (char *)&wmanifest[offset], (strlen(manifest)+1-offset) * sizeof(WCHAR), NULL, NULL); data/wine-5.0/dlls/kernel32/tests/actctx.c:2620:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/kernel32/tests/actctx.c:3226:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(info->path_tmp, "\\"); data/wine-5.0/dlls/kernel32/tests/actctx.c:3500:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strnicmp(expected_path, path_msvcp, strlen(expected_path)) == 0, "Expected path to start with %s, got %s\n", expected_path, path_msvcp); data/wine-5.0/dlls/kernel32/tests/actctx.c:3501:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strnicmp(expected_path, path_msvcr, strlen(expected_path)) == 0, "Expected path to start with %s, got %s\n", expected_path, path_msvcr); data/wine-5.0/dlls/kernel32/tests/atom.c:150:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("foobar"), "bad length %d\n", len ); data/wine-5.0/dlls/kernel32/tests/atom.c:188:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memset( res + strlen(res) + 1, 'a', 10 ); data/wine-5.0/dlls/kernel32/tests/atom.c:406:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen("foobar"), "bad length %d\n", len ); data/wine-5.0/dlls/kernel32/tests/atom.c:462:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memset( res + strlen(res) + 1, 'a', 10 ); data/wine-5.0/dlls/kernel32/tests/comm.c:753:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD before, after, read, timediff, LastError; data/wine-5.0/dlls/kernel32/tests/comm.c:776:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = ReadFile(hcom, rbuf, sizeof(rbuf), &read, NULL); data/wine-5.0/dlls/kernel32/tests/comm.c:1026:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD before, after, diff, read, read1, written, evtmask=0, i; data/wine-5.0/dlls/kernel32/tests/comm.c:1066:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(hcom, rbuf, sizeof(rbuf), &read, NULL), "Readfile failed\n"); data/wine-5.0/dlls/kernel32/tests/comm.c:1067:74: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(tbuf),"ReadFile read %d bytes, expected \"%s\"\n", read,rbuf); data/wine-5.0/dlls/kernel32/tests/comm.c:1092:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = ReadFile(hcom, rbuf, sizeof(rbuf), &read, NULL); data/wine-5.0/dlls/kernel32/tests/comm.c:1095:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(tbuf),"ReadFile read %d bytes\n", read); data/wine-5.0/dlls/kernel32/tests/comm.c:1097:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). trace("Readfile for %d chars took %d ms\n", read, diff); data/wine-5.0/dlls/kernel32/tests/comm.c:1113:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = ReadFile(hcom, rbuf+read, sizeof(rbuf)-read, &read1, NULL); data/wine-5.0/dlls/kernel32/tests/comm.c:1113:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = ReadFile(hcom, rbuf+read, sizeof(rbuf)-read, &read1, NULL); data/wine-5.0/dlls/kernel32/tests/comm.c:1118:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while ((read < sizeof(tbuf)) && (i <10)); data/wine-5.0/dlls/kernel32/tests/comm.c:1120:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( read == sizeof(tbuf),"ReadFile read %d bytes\n", read); data/wine-5.0/dlls/kernel32/tests/comm.c:1121:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). trace("Plain Read for %d char at %d baud took %d ms\n", read, SLOWBAUD, after-before); data/wine-5.0/dlls/kernel32/tests/console.c:221:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteConsoleA(console, text, strlen(text), &len, NULL); data/wine-5.0/dlls/kernel32/tests/console.c:223:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(text), "unexpected len %u\n", len); data/wine-5.0/dlls/kernel32/tests/console.c:229:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int mylen = strlen(mytest); data/wine-5.0/dlls/kernel32/tests/console.c:248:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int mylen = strlen(mytest); data/wine-5.0/dlls/kernel32/tests/console.c:286:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int mylen = strlen(mytest); data/wine-5.0/dlls/kernel32/tests/console.c:372:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int mylen = strlen(mytest); data/wine-5.0/dlls/kernel32/tests/console.c:408:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int mylen = strlen(mytest); data/wine-5.0/dlls/kernel32/tests/console.c:2335:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CHAR read; data/wine-5.0/dlls/kernel32/tests/console.c:2357:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2358:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 0, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2359:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2360:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 1, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2365:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2366:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 0, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2367:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2368:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 1, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2373:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {output_handle, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2374:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {output_handle, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2407:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadConsoleOutputCharacterA(output_handle, &read, 0, origin, &count); data/wine-5.0/dlls/kernel32/tests/console.c:2412:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadConsoleOutputCharacterA(output_handle, &read, 1, origin, &count); data/wine-5.0/dlls/kernel32/tests/console.c:2419:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WCHAR read; data/wine-5.0/dlls/kernel32/tests/console.c:2441:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2442:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 0, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2443:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2444:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {NULL, &read, 1, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2449:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2450:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 0, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2451:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2452:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {INVALID_HANDLE_VALUE, &read, 1, {0, 0}, &count, 0, ERROR_INVALID_HANDLE}, data/wine-5.0/dlls/kernel32/tests/console.c:2457:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {output_handle, &read, 0, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2458:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). {output_handle, &read, 1, {0, 0}, NULL, 0xdeadbeef, ERROR_INVALID_ACCESS, 1}, data/wine-5.0/dlls/kernel32/tests/console.c:2491:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadConsoleOutputCharacterW(output_handle, &read, 0, origin, &count); data/wine-5.0/dlls/kernel32/tests/console.c:2496:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadConsoleOutputCharacterW(output_handle, &read, 1, origin, &count); data/wine-5.0/dlls/kernel32/tests/console.c:3316:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (const BYTE *) old_font, strlen(old_font) + 1); data/wine-5.0/dlls/kernel32/tests/debugger.c:109:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). event_name=HeapAlloc(GetProcessHeap(), 0, 6+strlen(basename)+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:128:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(hFile, dbgtrace, strlen(dbgtrace), &written, NULL); data/wine-5.0/dlls/kernel32/tests/debugger.c:135:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/kernel32/tests/debugger.c:146:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret=ReadFile(hFile, blackbox, size, &read, NULL); data/wine-5.0/dlls/kernel32/tests/debugger.c:148:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == size, "wrong size for '%s': read=%d\n", logfile, read); data/wine-5.0/dlls/kernel32/tests/debugger.c:149:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = ReadFile(hFile, buf, sizeof(buf) - 1, &read, NULL); data/wine-5.0/dlls/kernel32/tests/debugger.c:150:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (ret && read) data/wine-5.0/dlls/kernel32/tests/debugger.c:152:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buf[read] = 0; data/wine-5.0/dlls/kernel32/tests/debugger.c:579:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd=HeapAlloc(GetProcessHeap(), 0, strlen(argv0)+10+strlen(dbgtasks)+1+strlen(dbglog)+2+34+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:579:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd=HeapAlloc(GetProcessHeap(), 0, strlen(argv0)+10+strlen(dbgtasks)+1+strlen(dbglog)+2+34+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:579:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd=HeapAlloc(GetProcessHeap(), 0, strlen(argv0)+10+strlen(dbgtasks)+1+strlen(dbglog)+2+34+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:581:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret=RegSetValueExA(hkey, "debugger", 0, REG_SZ, (BYTE*)cmd, strlen(cmd)+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:585:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv0) + 16); data/wine-5.0/dlls/kernel32/tests/debugger.c:676:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd=HeapAlloc(GetProcessHeap(), 0, strlen(argv0)+15+1); data/wine-5.0/dlls/kernel32/tests/debugger.c:896:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv[0]) + strlen(arguments) + strlen(blackbox_file) + 2 + 10); data/wine-5.0/dlls/kernel32/tests/debugger.c:896:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv[0]) + strlen(arguments) + strlen(blackbox_file) + 2 + 10); data/wine-5.0/dlls/kernel32/tests/debugger.c:896:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv[0]) + strlen(arguments) + strlen(blackbox_file) + 2 + 10); data/wine-5.0/dlls/kernel32/tests/debugger.c:981:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv[0]) + strlen(arguments) + 2); data/wine-5.0/dlls/kernel32/tests/debugger.c:981:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(argv[0]) + strlen(arguments) + 2); data/wine-5.0/dlls/kernel32/tests/debugger.c:1023:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(name) + strlen(arguments) + strlen(blackbox_file) + 5); data/wine-5.0/dlls/kernel32/tests/debugger.c:1023:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(name) + strlen(arguments) + strlen(blackbox_file) + 5); data/wine-5.0/dlls/kernel32/tests/debugger.c:1023:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = HeapAlloc(GetProcessHeap(), 0, strlen(name) + strlen(arguments) + strlen(blackbox_file) + 5); data/wine-5.0/dlls/kernel32/tests/debugger.c:1264:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = heap_alloc(strlen(argv0) + strlen(arguments) + 16); data/wine-5.0/dlls/kernel32/tests/debugger.c:1264:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = heap_alloc(strlen(argv0) + strlen(arguments) + 16); data/wine-5.0/dlls/kernel32/tests/directory.c:74:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buf), "returned length should be equal to the length of string\n"); data/wine-5.0/dlls/kernel32/tests/directory.c:140:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buf), "returned length should be equal to the length of string\n"); data/wine-5.0/dlls/kernel32/tests/environ.c:108:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value) + 1, data/wine-5.0/dlls/kernel32/tests/environ.c:114:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value) + 1, data/wine-5.0/dlls/kernel32/tests/environ.c:120:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value), data/wine-5.0/dlls/kernel32/tests/environ.c:126:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value), data/wine-5.0/dlls/kernel32/tests/environ.c:149:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value), data/wine-5.0/dlls/kernel32/tests/environ.c:300:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || /* win98 */ data/wine-5.0/dlls/kernel32/tests/environ.c:301:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(value)+1)*2 || /* NT4 */ data/wine-5.0/dlls/kernel32/tests/environ.c:302:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == strlen(value)+2 || /* win2k, XP, win2k3 */ data/wine-5.0/dlls/kernel32/tests/environ.c:310:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:310:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:311:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(value)+1)*2 /* NT4 */, data/wine-5.0/dlls/kernel32/tests/environ.c:318:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:318:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:319:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(value)+1)*2 /* NT4 */, data/wine-5.0/dlls/kernel32/tests/environ.c:326:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:326:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(value)+1 || ret_size == strlen(value)+2 || data/wine-5.0/dlls/kernel32/tests/environ.c:327:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(value)+1)*2 /* NT4 */, data/wine-5.0/dlls/kernel32/tests/environ.c:335:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(not_an_env_var)+1 || data/wine-5.0/dlls/kernel32/tests/environ.c:336:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(not_an_env_var)+1)*2 /* NT4 */, data/wine-5.0/dlls/kernel32/tests/environ.c:358:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret_size == strlen(buf2)+1 || data/wine-5.0/dlls/kernel32/tests/environ.c:359:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_size == (strlen(buf2)+1)*2 /* NT4 */, data/wine-5.0/dlls/kernel32/tests/environ.c:398:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(name); data/wine-5.0/dlls/kernel32/tests/file.c:136:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:144:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytes_read = _hread( filehandle, buffer, 2 * strlen( sillytext ) ); data/wine-5.0/dlls/kernel32/tests/file.c:264:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:312:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:316:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _hread( filehandle, buffer, strlen( sillytext ) ) == lstrlenA( sillytext ), "erratic _hread return value\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:330:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite shouldn't be able to write never the less\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:348:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen(sillytext) ), data/wine-5.0/dlls/kernel32/tests/file.c:399:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:403:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _hread( filehandle, buffer, strlen( sillytext ) ) == lstrlenA( sillytext ), "erratic _hread return value\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:417:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:421:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _hread( filehandle, buffer, strlen( sillytext ) ) == lstrlenA( sillytext ), "erratic _hread return value\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:444:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slashname[strlen(slashname)-1]=0; data/wine-5.0/dlls/kernel32/tests/file.c:502:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _hwrite( filehandle, sillytext, strlen( sillytext ) ) != -1, "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:504:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _llseek( filehandle, 400 * strlen( sillytext ), FILE_CURRENT ) != -1, "should be able to seek\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:505:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _llseek( filehandle, 27 + 35 * strlen( sillytext ), FILE_BEGIN ) != -1, "should be able to seek\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:510:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( _llseek( filehandle, -400 * (LONG)strlen( sillytext ), FILE_END ) != -1, "should be able to seek\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:537:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:541:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR == _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite shouldn't be able to write!\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:542:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytes_read = _hread( filehandle, buffer, strlen( sillytext ) ); data/wine-5.0/dlls/kernel32/tests/file.c:543:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen( sillytext ) == bytes_read, "file read size error\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:547:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytes_read = _hread( filehandle, buffer, 2 * strlen( sillytext ) ); data/wine-5.0/dlls/kernel32/tests/file.c:548:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen( sillytext ) == bytes_read, "file read size error\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:549:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite should write just fine\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:554:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite should write just fine\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:579:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( HFILE_ERROR != _hwrite( filehandle, sillytext, strlen( sillytext ) ), "_hwrite complains\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:587:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytes_read = _lread( filehandle, buffer, 2 * strlen( sillytext ) ); data/wine-5.0/dlls/kernel32/tests/file.c:591:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (bytes_wanted = 0; bytes_wanted < strlen( sillytext ); bytes_wanted++) data/wine-5.0/dlls/kernel32/tests/file.c:1441:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( filename, "\\" ); data/wine-5.0/dlls/kernel32/tests/file.c:1499:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(Volume_1) == 49, "GetVolumeNameForVolumeMountPointA returned wrong length name <%s>\n", Volume_1); data/wine-5.0/dlls/kernel32/tests/file.c:1764:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(windowsdir) != 3) /* As in "C:\" or "F:\" */ data/wine-5.0/dlls/kernel32/tests/file.c:1766:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(windowsdir, "\\"); data/wine-5.0/dlls/kernel32/tests/file.c:2144:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( WriteFile( handle, sillytext, strlen(sillytext), &written, NULL ), "write failed\n" ); data/wine-5.0/dlls/kernel32/tests/file.c:2568:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer2, "*"); data/wine-5.0/dlls/kernel32/tests/file.c:2601:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer2, "\\"); data/wine-5.0/dlls/kernel32/tests/file.c:2910:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(quoted); data/wine-5.0/dlls/kernel32/tests/file.c:3035:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetWindowsDirectoryA(szFile, ARRAY_SIZE(szFile)-1-strlen("\\win.ini")); data/wine-5.0/dlls/kernel32/tests/file.c:3263:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/wine-5.0/dlls/kernel32/tests/file.c:3286:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/wine-5.0/dlls/kernel32/tests/file.c:3333:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/wine-5.0/dlls/kernel32/tests/file.c:3916:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(temp_path); data/wine-5.0/dlls/kernel32/tests/file.c:4107:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(file, tempFileName, strlen(tempFileName), &written, NULL); data/wine-5.0/dlls/kernel32/tests/file.c:4141:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(nameInfo->FileNameLength == strlen(strPtr) * 2, data/wine-5.0/dlls/kernel32/tests/file.c:4198:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret2 = MultiByteToWideChar(CP_ACP, 0, tempFileName + strlen(tempPath), -1, tempFileNameW, ARRAY_SIZE(tempFileNameW)); data/wine-5.0/dlls/kernel32/tests/file.c:4807:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", lstrlenA(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4811:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", lstrlenA(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4816:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4816:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4821:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = pGetFinalPathNameByHandleA(file, result_path, strlen(dos_path)-2, FILE_NAME_NORMALIZED | VOLUME_NAME_DOS); data/wine-5.0/dlls/kernel32/tests/file.c:4822:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4822:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4826:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = pGetFinalPathNameByHandleA(file, result_path, strlen(dos_path)-1, FILE_NAME_NORMALIZED | VOLUME_NAME_DOS); data/wine-5.0/dlls/kernel32/tests/file.c:4827:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4827:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4831:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = pGetFinalPathNameByHandleA(file, result_path, strlen(dos_path), FILE_NAME_NORMALIZED | VOLUME_NAME_DOS); data/wine-5.0/dlls/kernel32/tests/file.c:4832:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4832:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4836:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = pGetFinalPathNameByHandleA(file, result_path, strlen(dos_path)+1, FILE_NAME_NORMALIZED | VOLUME_NAME_DOS); data/wine-5.0/dlls/kernel32/tests/file.c:4837:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4837:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(dos_path), "Expected length %u, got %u\n", (DWORD)strlen(dos_path), count); data/wine-5.0/dlls/kernel32/tests/file.c:4839:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!result_path[strlen(dos_path)], "Expected nullterminated string\n"); data/wine-5.0/dlls/kernel32/tests/file.c:4840:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(result_path[strlen(dos_path)+1] == 0x11, "Buffer overflow\n"); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1317:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "test", 0, 0, (char *)&buf, strlen("test"), NULL); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1330:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "test", 0, 0, (char *)&buf, strlen("test") + 1, NULL); data/wine-5.0/dlls/kernel32/tests/format_msg.c:1343:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "test", 0, 0, (char *)&buf, strlen("test") + 2, NULL); data/wine-5.0/dlls/kernel32/tests/heap.c:1081:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp( keyname + strlen(keyname) - 3, ".so" )) keyname[strlen(keyname) - 3] = 0; data/wine-5.0/dlls/kernel32/tests/heap.c:1081:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp( keyname + strlen(keyname) - 3, ".so" )) keyname[strlen(keyname) - 3] = 0; data/wine-5.0/dlls/kernel32/tests/locale.c:146:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define EXPECT_EQA ok(strncmp(buffer, Expected, strlen(Expected)) == 0, \ data/wine-5.0/dlls/kernel32/tests/locale.c:463:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(buffer)+1, "Expected ret != 0, got %d, error %d\n", ret, GetLastError()); data/wine-5.0/dlls/kernel32/tests/locale.c:486:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(buffer)+1, "Expected ret != 0, got %d, error %d\n", ret, GetLastError()); data/wine-5.0/dlls/kernel32/tests/locale.c:865:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp(buffer, Expected, strlen(Expected)) && strncmp(buffer, "5/4/02", strlen(Expected)) != 0) data/wine-5.0/dlls/kernel32/tests/locale.c:865:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp(buffer, Expected, strlen(Expected)) && strncmp(buffer, "5/4/02", strlen(Expected)) != 0) data/wine-5.0/dlls/kernel32/tests/locale.c:934:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strncmp(buffer, Expected, strlen(Expected)) == 0 || data/wine-5.0/dlls/kernel32/tests/locale.c:935:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(strncmp(buffer, Broken, strlen(Broken)) == 0) /* nt4 */, data/wine-5.0/dlls/kernel32/tests/locale.c:943:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strncmp(buffer, Expected, strlen(Expected)) == 0 || data/wine-5.0/dlls/kernel32/tests/locale.c:944:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(strncmp(buffer, Broken, strlen(Broken)) == 0) /* nt4 */, data/wine-5.0/dlls/kernel32/tests/locale.c:958:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strncmp(buffer, Expected, strlen(Expected)) == 0 || data/wine-5.0/dlls/kernel32/tests/locale.c:959:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(strncmp(buffer, Broken, strlen(Broken)) == 0) /* nt4 */, data/wine-5.0/dlls/kernel32/tests/locale.c:968:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strncmp(buffer, Expected, strlen(Expected)) == 0 || data/wine-5.0/dlls/kernel32/tests/locale.c:969:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(strncmp(buffer, Broken, strlen(Broken)) == 0) /* nt4 */, data/wine-5.0/dlls/kernel32/tests/locale.c:5269:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ptr->expect)+1; /* include \0 */ data/wine-5.0/dlls/kernel32/tests/locale.c:5270:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == len || (ptr->expect2 && ret == strlen(ptr->expect2)+1), data/wine-5.0/dlls/kernel32/tests/module.c:167:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len1A == strlen(bufA), "Unexpected length of GetModuleFilenameA (%d/%d)\n", len1A, lstrlenA(bufA)); data/wine-5.0/dlls/kernel32/tests/module.c:498:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buf + strlen( buf ); data/wine-5.0/dlls/kernel32/tests/module.c:727:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(dll_directories[i]); data/wine-5.0/dlls/kernel32/tests/module.c:802:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( cmpStrAW( dll_directories[i], bufferW, strlen(dll_directories[i]), data/wine-5.0/dlls/kernel32/tests/module.c:808:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str.MaximumLength = (strlen( dll_directories[i] ) - 1) * sizeof(WCHAR); data/wine-5.0/dlls/kernel32/tests/module.c:813:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (strlen( dll_directories[i] ) + 1) * sizeof(WCHAR); data/wine-5.0/dlls/kernel32/tests/path.c:273:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (passfail.shortlen==strlen(tmpstr1) && lstrcmpiA(tmpstr,tmpstr1)==0), data/wine-5.0/dlls/kernel32/tests/path.c:585:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(tmpdir) + strlen(dirname) + strlen(filename) + 2 < sizeof(buf)); data/wine-5.0/dlls/kernel32/tests/path.c:585:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(tmpdir) + strlen(dirname) + strlen(filename) + 2 < sizeof(buf)); data/wine-5.0/dlls/kernel32/tests/path.c:585:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(tmpdir) + strlen(dirname) + strlen(filename) + 2 < sizeof(buf)); data/wine-5.0/dlls/kernel32/tests/path.c:592:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i=0;i<strlen(shortbuf);i++) data/wine-5.0/dlls/kernel32/tests/path.c:628:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((rc1-strlen(tmpstr))==(rc2-strlen(curdir)), data/wine-5.0/dlls/kernel32/tests/path.c:628:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((rc1-strlen(tmpstr))==(rc2-strlen(curdir)), data/wine-5.0/dlls/kernel32/tests/path.c:663:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (passfail.shortlen==strlen(tmpstr1) && lstrcmpiA(tmpstr,tmpstr1)==0), data/wine-5.0/dlls/kernel32/tests/path.c:688:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (passfail.shortlen==strlen(tmpstr1) && lstrcmpiA(tmpstr,tmpstr1)==0), data/wine-5.0/dlls/kernel32/tests/path.c:711:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (passfail.shortlen==strlen(tmpstr1) && lstrcmpiA(tmpstr,tmpstr1)==0), data/wine-5.0/dlls/kernel32/tests/path.c:767:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (passfail.shortlen==strlen(tmpstr2) && lstrcmpiA(tmpstr1,tmpstr2)==0), data/wine-5.0/dlls/kernel32/tests/path.c:945:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_with_null = strlen(tmp_dir) + 1; data/wine-5.0/dlls/kernel32/tests/path.c:951:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buf), "returned length should be equal to the length of string\n"); data/wine-5.0/dlls/kernel32/tests/path.c:972:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buf), "returned length should be equal to the length of string\n"); data/wine-5.0/dlls/kernel32/tests/path.c:977:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buf), "returned length should be equal to the length of string\n"); data/wine-5.0/dlls/kernel32/tests/path.c:1060:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(tmp_var) == 2 && version >= 0x00060002) data/wine-5.0/dlls/kernel32/tests/path.c:1112:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (buf[strlen(buf)-1]!='\\') data/wine-5.0/dlls/kernel32/tests/path.c:1113:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buf,"\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1123:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(windir,"\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1145:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(windir,"\\"); data/wine-5.0/dlls/kernel32/tests/path.c:1164:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name = tempfile + strlen(tempfile); data/wine-5.0/dlls/kernel32/tests/path.c:1166:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(name, "*"); data/wine-5.0/dlls/kernel32/tests/path.c:1181:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(length >= strlen(tempfile) + 1, "Wrong length\n"); data/wine-5.0/dlls/kernel32/tests/path.c:1674:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(buf[strlen(buf)-1] == '\\', "Temporary path (%s) doesn't end in a slash\n", buf); data/wine-5.0/dlls/kernel32/tests/path.c:1734:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/kernel32/tests/path.c:1824:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(path2A), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1845:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(path2A), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1852:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(buffA), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1855:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(buffA), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1858:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(buffA), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1873:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(buffA), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1886:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(path2A), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/path.c:1889:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(path3A, "%s%s%s", curdirA, curdirA[strlen(curdirA)-1] != '\\' ? "\\" : "", kernel32A); data/wine-5.0/dlls/kernel32/tests/path.c:1895:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && ret == strlen(buffA), "got %d\n", ret); data/wine-5.0/dlls/kernel32/tests/pipe.c:1527:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/kernel32/tests/pipe.c:1550:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead,readbuf,sizeof(readbuf),&read, NULL), "Read from non empty pipe failed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:1551:78: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(PIPENAME), "Read from anonymous pipe got %d bytes\n", read); data/wine-5.0/dlls/kernel32/tests/pipe.c:1561:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead,readbuf,sizeof(readbuf),&read, NULL), "Read from broken pipe with pending data failed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:1562:77: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(PIPENAME), "Read from anonymous pipe got %d bytes\n", read); data/wine-5.0/dlls/kernel32/tests/pipe.c:1564:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead,readbuf,sizeof(readbuf),&read, NULL) == 0, "Broken pipe not detected\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:1577:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, buffer, size, &read, NULL), "Read from broken pipe with pending data failed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:1578:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == size, "Read from anonymous pipe got %d bytes\n", read); data/wine-5.0/dlls/kernel32/tests/pipe.c:1581:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead,readbuf,sizeof(readbuf),&read, NULL) == 0, "Broken pipe not detected\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:2611:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(client, test_string, strlen(test_string), &num_bytes, NULL); data/wine-5.0/dlls/kernel32/tests/pipe.c:2613:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(num_bytes == strlen(test_string), "only %i bytes written\n", num_bytes); data/wine-5.0/dlls/kernel32/tests/pipe.c:2622:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(completion_num_bytes == strlen(test_string), "ReadFileEx returned only %d bytes\n", completion_num_bytes); data/wine-5.0/dlls/kernel32/tests/pipe.c:2624:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(test_string, read_buf, strlen(test_string)), "ReadFileEx read wrong bytes\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3895:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, write; data/wine-5.0/dlls/kernel32/tests/pipe.c:3913:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, sizeof(readbuf), &read, &ol) == FALSE, "ReadFile should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3920:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, sizeof(readbuf), &read, &ol), "ReadFile should succeed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3956:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, sizeof(readbuf), &read, &ol2) == FALSE, "ReadFile should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3960:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(GetOverlappedResult(piperead, &ol2, &read, FALSE), "GetOverlappedResult should succeed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3961:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(teststring), "got %d\n", read); data/wine-5.0/dlls/kernel32/tests/pipe.c:3962:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (GetOverlappedResult(piperead, &ol2, &read, FALSE) == FALSE) data/wine-5.0/dlls/kernel32/tests/pipe.c:3967:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, sizeof(readbuf), &read, &ol2) == FALSE, "ReadFile should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3971:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(GetOverlappedResult(piperead, &ol2, &read, FALSE), "GetOverlappedResult should succeed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3972:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 513, "got %d, read should be %d\n", read, 513); data/wine-5.0/dlls/kernel32/tests/pipe.c:3973:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (GetOverlappedResult(piperead, &ol2, &read, FALSE) == FALSE) data/wine-5.0/dlls/kernel32/tests/pipe.c:3978:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, 1, &read, &ol2) == FALSE, "ReadFile should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3982:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(GetOverlappedResult(piperead, &ol2, &read, FALSE), "GetOverlappedResult should succeed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3983:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 1, "got %d, read should be %d\n", read, 1); data/wine-5.0/dlls/kernel32/tests/pipe.c:3984:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (GetOverlappedResult(piperead, &ol2, &read, FALSE) == FALSE) data/wine-5.0/dlls/kernel32/tests/pipe.c:3988:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, sizeof(readbuf), &read, &ol2), "ReadFile should succeed\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:3990:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (GetOverlappedResult(piperead, &ol2, &read, FALSE) == FALSE) data/wine-5.0/dlls/kernel32/tests/pipe.c:3995:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(piperead, readbuf, 1, &read, &ol2) == FALSE, "ReadFile should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:4003:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!GetOverlappedResult(piperead, &ol2, &read, FALSE), "GetOverlappedResult should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:4007:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 0, "got %d, read should be %d\n", read, 1); data/wine-5.0/dlls/kernel32/tests/pipe.c:4012:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(GetOverlappedResult(piperead, &ol2, &read, FALSE), "GetOverlappedResult should fail\n"); data/wine-5.0/dlls/kernel32/tests/pipe.c:4013:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 1, "got %d, read should be %d\n", read, 1); data/wine-5.0/dlls/kernel32/tests/pipe.c:4015:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (GetOverlappedResult(piperead, &ol2, &read, FALSE) == FALSE) data/wine-5.0/dlls/kernel32/tests/process.c:140:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:176:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) / 2; data/wine-5.0/dlls/kernel32/tests/process.c:194:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) / 4; data/wine-5.0/dlls/kernel32/tests/process.c:294:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(h, buffer, strlen(buffer), &w, NULL); data/wine-5.0/dlls/kernel32/tests/process.c:398:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptrA += strlen(ptrA) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:510:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(!(strlen(buf) & 1)); data/wine-5.0/dlls/kernel32/tests/process.c:522:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(!(strlen(buf) & 1)); data/wine-5.0/dlls/kernel32/tests/process.c:1278:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptrA += strlen(ptrA) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1293:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptrA += strlen(ptrA) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1351:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen = strlen(ptr)+1; data/wine-5.0/dlls/kernel32/tests/process.c:1361:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1363:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1365:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1367:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1373:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ptr2 = env; *ptr2; ptr2 += strlen(ptr2) + 1) data/wine-5.0/dlls/kernel32/tests/process.c:1380:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/kernel32/tests/process.c:1680:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). msg_len = strlen(msg) + 1; data/wine-5.0/dlls/kernel32/tests/profile.c:122:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:122:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:132:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:132:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:226:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:226:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:238:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:238:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:248:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:248:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( p = buf + strlen(buf) + 1; *p;p += strlen(p)+1) data/wine-5.0/dlls/kernel32/tests/profile.c:296:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = strlen("section1") + sizeof(CHAR) + strlen("section2"); data/wine-5.0/dlls/kernel32/tests/profile.c:296:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = strlen("section1") + sizeof(CHAR) + strlen("section2"); data/wine-5.0/dlls/kernel32/tests/profile.c:413:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( WriteFile( h, buffer, strlen(buffer), &size, NULL ), "failed to write\n" ); data/wine-5.0/dlls/kernel32/tests/thread.c:1840:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/kernel32/tests/volume.c:89:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/kernel32/tests/volume.c:167:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(volume) == 49, "bad volume name %s\n", volume ); data/wine-5.0/dlls/kernel32/tests/volume.c:491:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (windowsdir[strlen(windowsdir)-1] != '\\') strcat(windowsdir, "\\"); data/wine-5.0/dlls/kernel32/tests/volume.c:491:51: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (windowsdir[strlen(windowsdir)-1] != '\\') strcat(windowsdir, "\\"); data/wine-5.0/dlls/kernel32/tests/volume.c:498:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (windowsdir[strlen(windowsdir)-1] == '\\') windowsdir[strlen(windowsdir)-1] = 0; data/wine-5.0/dlls/kernel32/tests/volume.c:498:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (windowsdir[strlen(windowsdir)-1] == '\\') windowsdir[strlen(windowsdir)-1] = 0; data/wine-5.0/dlls/kernel32/tests/volume.c:546:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(Volume_1) == 49, "GetVolumeNameForVolumeMountPointA returned wrong length name %s\n", Volume_1); data/wine-5.0/dlls/kernel32/tests/volume.c:556:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(Volume_2) == 49, "Find[First/Next]Volume returned wrong length name %s\n", Volume_1); data/wine-5.0/dlls/kernel32/volume.c:79:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(config_dir) + sizeof("/dosdevices/") + 5 ))) data/wine-5.0/dlls/kernel32/volume.c:86:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dev = buffer + strlen(buffer); data/wine-5.0/dlls/kernel32/volume.c:940:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( buffer, "\n" ); data/wine-5.0/dlls/kernel32/volume.c:941:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile( handle, buffer, strlen(buffer), &size, NULL ); data/wine-5.0/dlls/kernelbase/console.c:615:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (count) *count = reply->read; data/wine-5.0/dlls/kernelbase/console.c:634:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/kernelbase/console.c:636:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!PeekConsoleInputW( handle, buffer, length, &read )) return FALSE; data/wine-5.0/dlls/kernelbase/console.c:637:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). input_records_WtoA( buffer, read ); data/wine-5.0/dlls/kernelbase/console.c:638:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (count) *count = read; data/wine-5.0/dlls/kernelbase/console.c:658:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (count) *count = length ? reply->read : 0; data/wine-5.0/dlls/kernelbase/console.c:704:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/kernelbase/console.c:720:75: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((ret = ReadConsoleOutputCharacterW( handle, wptr, length, coord, &read ))) data/wine-5.0/dlls/kernelbase/console.c:722:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = WideCharToMultiByte( GetConsoleOutputCP(), 0, wptr, read, buffer, length, NULL, NULL); data/wine-5.0/dlls/kernelbase/console.c:723:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *count = read; data/wine-5.0/dlls/kernelbase/debug.c:204:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). args[0] = strlen(str) + 1; data/wine-5.0/dlls/kernelbase/debug.c:255:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int str_len = strlen( str ); data/wine-5.0/dlls/kernelbase/locale.c:2761:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len1 < 0) len1 = strlen(str1); data/wine-5.0/dlls/kernelbase/locale.c:2762:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len2 < 0) len2 = strlen(str2); data/wine-5.0/dlls/kernelbase/locale.c:3986:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (count == -1) count = strlen(src) + 1; data/wine-5.0/dlls/kernelbase/locale.c:4841:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (srclen < 0) srclen = strlen(src) + 1; data/wine-5.0/dlls/kernelbase/path.c:1218:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!path || (len = strlen(path)) >= MAX_PATH) data/wine-5.0/dlls/kernelbase/path.c:1313:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path); data/wine-5.0/dlls/kernelbase/path.c:1314:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len + strlen(ext) >= MAX_PATH) data/wine-5.0/dlls/kernelbase/path.c:1683:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return prefix && path && PathCommonPrefixA(path, prefix, NULL) == (int)strlen(prefix); data/wine-5.0/dlls/kernelbase/path.c:1978:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!extension || (extension - path + strlen(ext) >= MAX_PATH)) data/wine-5.0/dlls/kernelbase/path.c:2009:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path) - 1; data/wine-5.0/dlls/kernelbase/path.c:2045:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = CharPrevA(path, path + strlen(path)); data/wine-5.0/dlls/kernelbase/path.c:2257:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return (char *)path + strlen(path); data/wine-5.0/dlls/kernelbase/path.c:2336:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMoveMemory(path, filename, strlen(filename) + 1); data/wine-5.0/dlls/kernelbase/path.c:2532:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(path) + 1; data/wine-5.0/dlls/kernelbase/path.c:2825:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result->cchSuffix = strlen(result->pszSuffix); data/wine-5.0/dlls/kernelbase/path.c:4096:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len1 = strlen(url1); data/wine-5.0/dlls/kernelbase/path.c:4098:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len2 = strlen(url2); data/wine-5.0/dlls/kernelbase/path.c:4560:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). last = url + strlen(url) - 1; data/wine-5.0/dlls/kernelbase/path.c:5055:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HashData((const BYTE *)url, (int)strlen(url), dest, dest_len); data/wine-5.0/dlls/kernelbase/path.c:5074:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HashData((const BYTE *)urlA, (int)strlen(urlA), dest, dest_len); data/wine-5.0/dlls/kernelbase/process.c:157:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while (*e) e += strlen(e) + 1; data/wine-5.0/dlls/kernelbase/registry.c:1120:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = strlen((const char *)data) + 1; data/wine-5.0/dlls/kernelbase/security.c:280:57: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL WINAPI EqualDomainSid( PSID sid1, PSID sid2, BOOL *equal ) data/wine-5.0/dlls/kernelbase/security.c:285:40: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. TRACE( "(%p,%p,%p)\n", sid1, sid2, equal ); data/wine-5.0/dlls/kernelbase/security.c:293:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/kernelbase/string.c:159:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(str); data/wine-5.0/dlls/kernelbase/string.c:175:15: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = wcslen(str); data/wine-5.0/dlls/kernelbase/string.c:303:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = str ? strlen(str) + 1 : 1; data/wine-5.0/dlls/kernelbase/string.c:359:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(search); data/wine-5.0/dlls/kernelbase/string.c:360:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = str + strlen(str); data/wine-5.0/dlls/kernelbase/string.c:495:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(search); data/wine-5.0/dlls/kernelbase/string.c:496:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = str + strlen(str); data/wine-5.0/dlls/kernelbase/string.c:776:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ptr); data/wine-5.0/dlls/kernelbase/string.c:1058:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CharLowerBuffA( str, strlen(str) ); data/wine-5.0/dlls/kernelbase/string.c:1171:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CharUpperBuffA(str, strlen(str)); data/wine-5.0/dlls/kernelbase/string.c:1397:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/kernelbase/version.c:101:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD_ALIGN( (ver), (ver)->szKey + strlen((ver)->szKey) + 1 ) data/wine-5.0/dlls/kernelbase/version.c:1087:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(filename); data/wine-5.0/dlls/kernelbase/version.c:1088:47: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (len && filename[len - 1] != '\\') strcat( filename, "\\" ); data/wine-5.0/dlls/kernelbase/version.c:1194:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). UINT len = strlen(destDir) + 1; data/wine-5.0/dlls/kernelbase/version.c:1201:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). UINT len = strlen(curDir) + 1; data/wine-5.0/dlls/krnl386.exe16/atom.c:219:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( buffer ); data/wine-5.0/dlls/krnl386.exe16/atom.c:305:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((len = strlen( str )) > 255) len = 255; data/wine-5.0/dlls/krnl386.exe16/atom.c:342:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(text); data/wine-5.0/dlls/krnl386.exe16/error.c:238:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer + strlen(buffer), "%x", uErr); data/wine-5.0/dlls/krnl386.exe16/file.c:197:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen( module ) + 1 + /* then module path */ data/wine-5.0/dlls/krnl386.exe16/file.c:203:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( p ); data/wine-5.0/dlls/krnl386.exe16/file.c:206:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( p ); data/wine-5.0/dlls/krnl386.exe16/file.c:211:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( p ); data/wine-5.0/dlls/krnl386.exe16/file.c:509:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prefix16 = HeapAlloc(GetProcessHeap(), 0, strlen(prefix) + 2); data/wine-5.0/dlls/krnl386.exe16/file.c:580:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). src += strlen(src) + 1; data/wine-5.0/dlls/krnl386.exe16/file.c:589:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). src += strlen(src) + 1; data/wine-5.0/dlls/krnl386.exe16/int21.c:481:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). heap->filename_size = 8 + strlen(terminators); data/wine-5.0/dlls/krnl386.exe16/int21.c:482:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). heap->filename_illegal_size = strlen(terminators); data/wine-5.0/dlls/krnl386.exe16/int21.c:917:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (pathA[strlen(pathA) - 1] == '/') data/wine-5.0/dlls/krnl386.exe16/int21.c:3279:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (len = strlen(dst); len < 15; len++) dst[len] = ' '; data/wine-5.0/dlls/krnl386.exe16/int21.c:3555:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *p = name + strlen(name); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:596:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(OFSTRUCT) - sizeof(ofs->szPathName) + strlen(path) + 1; data/wine-5.0/dlls/krnl386.exe16/ne_module.c:692:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ofs->cBytes = sizeof(OFSTRUCT) - sizeof(ofs->szPathName) + strlen(path); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:955:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(basename) < sizeof(dllname)-6) data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1398:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1445:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = tmpstr + strlen(tmpstr); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1465:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). loadedfn = ((char*)ofs->szPathName) + strlen(ofs->szPathName); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1525:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(lpFileName); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1574:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_end = lpCmdLine+strlen(lpCmdLine); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1580:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_end = args ? args : lpCmdLine+strlen(lpCmdLine); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1598:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). arglen = strlen(args); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1626:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen( buffer ) < sizeof(buffer) - 4 && !strchr( buffer, '.' )) strcat( buffer, ".exe" ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1645:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). arglen = strlen( lpCmdLine ); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1765:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = tmpstr + strlen(tmpstr); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1785:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). loadedfn = ((char*)ofs->szPathName) + strlen(ofs->szPathName); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1802:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(s); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1875:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(basename); data/wine-5.0/dlls/krnl386.exe16/ne_module.c:1880:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). + strlen(filename) + 1; data/wine-5.0/dlls/krnl386.exe16/registry.c:201:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!count && (type==REG_SZ)) count = strlen( (const char *)data ); data/wine-5.0/dlls/krnl386.exe16/resource.c:210:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (char *)(p+3)+strlen((char *)(p+3))+1 ); data/wine-5.0/dlls/krnl386.exe16/resource.c:226:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (_strnicmp( resId, (char*)(p+3)+strlen((char*)(p+3))+1, -1 )) continue; data/wine-5.0/dlls/krnl386.exe16/resource.c:258:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( str ); data/wine-5.0/dlls/krnl386.exe16/resource.c:306:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( str ); data/wine-5.0/dlls/krnl386.exe16/resource.c:489:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dialog16 = (LPSTR)dialog16 + strlen( dialog16 ) + 1; data/wine-5.0/dlls/krnl386.exe16/resource.c:502:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dialog16 = (LPSTR)dialog16 + strlen( dialog16 ) + 1; data/wine-5.0/dlls/krnl386.exe16/resource.c:550:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dialog16 = (LPSTR)dialog16 + strlen( dialog16 ) + 1; data/wine-5.0/dlls/krnl386.exe16/resource.c:720:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). menu16 = (LPSTR)menu16 + strlen( menu16 ) + 1; data/wine-5.0/dlls/krnl386.exe16/resource.c:735:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). menu16 = (LPSTR)menu16 + strlen( menu16 ) + 1; data/wine-5.0/dlls/krnl386.exe16/selector.c:360:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(MapSL(ptr)) < size) size = strlen(MapSL(ptr)) + 1; data/wine-5.0/dlls/krnl386.exe16/selector.c:360:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(MapSL(ptr)) < size) size = strlen(MapSL(ptr)) + 1; data/wine-5.0/dlls/krnl386.exe16/snoop.c:144:84: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *dll = HeapReAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, *dll, sizeof(SNOOP16_DLL)+strlen(name)); data/wine-5.0/dlls/krnl386.exe16/snoop.c:146:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *dll = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, sizeof(SNOOP16_DLL)+strlen(name)); data/wine-5.0/dlls/krnl386.exe16/snoop.c:214:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fun->name = HeapAlloc(GetProcessHeap(),0,strlen(name)+1); data/wine-5.0/dlls/krnl386.exe16/task.c:295:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name) + 1; data/wine-5.0/dlls/krnl386.exe16/task.c:332:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cmdline); data/wine-5.0/dlls/krnl386.exe16/task.c:1531:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while (*p) p += strlen(p) + 1; data/wine-5.0/dlls/krnl386.exe16/thunk.c:2196:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return k32CharToOemBuffA( s, d, strlen(s) + 1 ); data/wine-5.0/dlls/krnl386.exe16/thunk.c:2220:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return k32OemToCharBuffA( s, d, strlen(s) + 1 ); data/wine-5.0/dlls/mapi32/sendmail.c:259:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IStream_Write(stream, bodyA, strlen(bodyA)+1, NULL); data/wine-5.0/dlls/mapi32/sendmail.c:356:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD size = 0, read, written; data/wine-5.0/dlls/mapi32/sendmail.c:358:69: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (ReadFile(file, data, READ_BUF_SIZE, &read, NULL) && (read != 0)) data/wine-5.0/dlls/mapi32/sendmail.c:358:85: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (ReadFile(file, data, READ_BUF_SIZE, &read, NULL) && (read != 0)) data/wine-5.0/dlls/mapi32/sendmail.c:360:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). IStream_Write(stream, data, read, &written); data/wine-5.0/dlls/mapi32/sendmail.c:361:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/mapi32/tests/prop.c:361:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvLeft.Value.bin.cb = pvRight.Value.bin.cb = strlen(szFull); data/wine-5.0/dlls/mapi32/tests/prop.c:366:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvRight.Value.bin.cb = strlen(szPrefix); data/wine-5.0/dlls/mapi32/tests/prop.c:374:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvRight.Value.bin.cb = strlen(szPrefixLower); data/wine-5.0/dlls/mapi32/tests/prop.c:384:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvRight.Value.bin.cb = strlen(szSubstring); data/wine-5.0/dlls/mapi32/tests/prop.c:392:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvRight.Value.bin.cb = strlen(szSubstringLower); data/wine-5.0/dlls/mapi32/tests/prop.c:402:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvRight.Value.bin.cb = strlen(szFullLower); data/wine-5.0/dlls/mapi32/util.c:516:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!lpszStr || IsBadStringPtrA(lpszStr, -1) || strlen(lpszStr) >= ulLen) data/wine-5.0/dlls/mapi32/util.c:830:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ulRet = (((strlen(lpszEnc) | 3) >> 2) + 1) * 3; data/wine-5.0/dlls/mlang/mlang.c:3958:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(info->body_charset) + 1); data/wine-5.0/dlls/mlang/mlang.c:3963:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(family->fixed_font) + 1); data/wine-5.0/dlls/mlang/mlang.c:3965:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(family->proportional_font) + 1); data/wine-5.0/dlls/mlang/tests/mlang.c:2345:80: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI stream_Read(IStream *iface, void *buf, ULONG len, ULONG *read) data/wine-5.0/dlls/mlang/tests/mlang.c:2388:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER *read, ULARGE_INTEGER *written) data/wine-5.0/dlls/mmsystem.dll16/driver.c:216:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(lpFileName) < 1) return lpDrv; data/wine-5.0/dlls/mountmgr.sys/dbus.c:155:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return !strncmp( str, prefix, strlen(prefix) ); data/wine-5.0/dlls/mountmgr.sys/dbus.c:161:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(str) == 36) data/wine-5.0/dlls/mountmgr.sys/dbus.c:177:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(str) == 9 && str[4] == '-') data/wine-5.0/dlls/mountmgr.sys/dbus.c:1197:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = value ? strlen( value ) : 0; data/wine-5.0/dlls/mountmgr.sys/device.c:122:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(config_dir) + sizeof("/dosdevices/com256"); data/wine-5.0/dlls/mountmgr.sys/device.c:138:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/dlls/mountmgr.sys/device.c:527:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id_len = strlen( disk_device->unix_mount ) + 1; data/wine-5.0/dlls/mountmgr.sys/device.c:753:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( dataW, sizeof(dataW), &sizeW, driver, strlen(driver)+1); data/wine-5.0/dlls/mountmgr.sys/device.c:800:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( dataW, sizeof(dataW), &sizeW, data, strlen(data)+1); data/wine-5.0/dlls/mountmgr.sys/device.c:803:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( dataW, sizeof(dataW), &sizeW, model, strlen(model)+1); data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:309:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (device) size += strlen(device) + 1; data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:310:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (mount_point) size += strlen(mount_point) + 1; data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:340:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/mountmgr.sys/mountmgr.c:348:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/dlls/mpr/tests/mpr.c:198:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(pce->cbResource == strlen(m_resource), "cbResource, got %d\n", pce->cbResource); data/wine-5.0/dlls/mpr/tests/mpr.c:199:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(pce->cbPassword == strlen(m_password), "cbPassword, got %d\n", pce->cbPassword); data/wine-5.0/dlls/mpr/tests/mpr.c:231:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). resource_len = strlen(m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:233:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). password_len = strlen(m_password); data/wine-5.0/dlls/mpr/tests/mpr.c:238:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). resource_len = strlen(m_resource); data/wine-5.0/dlls/mpr/tests/mpr.c:243:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(password_len == strlen(m_password), "password length different, got %d\n", password_len); data/wine-5.0/dlls/mpr/tests/mpr.c:254:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). resource_len = strlen(m_resource); data/wine-5.0/dlls/mpr/wnet.c:2140:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ctxt->resourceA->lpRemoteName); data/wine-5.0/dlls/msacm32/driver.c:545:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen("Drivers32") + 1; data/wine-5.0/dlls/msado15/tests/msado15.c:392:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LONG i, len = strlen(data); data/wine-5.0/dlls/mscms/profile.c:1424:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, flags = 0; data/wine-5.0/dlls/mscms/profile.c:1469:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile( handle, data, size, &read, NULL ) || read != size) data/wine-5.0/dlls/mscms/profile.c:1469:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile( handle, data, size, &read, NULL ) || read != size) data/wine-5.0/dlls/mscms/tests/profile.c:144:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). INT i = strlen( path ); data/wine-5.0/dlls/mscms/tests/profile.c:249:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:291:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:342:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(testprofile); data/wine-5.0/dlls/mscms/tests/profile.c:389:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(testprofile); data/wine-5.0/dlls/mscms/tests/profile.c:430:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:873:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:931:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:1027:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(testprofile); data/wine-5.0/dlls/mscms/tests/profile.c:1083:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(testprofile); data/wine-5.0/dlls/mscms/tests/profile.c:1347:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(standardprofile); data/wine-5.0/dlls/mscms/tests/profile.c:1354:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). profile.cbDataSize = strlen(testprofile); data/wine-5.0/dlls/mscoree/config.c:127:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(This->file, buf, size, &read, NULL)) data/wine-5.0/dlls/mscoree/config.c:133:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (ret_read) *ret_read = read; data/wine-5.0/dlls/mscoree/config.c:160:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER *read, ULARGE_INTEGER *written) data/wine-5.0/dlls/mscoree/config.c:163:66: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FIXME("(%p)->(%p %d %p %p)\n", This, stream, size.u.LowPart, read, written); data/wine-5.0/dlls/mscoree/cordebug.c:296:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). SIZE_T *read) data/wine-5.0/dlls/mscoree/corruntimehost.c:1485:40: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (parsed_config.private_path[wcslen(parsed_config.private_path) - 1] != ';') number_of_private_paths++; data/wine-5.0/dlls/mscoree/corruntimehost.c:1492:83: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). priv_path[i] = HeapAlloc(GetProcessHeap(), 0, (config_file_dir_size + wcslen(temp) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/mscoree/metahost.c:312:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else p = string + strlen(string); data/wine-5.0/dlls/mscoree/metahost.c:778:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!wcsncmp( data_dir, unix_prefix, wcslen(unix_prefix) )) return FALSE; data/wine-5.0/dlls/mscoree/metahost.c:1401:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entry_len = strlen(entry_start); data/wine-5.0/dlls/mscoree/metahost.c:1466:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parse_override_entry(®_entry, buffer, strlen(buffer)); data/wine-5.0/dlls/mscoree/metahost.c:1478:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parse_override_entry(®_entry, buffer, strlen(buffer)); data/wine-5.0/dlls/mscoree/metahost.c:1532:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_copy = heap_alloc((strlen(name) + 3) * sizeof(WCHAR)); data/wine-5.0/dlls/mscoree/metahost.c:1542:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_end = name_copy + strlen(name); data/wine-5.0/dlls/mscoree/tests/mscoree.c:478:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = IStream_Read(stream, buffer, strlen(xmldata), &count); data/wine-5.0/dlls/mscoree/tests/mscoree.c:480:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(count == strlen(xmldata), "wrong count: %u\n", count); data/wine-5.0/dlls/mscoree/tests/mscoree.c:487:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = IStream_Write(stream, xmldata, strlen(xmldata), &count); data/wine-5.0/dlls/mscoree/tests/mscoree.c:490:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos.QuadPart = strlen(xmldata); data/wine-5.0/dlls/mscoree/tests/mscoree.c:494:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size.QuadPart = strlen(xmldata); data/wine-5.0/dlls/msctf/tests/inputprocessor.c:1883:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/msctf/tests/inputprocessor.c:1904:62: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hr = ITfCategoryMgr_IsEqualTfGuidAtom(g_cm,atom1,>est,&equal); data/wine-5.0/dlls/msctf/tests/inputprocessor.c:1909:72: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hr = ITfCategoryMgr_IsEqualTfGuidAtom(g_cm,tid,&CLSID_FakeService,&equal); data/wine-5.0/dlls/mshtml/binding.h:83:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/mshtml/mshtml_private.h:1275:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(str)+1; data/wine-5.0/dlls/mshtml/navigate.c:136:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read > This->buf_size) data/wine-5.0/dlls/mshtml/navigate.c:139:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read) { data/wine-5.0/dlls/mshtml/navigate.c:140:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(aBuf, This->buf, read); data/wine-5.0/dlls/mshtml/navigate.c:141:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read < This->buf_size) data/wine-5.0/dlls/mshtml/navigate.c:142:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memmove(This->buf, This->buf+read, This->buf_size-read); data/wine-5.0/dlls/mshtml/navigate.c:142:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memmove(This->buf, This->buf+read, This->buf_size-read); data/wine-5.0/dlls/mshtml/navigate.c:143:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). This->buf_size -= read; data/wine-5.0/dlls/mshtml/navigate.c:146:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *_retval = read; data/wine-5.0/dlls/mshtml/navigate.c:693:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!This->read && This->bom == BOM_NONE) { data/wine-5.0/dlls/mshtml/navigate.c:1058:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/mshtml/navigate.c:1082:71: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = read_stream(&This->bsc, stream, buf, sizeof(buf), &read); data/wine-5.0/dlls/mshtml/navigate.c:1083:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). }while(hres == S_OK && read); data/wine-5.0/dlls/mshtml/navigate.c:1095:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL first_read = !This->bsc.read; data/wine-5.0/dlls/mshtml/navigate.c:1098:72: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sizeof(This->nsstream->buf)-This->nsstream->buf_size, &read); data/wine-5.0/dlls/mshtml/navigate.c:1099:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read) data/wine-5.0/dlls/mshtml/navigate.c:1102:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). This->nsstream->buf_size += read; data/wine-5.0/dlls/mshtml/navigate.c:1368:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!This->bsc.read) { data/wine-5.0/dlls/mshtml/nsembed.c:633:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(gecko_path); data/wine-5.0/dlls/mshtml/nsembed.c:689:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(path); data/wine-5.0/dlls/mshtml/nsembed.c:707:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(hfile, version, sizeof(version), &read, NULL); data/wine-5.0/dlls/mshtml/nsembed.c:708:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). version[read] = 0; data/wine-5.0/dlls/mshtml/nsio.c:3710:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!_strnicmp(spec, special_schemes[i], strlen(special_schemes[i]))) data/wine-5.0/dlls/mshtml/persist.c:817:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, str, strlen(str), &written, NULL); data/wine-5.0/dlls/mshtml/persist.c:925:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hres = IStream_Write(pStm, str, strlen(str), &written); data/wine-5.0/dlls/mshtml/persist.c:1016:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG str_len, read; data/wine-5.0/dlls/mshtml/persist.c:1042:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(pStream, &str_len, sizeof(str_len), &read); data/wine-5.0/dlls/mshtml/persist.c:1045:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read != sizeof(str_len)) data/wine-5.0/dlls/mshtml/persist.c:1052:67: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(pStream, uri_str, str_len*sizeof(WCHAR), &read); data/wine-5.0/dlls/mshtml/persist.c:1053:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(SUCCEEDED(hres) && read != str_len*sizeof(WCHAR)) data/wine-5.0/dlls/mshtml/script.c:827:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!bsc->bsc.read) { data/wine-5.0/dlls/mshtml/script.c:838:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(bsc->bsc.read % sizeof(WCHAR)) { data/wine-5.0/dlls/mshtml/script.c:847:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(text, bsc->buf, bsc->bsc.read); data/wine-5.0/dlls/mshtml/script.c:848:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). text[bsc->bsc.read/sizeof(WCHAR)] = 0; data/wine-5.0/dlls/mshtml/script.c:858:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). len = MultiByteToWideChar(cp, 0, bsc->buf, bsc->bsc.read, NULL, 0); data/wine-5.0/dlls/mshtml/script.c:863:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). MultiByteToWideChar(cp, 0, bsc->buf, bsc->bsc.read, text, len); data/wine-5.0/dlls/mshtml/script.c:991:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/mshtml/script.c:1002:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(This->bsc.read >= This->size) { data/wine-5.0/dlls/mshtml/script.c:1011:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = read_stream(&This->bsc, stream, This->buf+This->bsc.read, This->size-This->bsc.read, &read); data/wine-5.0/dlls/mshtml/script.c:1011:95: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = read_stream(&This->bsc, stream, This->buf+This->bsc.read, This->size-This->bsc.read, &read); data/wine-5.0/dlls/mshtml/script.c:1011:102: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = read_stream(&This->bsc, stream, This->buf+This->bsc.read, This->size-This->bsc.read, &read); data/wine-5.0/dlls/mshtml/tests/activex.c:2254:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/mshtml/tests/activex.c:2732:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/mshtml/tests/dom.c:575:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strncmp_wa(strw, stra, strlen(stra)); data/wine-5.0/dlls/mshtml/tests/dom.c:6409:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hres = UrlMkSetSessionOption(URLMON_OPTION_USERAGENT, buf, strlen(buf), 0); data/wine-5.0/dlls/mshtml/tests/dom.c:10876:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/mshtml/tests/events.c:3267:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/mshtml/tests/htmldoc.c:699:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned data_len = strlen(data); data/wine-5.0/dlls/mshtml/tests/htmllocation.c:172:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = test->host ? strlen(test->host) : 0; data/wine-5.0/dlls/mshtml/tests/script.c:212:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/mshtml/tests/script.c:1269:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/mshtml/tests/script.c:3043:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/mshtml/tests/script.c:3047:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(This->stream, pv, cb, &read); data/wine-5.0/dlls/mshtml/tests/script.c:3052:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/mshtml/tests/script.c:3053:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read ? S_OK : S_FALSE; data/wine-5.0/dlls/mshtml/tests/script.c:3057:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read > cb) data/wine-5.0/dlls/mshtml/tests/script.c:3060:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read) { data/wine-5.0/dlls/mshtml/tests/script.c:3061:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(pv, This->ptr, read); data/wine-5.0/dlls/mshtml/tests/script.c:3062:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). This->ptr += read; data/wine-5.0/dlls/mshtml/tests/script.c:3065:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/mshtml/tests/script.c:3107:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). This->size = strlen(This->data); data/wine-5.0/dlls/mshtml/tests/script.c:3135:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). This->size = strlen(This->data); data/wine-5.0/dlls/mshtml/tests/script.c:3414:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buf + strlen(buf), "?%s", opt); data/wine-5.0/dlls/mshtml/tests/style.c:3629:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/msi/custom.c:1181:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD sz, szHighWord = 0, read; data/wine-5.0/dlls/msi/custom.c:1211:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bRet = ReadFile(hFile, buffer, sz, &read, NULL); data/wine-5.0/dlls/msi/custom.c:1218:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buffer[read] = 0; data/wine-5.0/dlls/msi/database.c:356:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, size = 0; data/wine-5.0/dlls/msi/database.c:365:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile( file, data, size, &read, NULL ) || read != size) goto done; data/wine-5.0/dlls/msi/database.c:365:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile( file, data, size, &read, NULL ) || read != size) goto done; data/wine-5.0/dlls/msi/database.c:1043:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile( handle, sep, strlen(sep), &sz, NULL )) data/wine-5.0/dlls/msi/media.c:157:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/msi/media.c:159:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (ReadFile(handle, pv, cb, &read, NULL)) data/wine-5.0/dlls/msi/media.c:160:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/dlls/msi/media.c:240:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/msi/media.c:243:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, pv, cb, &read ); data/wine-5.0/dlls/msi/media.c:245:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/dlls/msi/media.c:354:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(pfdin->psz3) + 1 + strlen(next_cab) + 1; data/wine-5.0/dlls/msi/media.c:354:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(pfdin->psz3) + 1 + strlen(next_cab) + 1; data/wine-5.0/dlls/msi/media.c:363:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(pfdin->psz3, "\\"); data/wine-5.0/dlls/msi/record.c:629:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD sz, szHighWord = 0, read; data/wine-5.0/dlls/msi/record.c:647:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL r = ReadFile(handle, hGlob, sz, &read, NULL) && read == sz; data/wine-5.0/dlls/msi/registry.c:2206:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *pcchTransformsBuf = strlen( lpTransformsBuf ); data/wine-5.0/dlls/msi/storages.c:113:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD size, read; data/wine-5.0/dlls/msi/storages.c:131:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, data, size, &read); data/wine-5.0/dlls/msi/storages.c:132:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(hr) || read != size) data/wine-5.0/dlls/msi/storages.c:140:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = ILockBytes_WriteAt(lockbytes, offset, data, size, &read); data/wine-5.0/dlls/msi/storages.c:141:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(hr) || read != size) data/wine-5.0/dlls/msi/tests/action.c:2490:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path[strlen(path) + 1] = '\0'; data/wine-5.0/dlls/msi/tests/action.c:5606:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer; *p; p += strlen(p) + 1) data/wine-5.0/dlls/msi/tests/action.c:5630:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer; *p; p += strlen(p) + 1) data/wine-5.0/dlls/msi/tests/automation.c:395:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/msi/tests/automation.c:396:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/msi/tests/custom.c:103:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "'%s': expected %u, got %u\n", prop, strlen(buffer), sz); data/wine-5.0/dlls/msi/tests/custom.c:103:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "'%s': expected %u, got %u\n", prop, strlen(buffer), sz); data/wine-5.0/dlls/msi/tests/custom.c:133:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:140:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:195:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"q"); data/wine-5.0/dlls/msi/tests/custom.c:202:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:209:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:216:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:312:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:341:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:364:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:393:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:455:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:461:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, sz == strlen(buffer), "got size %u\n", sz); data/wine-5.0/dlls/msi/tests/custom.c:596:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"q"); data/wine-5.0/dlls/msi/tests/custom.c:603:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:610:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:617:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:695:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"q"); data/wine-5.0/dlls/msi/tests/custom.c:702:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:709:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:712:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, strlen(buffer) == srcsz - 1, "wrong buffer length %d\n", strlen(buffer)); data/wine-5.0/dlls/msi/tests/custom.c:712:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, strlen(buffer) == srcsz - 1, "wrong buffer length %d\n", strlen(buffer)); data/wine-5.0/dlls/msi/tests/custom.c:716:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:719:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, strlen(buffer) == srcsz, "wrong buffer length %d\n", strlen(buffer)); data/wine-5.0/dlls/msi/tests/custom.c:719:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(hinst, strlen(buffer) == srcsz, "wrong buffer length %d\n", strlen(buffer)); data/wine-5.0/dlls/msi/tests/custom.c:902:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"q"); data/wine-5.0/dlls/msi/tests/custom.c:909:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:916:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:923:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:1052:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"q"); data/wine-5.0/dlls/msi/tests/custom.c:1062:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:1071:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:1080:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/custom.c:1195:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1202:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1215:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1222:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1232:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1239:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1249:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1256:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/custom.c:1317:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, text, strlen(text), &size, NULL); data/wine-5.0/dlls/msi/tests/custom.c:1425:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/custom.c:1579:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer; *p; p += strlen(p) + 1) data/wine-5.0/dlls/msi/tests/custom.c:1602:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer; *p; p += strlen(p) + 1) data/wine-5.0/dlls/msi/tests/db.c:307:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(values) + strlen(insert) + 1; data/wine-5.0/dlls/msi/tests/db.c:307:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(values) + strlen(insert) + 1; data/wine-5.0/dlls/msi/tests/db.c:513:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(desc), "length was wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:559:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:559:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:564:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:564:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:569:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:569:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:574:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:574:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(desc) - strlen("extra")), "length wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:888:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:909:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:941:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:1424:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( length == strlen(expected), "length of data wrong\n"); data/wine-5.0/dlls/msi/tests/db.c:1497:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &written, NULL); data/wine-5.0/dlls/msi/tests/db.c:1498:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/msi/tests/db.c:5488:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/msi/tests/db.c:5627:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, data, MAX_PATH, &read); data/wine-5.0/dlls/msi/tests/db.c:5629:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 4, "Expected 4, got %d\n", read); data/wine-5.0/dlls/msi/tests/db.c:5630:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). todo_wine ok(!memcmp(data, data10, read), "Unexpected data\n"); data/wine-5.0/dlls/msi/tests/db.c:5639:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, data, MAX_PATH, &read); data/wine-5.0/dlls/msi/tests/db.c:5641:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 8, "Expected 8, got %d\n", read); data/wine-5.0/dlls/msi/tests/db.c:5644:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!memcmp(data, data11, read), "Unexpected data\n"); data/wine-5.0/dlls/msi/tests/db.c:5654:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, buffer, MAX_PATH, &read); data/wine-5.0/dlls/msi/tests/db.c:5656:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 24, "Expected 24, got %d\n", read); data/wine-5.0/dlls/msi/tests/db.c:5657:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!memcmp(buffer, data12, read), "Unexpected data\n"); data/wine-5.0/dlls/msi/tests/db.c:5666:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, data, MAX_PATH, &read); data/wine-5.0/dlls/msi/tests/db.c:5670:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 64, "Expected 64, got %d\n", read); data/wine-5.0/dlls/msi/tests/db.c:5671:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!memcmp(data, data13, read), "Unexpected data\n"); data/wine-5.0/dlls/msi/tests/db.c:6698:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/msi/tests/db.c:6702:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(file, buffer, MAX_PATH, &read, NULL); data/wine-5.0/dlls/msi/tests/db.c:9126:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9133:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9146:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9153:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9163:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9170:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9180:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/db.c:9187:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "x"); data/wine-5.0/dlls/msi/tests/install.c:2268:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tempname && (strlen(tempname) < (unsigned)cbTempName)) data/wine-5.0/dlls/msi/tests/install.c:2430:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &written, NULL); data/wine-5.0/dlls/msi/tests/install.c:2504:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/msi/tests/install.c:2517:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(handle, buffer, size, &read, NULL); data/wine-5.0/dlls/msi/tests/install.c:3066:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path[strlen(path) + 1] = '\0'; data/wine-5.0/dlls/msi/tests/install.c:3414:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "readonlyfile", strlen("readonlyfile"), &size, NULL); data/wine-5.0/dlls/msi/tests/install.c:3466:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "readonlyfile", strlen("readonlyfile"), &size, NULL); data/wine-5.0/dlls/msi/tests/install.c:3600:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path[strlen(path) + 1] = '\0'; data/wine-5.0/dlls/msi/tests/install.c:5228:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (src = buf; *src; src = dst + strlen(dst) + 1) data/wine-5.0/dlls/msi/tests/install.c:5233:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dst = src + strlen(src) + 1; data/wine-5.0/dlls/msi/tests/install.c:5238:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf2ptr += strlen(src) + 1; data/wine-5.0/dlls/msi/tests/install.c:5240:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf2ptr += strlen(dst) + 1; data/wine-5.0/dlls/msi/tests/install.c:5278:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len, data_len = strlen(data); data/wine-5.0/dlls/msi/tests/install.c:6109:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(text) && !memcmp(buffer, text, size), "got %.*s\n", size, buffer); data/wine-5.0/dlls/msi/tests/msi.c:979:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = RegSetValueA(hkey, NULL, REG_SZ, "test", strlen("test")); data/wine-5.0/dlls/msi/tests/msi.c:1013:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = RegSetValueA(hkey, NULL, REG_SZ, "test", strlen("test")); data/wine-5.0/dlls/msi/tests/msi.c:13389:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen(sid), "unexpected length %u\n", len ); data/wine-5.0/dlls/msi/tests/msi.c:13396:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen(sid), "unexpected length %u\n", len ); data/wine-5.0/dlls/msi/tests/msi.c:13570:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( len == strlen(sid), "unexpected length %u\n", len ); data/wine-5.0/dlls/msi/tests/msi.c:13898:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "\\" ); data/wine-5.0/dlls/msi/tests/msi.c:13980:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "\\" ); data/wine-5.0/dlls/msi/tests/package.c:753:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(values) + strlen(insert) + 1; data/wine-5.0/dlls/msi/tests/package.c:753:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(values) + strlen(insert) + 1; data/wine-5.0/dlls/msi/tests/package.c:870:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen( sig ) + 10 + strlen( path ) + strlen( name ) + 10 + sizeof( insert ); data/wine-5.0/dlls/msi/tests/package.c:870:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen( sig ) + 10 + strlen( path ) + strlen( name ) + 10 + sizeof( insert ); data/wine-5.0/dlls/msi/tests/package.c:870:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen( sig ) + 10 + strlen( path ) + strlen( name ) + 10 + sizeof( insert ); data/wine-5.0/dlls/msi/tests/package.c:989:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &written, NULL); data/wine-5.0/dlls/msi/tests/package.c:990:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/msi/tests/package.c:2207:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/package.c:2214:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/package.c:2271:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "q"); data/wine-5.0/dlls/msi/tests/package.c:2278:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/package.c:2285:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/package.c:2292:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"x"); data/wine-5.0/dlls/msi/tests/package.c:3000:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(curr_dir) > 3) lstrcatA( expected, "\\" ); data/wine-5.0/dlls/msi/tests/package.c:4050:85: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = RegSetValueExA(hkey, NULL, 0, REG_EXPAND_SZ, (const BYTE*)reg_expand_value, strlen(reg_expand_value) + 1); data/wine-5.0/dlls/msi/tests/package.c:5761:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5765:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5770:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5775:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5780:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5785:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5794:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5799:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/package.c:5804:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/msi/tests/patch.c:212:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile( file, data, strlen( data ), &written, NULL ); data/wine-5.0/dlls/msi/tests/patch.c:228:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "\\" ); data/wine-5.0/dlls/msi/tests/patch.c:244:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "\\"); data/wine-5.0/dlls/msi/tests/patch.c:751:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "\\" ); data/wine-5.0/dlls/msi/tests/patch.c:1355:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( CURR_DIR ); data/wine-5.0/dlls/msi/tests/record.c:103:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf,"x"); data/wine-5.0/dlls/msi/tests/suminfo.c:202:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf,"x"); data/wine-5.0/dlls/msi/tests/suminfo.c:210:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf,"x"); data/wine-5.0/dlls/msscript.ocx/tests/msscript.c:675:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/msvcirt/msvcirt.c:1323:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_buffer = buffer + strlen(buffer); data/wine-5.0/dlls/msvcirt/msvcirt.c:1781:16: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return fgetc(this->file); data/wine-5.0/dlls/msvcirt/msvcirt.c:2639:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len1 = strlen(str1), len2 = strlen(str2), i; data/wine-5.0/dlls/msvcirt/msvcirt.c:2639:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len1 = strlen(str1), len2 = strlen(str2), i; data/wine-5.0/dlls/msvcirt/msvcirt.c:3015:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ssb->base.pptr = buffer + strlen(buffer); data/wine-5.0/dlls/msvcirt/msvcirt.c:3897:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/dlls/msvcirt/msvcirt.c:4296:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ssb->base.pptr = buffer + strlen(buffer); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2749:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). last = fgetc(stb1.file); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:2755:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). last = fgetc(stb1.file); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:3834:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected_length = strlen(tests[i].expected_text); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5626:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tests[i].stream_content); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5640:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(buffer, tests[i].expected_buffer, strlen(tests[i].expected_buffer)), data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5738:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tests[i].stream_content); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5753:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(buffer, tests[i].expected_buffer, strlen(tests[i].expected_buffer)), data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:5940:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tests[i].stream_content); data/wine-5.0/dlls/msvcirt/tests/msvcirt.c:6020:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(sbf_out[tests[i].expected_val]); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1290:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(temp, "\\"); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1320:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(temp, "\\"); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1326:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(temp, "\\"); data/wine-5.0/dlls/msvcp120/tests/msvcp120.c:1764:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(longer_path, "s"); data/wine-5.0/dlls/msvcp140/tests/msvcp140.c:1118:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(path); data/wine-5.0/dlls/msvcp60/ios.c:3092:21: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fgetc(this->file); data/wine-5.0/dlls/msvcp60/ios.c:3121:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(this->file); data/wine-5.0/dlls/msvcp60/ios.c:3143:13: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(this->file); data/wine-5.0/dlls/msvcp60/ios.c:3669:21: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fgetc(this->file); data/wine-5.0/dlls/msvcp60/ios.c:3706:17: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if((c = fgetc(this->file)) == EOF) data/wine-5.0/dlls/msvcp60/ios.c:6579:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = strlen(str); data/wine-5.0/dlls/msvcp60/ios.c:7596:28: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = wcslen(str); data/wine-5.0/dlls/msvcp60/ios.c:13044:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(g); data/wine-5.0/dlls/msvcp60/ios.c:13441:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf && (mode & OPENMODE_app) ? buf+strlen(buf) : buf); data/wine-5.0/dlls/msvcp60/ios.c:13644:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf && (mode & OPENMODE_app) ? buf+strlen(buf) : buf); data/wine-5.0/dlls/msvcp60/string.c:77:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(str); data/wine-5.0/dlls/msvcp60/string.c:157:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return wcslen((WCHAR*)str); data/wine-5.0/dlls/msvcp60/tests/ios.c:892:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1030:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1096:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1171:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1235:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1297:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1356:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1440:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1589:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1597:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].line, strlen(tests[i].line)); data/wine-5.0/dlls/msvcp60/tests/ios.c:1606:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].nextline, strlen(tests[i].nextline)); data/wine-5.0/dlls/msvcp90/exception.c:104:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int name_len = strlen(EXCEPTION_STR(name)) + 1; data/wine-5.0/dlls/msvcp90/ios.c:3465:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(this->file); data/wine-5.0/dlls/msvcp90/ios.c:3478:21: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(this->file); data/wine-5.0/dlls/msvcp90/ios.c:4114:17: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if((c = fgetc(this->file)) == EOF) data/wine-5.0/dlls/msvcp90/ios.c:7023:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = strlen(str); data/wine-5.0/dlls/msvcp90/ios.c:8067:28: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = wcslen(str); data/wine-5.0/dlls/msvcp90/ios.c:14090:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(g); data/wine-5.0/dlls/msvcp90/ios.c:14488:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf && (mode & OPENMODE_app) ? buf+strlen(buf) : buf); data/wine-5.0/dlls/msvcp90/ios.c:14980:8: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(wcslen(dest) > MAX_PATH - 3) { data/wine-5.0/dlls/msvcp90/ios.c:15185:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf && (mode & OPENMODE_app) ? buf+strlen(buf) : buf); data/wine-5.0/dlls/msvcp90/locale.c:715:16: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = wcslen(name)+1; data/wine-5.0/dlls/msvcp90/locale.c:4043:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(_Locinfo__Getfalse(locinfo))+1; data/wine-5.0/dlls/msvcp90/locale.c:4048:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(_Locinfo__Gettrue(locinfo))+1; data/wine-5.0/dlls/msvcp90/locale.c:4063:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(lc->grouping)+1; data/wine-5.0/dlls/msvcp90/locale.c:4406:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(lc->grouping)+1; data/wine-5.0/dlls/msvcp90/locale.c:9782:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(days)+1; data/wine-5.0/dlls/msvcp90/locale.c:9792:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(months)+1; data/wine-5.0/dlls/msvcp90/locale.c:10046:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = p + strlen(p); data/wine-5.0/dlls/msvcp90/string.c:82:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(str); data/wine-5.0/dlls/msvcp90/string.c:206:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return wcslen((WCHAR*)str); data/wine-5.0/dlls/msvcp90/string.c:1648:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = strlen(str); data/wine-5.0/dlls/msvcp90/string.c:1768:32: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCP_size_t len = wcslen(str); data/wine-5.0/dlls/msvcp90/string.c:4259:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end.pos-beg.pos, str, strlen(str)); data/wine-5.0/dlls/msvcp90/string.c:4511:35: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end.pos-beg.pos, str, wcslen(str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1245:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1387:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1525:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1594:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1669:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1733:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1795:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1854:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:1940:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:2086:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].str, strlen(tests[i].str)); data/wine-5.0/dlls/msvcp90/tests/ios.c:2094:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].line, strlen(tests[i].line)); data/wine-5.0/dlls/msvcp90/tests/ios.c:2103:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). AtoW(wide, tests[i].nextline, strlen(tests[i].nextline)); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:372:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->decimal_point) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:373:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_decimal_point) > 0, "%s: decimal_point\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:377:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->thousands_sep) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:378:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_thousands_sep) > 0, "%s: thousands_sep\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:382:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->int_curr_symbol) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:383:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_int_curr_symbol) > 0, "%s: int_curr_symbol\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:387:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->currency_symbol) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:388:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_currency_symbol) > 0, "%s: currency_symbol\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:392:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->mon_decimal_point) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:393:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_mon_decimal_point) > 0, "%s: decimal_point\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:397:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->positive_sign) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:398:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_positive_sign) > 0, "%s: positive_sign\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:402:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lconv->negative_sign) > 0) data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:403:12: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(lconv->_W_negative_sign) > 0, "%s: negative_sign\n", locstr); data/wine-5.0/dlls/msvcr120/tests/msvcr120.c:551:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, str[i], strlen(str[i])+1, buf, ARRAY_SIZE(buf)); data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1230:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FILE *read; data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1242:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). p_lock_file(files->read); data/wine-5.0/dlls/msvcr90/tests/msvcr90.c:1250:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). p_unlock_file(files->read); data/wine-5.0/dlls/msvcrt/console.c:76:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/msvcrt/cpp.c:129:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int name_len = strlen(*name) + 1; data/wine-5.0/dlls/msvcrt/cpp.c:604:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name); data/wine-5.0/dlls/msvcrt/cpp.c:2094:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name); data/wine-5.0/dlls/msvcrt/data.c:79:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ptr = environ_strings; *ptr; ptr += strlen(ptr) + 1) data/wine-5.0/dlls/msvcrt/data.c:83:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(ptr) + 1; data/wine-5.0/dlls/msvcrt/data.c:95:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ptr = (char*) &blk[count]; *ptr; ptr += strlen(ptr) + 1) data/wine-5.0/dlls/msvcrt/data.c:316:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const unsigned int len = strlen(str) + 1 ; data/wine-5.0/dlls/msvcrt/dir.c:1115:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (sz_ext <= strlen(end)) goto do_error; data/wine-5.0/dlls/msvcrt/dir.c:1365:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(directory); data/wine-5.0/dlls/msvcrt/dir.c:1373:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(filename); data/wine-5.0/dlls/msvcrt/dir.c:1464:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(directory); data/wine-5.0/dlls/msvcrt/dir.c:1491:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(filename); data/wine-5.0/dlls/msvcrt/dir.c:1508:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(extension); data/wine-5.0/dlls/msvcrt/dir.c:1661:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT_size_t path_len, fname_len = strlen(file); data/wine-5.0/dlls/msvcrt/dir.c:1726:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fname_len = strlen(file); data/wine-5.0/dlls/msvcrt/environ.c:35:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int length=strlen(name); data/wine-5.0/dlls/msvcrt/environ.c:89:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name = HeapAlloc(GetProcessHeap(), 0, strlen(str) + 1); data/wine-5.0/dlls/msvcrt/environ.c:225:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(e) + 1; data/wine-5.0/dlls/msvcrt/environ.c:279:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *pReturnValue = strlen(e) + 1; data/wine-5.0/dlls/msvcrt/errno.c:343:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT__write( 2, str, strlen(str) ); data/wine-5.0/dlls/msvcrt/errno.c:346:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT__write( 2, MSVCRT__sys_errlist[err], strlen(MSVCRT__sys_errlist[err]) ); data/wine-5.0/dlls/msvcrt/file.c:2983:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). plen = strlen(path); data/wine-5.0/dlls/msvcrt/file.c:3339:29: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). int CDECL MSVCRT__umask(int umask) data/wine-5.0/dlls/msvcrt/file.c:3342:18: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). TRACE("(%d)\n",umask); data/wine-5.0/dlls/msvcrt/file.c:3343:18: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). MSVCRT_umask = umask; data/wine-5.0/dlls/msvcrt/file.c:4379:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read / size; data/wine-5.0/dlls/msvcrt/file.c:4671:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT_size_t len = strlen(s); data/wine-5.0/dlls/msvcrt/file.c:4825:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT_size_t len = strlen(s); data/wine-5.0/dlls/msvcrt/locale.c:211:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cmp); data/wine-5.0/dlls/msvcrt/locale.c:390:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(locale) < sizeof(data->cached_locale)) { data/wine-5.0/dlls/msvcrt/locale.c:459:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(buf+len); data/wine-5.0/dlls/msvcrt/locale.c:535:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(cur->str.names.short_wday[i]) + 1; data/wine-5.0/dlls/msvcrt/locale.c:536:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(cur->str.names.wday[i]) + 1; data/wine-5.0/dlls/msvcrt/locale.c:545:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cur->str.names.short_wday[i]); data/wine-5.0/dlls/msvcrt/locale.c:550:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cur->str.names.wday[i]); data/wine-5.0/dlls/msvcrt/locale.c:609:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(cur->str.names.short_mon[i]) + 1; data/wine-5.0/dlls/msvcrt/locale.c:610:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(cur->str.names.mon[i]) + 1; data/wine-5.0/dlls/msvcrt/locale.c:619:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cur->str.names.short_mon[i]); data/wine-5.0/dlls/msvcrt/locale.c:624:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cur->str.names.mon[i]); data/wine-5.0/dlls/msvcrt/locale.c:682:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(cur->str.str[i])+1; data/wine-5.0/dlls/msvcrt/locale.c:691:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cur->str.str[i])+1; data/wine-5.0/dlls/msvcrt/locale.c:1139:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). locale_len[i] = strlen(locale); data/wine-5.0/dlls/msvcrt/locale.c:1157:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). locale_len[0] = strlen(locale); data/wine-5.0/dlls/msvcrt/mbcs.c:111:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen( (const char*) str ); data/wine-5.0/dlls/msvcrt/mbcs.c:116:26: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. return (unsigned char*)strncat( (char*)dst, (const char*)src, len); data/wine-5.0/dlls/msvcrt/mbcs.c:602:21: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MSVCRT_size_t CDECL _mbslen(const unsigned char* str) data/wine-5.0/dlls/msvcrt/mbcs.c:823:22: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). unsigned char* CDECL _mbsnbcpy(unsigned char* dst, const unsigned char* src, MSVCRT_size_t n) data/wine-5.0/dlls/msvcrt/mbcs.c:1785:22: [1] (buffer) _mbsnbcat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. unsigned char* CDECL _mbsnbcat(unsigned char* dst, const unsigned char* src, MSVCRT_size_t len) data/wine-5.0/dlls/msvcrt/mbcs.c:2111:18: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int i, len = _mbslen(str); data/wine-5.0/dlls/msvcrt/mbcs.c:2251:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(str); data/wine-5.0/dlls/msvcrt/mbcs.c:2375:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(mbstr); data/wine-5.0/dlls/msvcrt/printf.h:233:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/msvcrt/printf.h:715:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tmp); data/wine-5.0/dlls/msvcrt/process.c:262:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += MultiByteToWideChar(CP_ACP, 0, *a, strlen(*a), p, len - (p - ret)); data/wine-5.0/dlls/msvcrt/scanf.h:161:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read; data/wine-5.0/dlls/msvcrt/scanf.h:412:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(ctx.err || !ctx.read) data/wine-5.0/dlls/msvcrt/scanf.h:414:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). consumed += ctx.read; data/wine-5.0/dlls/msvcrt/string.c:47:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char * ret = MSVCRT_malloc(strlen(str)+1); data/wine-5.0/dlls/msvcrt/string.c:256:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p1 = str, p2 = str + strlen(str) - 1; p2 > p1; ++p1, --p2) data/wine-5.0/dlls/msvcrt/string.c:1176:12: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. return strncat(dst, src, len); data/wine-5.0/dlls/msvcrt/string.c:1203:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(src); data/wine-5.0/dlls/msvcrt/string.c:1283:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(str); data/wine-5.0/dlls/msvcrt/tests/data.c:166:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(argv[3][strlen(argv[3])-1] == 'a') { data/wine-5.0/dlls/msvcrt/tests/dir.c:477:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(env1, ";"); data/wine-5.0/dlls/msvcrt/tests/file.c:58:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char *ret = path+strlen(path)-1; data/wine-5.0/dlls/msvcrt/tests/file.c:155:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(outbuffer) == (sizeof(outbuffer)-1),"strlen/sizeof error for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:160:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(fgets(buffer,strlen(outbuffer),file) !=0,"fgets failed unexpected for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:163:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == 1,"fgets dropped chars for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:164:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(buffer[0] == outbuffer[strlen(outbuffer)-1],"fgets exchanged chars for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:169:16: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(fgetc(file) == outbuffer[i], "fgetc returned wrong data for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:171:17: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(file)) == EOF, "getc did not return EOF for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:175:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(fgetc(file) == EOF, "getc did not return EOF for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:179:17: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(file)) != EOF, "getc after ungetc returned EOF for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:183:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(fgetc(file) == EOF, "getc did not return EOF for bufmode=%x\n", bufmodes[bufmode]); data/wine-5.0/dlls/msvcrt/tests/file.c:202:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(fgetws(wbuffer,strlen(outbuffer),file) !=0,"fgetws failed unexpected\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:238:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = (2*BUFSIZ-4)/strlen(padbuffer); data/wine-5.0/dlls/msvcrt/tests/file.c:240:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write (fd, padbuffer, strlen(padbuffer)); data/wine-5.0/dlls/msvcrt/tests/file.c:241:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = (2*BUFSIZ-4)%strlen(padbuffer); data/wine-5.0/dlls/msvcrt/tests/file.c:244:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write (fd, nlbuffer, strlen(nlbuffer)); data/wine-5.0/dlls/msvcrt/tests/file.c:268:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (fp=0; fp<strlen(outbuffer); fp++) data/wine-5.0/dlls/msvcrt/tests/file.c:297:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j=strlen(outbuffer); data/wine-5.0/dlls/msvcrt/tests/file.c:298:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i=fread(buffer,1,BUFSIZ+strlen(outbuffer),file); data/wine-5.0/dlls/msvcrt/tests/file.c:303:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(buffer[m]==padbuffer[m+(BUFSIZ-4)%strlen(padbuffer)],"expected %c got %c\n", padbuffer[m], buffer[m]); data/wine-5.0/dlls/msvcrt/tests/file.c:338:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (fp=0; fp<strlen(outbuffer); fp++) data/wine-5.0/dlls/msvcrt/tests/file.c:418:8: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c= fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:420:8: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c= fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:426:10: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(fp)) == '0'+ i, "fgetc after fseek failed in line %d\n", i); data/wine-5.0/dlls/msvcrt/tests/file.c:427:5: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c= fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:432:8: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c= fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:436:10: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(fp)) == '0'+ i, "fgetc after fseek with pos Offset failed in line %d\n", i); data/wine-5.0/dlls/msvcrt/tests/file.c:440:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:444:10: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(fp)) == '0'+ i, "fgetc after fseek with neg Offset failed in line %d\n", i); data/wine-5.0/dlls/msvcrt/tests/file.c:451:13: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok((c = fgetc(fp)) == '1', "fgetc fails to read next char when positioned on \\r\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:486:8: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(getc(fp) == '0', "first char not 0\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:555:17: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). rbuf[i] = fgetc(fp); data/wine-5.0/dlls/msvcrt/tests/file.c:575:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:577:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:585:9: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:674:7: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:676:7: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:770:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(l==BUFSIZ-2+strlen(mytext), "ftell expected %d got %d\n", BUFSIZ-2+lstrlenA(mytext), l); data/wine-5.0/dlls/msvcrt/tests/file.c:774:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(mytext)-2; i++, aptr++, wptr++) data/wine-5.0/dlls/msvcrt/tests/file.c:788:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<BUFSIZ-3-strlen(mytext)*sizeof(WCHAR); i++) data/wine-5.0/dlls/msvcrt/tests/file.c:799:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j=(BUFSIZ-2)/sizeof(WCHAR)-strlen(mytext); data/wine-5.0/dlls/msvcrt/tests/file.c:804:5: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). i=fgetc(tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:815:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i=0; i<strlen(mytext); i++) data/wine-5.0/dlls/msvcrt/tests/file.c:820:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j += (strlen(mytext)-1)*sizeof(WCHAR); data/wine-5.0/dlls/msvcrt/tests/file.c:825:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(mytext)-2; i++, aptr++, wptr++) data/wine-5.0/dlls/msvcrt/tests/file.c:832:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i=0; i<strlen(mytext); i++) data/wine-5.0/dlls/msvcrt/tests/file.c:840:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(mytext)-2; i++, aptr++, wptr++) data/wine-5.0/dlls/msvcrt/tests/file.c:874:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite(text, 1, strlen(text), tempfh); data/wine-5.0/dlls/msvcrt/tests/file.c:1060:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i=strlen(buffer); data/wine-5.0/dlls/msvcrt/tests/file.c:1061:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j=strlen(mytext); data/wine-5.0/dlls/msvcrt/tests/file.c:1071:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i=strlen(buffer); data/wine-5.0/dlls/msvcrt/tests/file.c:1072:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j=strlen(mytext)+3; /* should get through newline */ data/wine-5.0/dlls/msvcrt/tests/file.c:1077:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i=strlen(buffer); data/wine-5.0/dlls/msvcrt/tests/file.c:1103:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(mytext) + 1 == strlen(btext),"TEXT/BINARY mode not handled for write\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1103:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(mytext) + 1 == strlen(btext),"TEXT/BINARY mode not handled for write\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1104:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( btext[strlen(mytext)-1] == '\r', "CR not written\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1124:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(mytext); i++, aptr++, wptr++) data/wine-5.0/dlls/msvcrt/tests/file.c:1149:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(_write(tempfd,dostext,strlen(dostext)) == lstrlenA(dostext), data/wine-5.0/dlls/msvcrt/tests/file.c:1169:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(_write(tempfd,mytext,strlen(mytext)) == lstrlenA(mytext), data/wine-5.0/dlls/msvcrt/tests/file.c:1175:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( memcmp(dostext,btext,strlen(dostext)) == 0, data/wine-5.0/dlls/msvcrt/tests/file.c:1177:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( btext[strlen(dostext)-2] == '\r', "CR not written or read\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1182:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( memcmp(mytext,btext,strlen(mytext)) == 0, data/wine-5.0/dlls/msvcrt/tests/file.c:1190:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( memcmp(mytext,btext,strlen(mytext)) == 0, "problems with _O_APPEND _read\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1204:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(tempfd,btext,1); data/wine-5.0/dlls/msvcrt/tests/file.c:1228:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(_write(tempfd,dostext,strlen(dostext)) == lstrlenA(dostext), data/wine-5.0/dlls/msvcrt/tests/file.c:1234:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( memcmp(dostext,btext,strlen(dostext)) == 0, data/wine-5.0/dlls/msvcrt/tests/file.c:1236:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( btext[strlen(dostext)-2] == '\r', "CR not written or read\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1241:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( memcmp(mytext,btext,strlen(mytext)) == 0, data/wine-5.0/dlls/msvcrt/tests/file.c:1247:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(mytext); i++) /* */ data/wine-5.0/dlls/msvcrt/tests/file.c:1257:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = _read(tempfd,btext, strlen(mytext)); data/wine-5.0/dlls/msvcrt/tests/file.c:1258:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(i == strlen(mytext)-1, "_read_i %d\n", i); data/wine-5.0/dlls/msvcrt/tests/file.c:1367:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read(fd, buffer, sizeof (buffer)) == 8, "Couldn't read back the data\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1474:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read(fd, buffer, sizeof (buffer)) == 8 && memcmp(buffer, "Success", 8) == 0, "Couldn't read back the data\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1486:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read(fd, buffer, sizeof (buffer)) == 0, "Found unexpected data (%s)\n", buffer); data/wine-5.0/dlls/msvcrt/tests/file.c:1573:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(-2, &c, 1); data/wine-5.0/dlls/msvcrt/tests/file.c:1578:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(STDIN_FILENO, &c, 1); data/wine-5.0/dlls/msvcrt/tests/file.c:1665:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(res[strlen(res)-1] == '.', "first call - last character is not a dot\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:1672:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(res[strlen(res)-1] != '.', "second call - last character is a dot\n"); data/wine-5.0/dlls/msvcrt/tests/file.c:2141:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nwritten=write(fd, pipe_string, strlen(pipe_string)); data/wine-5.0/dlls/msvcrt/tests/file.c:2142:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(nwritten == strlen(pipe_string), "i %d, expected to write '%s' wrote %d\n", i, pipe_string, nwritten); data/wine-5.0/dlls/msvcrt/tests/file.c:2181:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r=read(pipes[0], buf, sizeof(buf)-1); data/wine-5.0/dlls/msvcrt/tests/file.c:2182:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(pipe_string), "i %d, got %d\n", i, r); data/wine-5.0/dlls/msvcrt/tests/file.c:2188:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r=read(pipes[0], buf, sizeof(buf)-1); data/wine-5.0/dlls/msvcrt/tests/file.c:2218:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(expected), "fread() returned %d: ferror=%d\n", r, ferror(file)); data/wine-5.0/dlls/msvcrt/tests/file.c:2242:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 1); data/wine-5.0/dlls/msvcrt/tests/file.c:2245:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 1); data/wine-5.0/dlls/msvcrt/tests/file.c:2248:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 1); data/wine-5.0/dlls/msvcrt/tests/file.c:2251:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 2); data/wine-5.0/dlls/msvcrt/tests/file.c:2264:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 4); data/wine-5.0/dlls/msvcrt/tests/file.c:2271:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(pipes[0], buf, 2); data/wine-5.0/dlls/msvcrt/tests/file.c:2342:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "a"); data/wine-5.0/dlls/msvcrt/tests/locale.c:602:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LOCALE_IDEFAULTANSICODEPAGE, buf+strlen(buf), 80); data/wine-5.0/dlls/msvcrt/tests/locale.c:611:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LOCALE_IDEFAULTCODEPAGE, buf+strlen(buf), 80); data/wine-5.0/dlls/msvcrt/tests/misc.c:172:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = strlen(I10_OUTPUT_tests[i].remain); data/wine-5.0/dlls/msvcrt/tests/misc.c:177:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(j=out.len+strlen(I10_OUTPUT_tests[i].remain)+1; j<sizeof(out.str); j++) data/wine-5.0/dlls/msvcrt/tests/misc.c:219:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buf) == 1, "Expected output buffer to be truncated\n"); data/wine-5.0/dlls/msvcrt/tests/printf.c:284:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(buffer), "%d) r = %d, buffer = \"%s\"\n", i, r, buffer); data/wine-5.0/dlls/msvcrt/tests/printf.c:416:10: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(buffer) == 11,"Problem with long long\n"); data/wine-5.0/dlls/msvcrt/tests/printf.c:418:10: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(wcslen(buffer) == 6,"Problem with \"%%S\" interpretation\n"); data/wine-5.0/dlls/msvcrt/tests/printf.c:1010:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). exp = wcslen(out7); data/wine-5.0/dlls/msvcrt/tests/scanf.c:82:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,""); data/wine-5.0/dlls/msvcrt/tests/scanf.c:179:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strncmp(pname,buffer1,strlen(buffer1)) == 0, "Error with \"%s\" \"%s\"\n",pname, buffer1); data/wine-5.0/dlls/msvcrt/tests/scanf.c:293:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer,"a"); data/wine-5.0/dlls/msvcrt/tests/string.c:35:8: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #undef strncpy data/wine-5.0/dlls/msvcrt/tests/string.c:48:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). w += strlen(w); data/wine-5.0/dlls/msvcrt/tests/string.c:354:15: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_eq(_mbslen(mbstring2), 4, int, "%d"); data/wine-5.0/dlls/msvcrt/tests/string.c:355:15: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_eq(_mbslen(mbsonlylead), 0, int, "%d"); /* lead + NUL not counted as character */ data/wine-5.0/dlls/msvcrt/tests/string.c:356:15: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_eq(_mbslen(mbstring), 4, int, "%d"); /* lead + invalid trail counted */ data/wine-5.0/dlls/msvcrt/tests/string.c:468:5: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). _mbsnbcpy(buf, mbstring2, 2); data/wine-5.0/dlls/msvcrt/tests/string.c:470:5: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). _mbsnbcpy(buf, mbstring2, 3); data/wine-5.0/dlls/msvcrt/tests/string.c:472:5: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). _mbsnbcpy(buf, mbstring2, 4); data/wine-5.0/dlls/msvcrt/tests/string.c:475:5: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). _mbsnbcpy(buf, mbsonlylead, 5); data/wine-5.0/dlls/msvcrt/tests/string.c:1807:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == oct+strlen(oct), "Incorrect endpos (%p-%p)\n", oct, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1816:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == overflow+strlen(overflow), "Incorrect endpos (%p-%p)\n", overflow, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1822:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == neg_overflow+strlen(neg_overflow), "Incorrect endpos (%p-%p)\n", neg_overflow, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1828:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no1+strlen(no1), "Incorrect endpos (%p-%p)\n", no1, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1831:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no2+strlen(no2), "Incorrect endpos (%p-%p)\n", no2, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1834:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no3+strlen(no3), "Incorrect endpos (%p-%p)\n", no3, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1837:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no4+strlen(no4), "Incorrect endpos (%p-%p)\n", no4, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1840:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == hex+strlen(hex), "Incorrect endpos (%p-%p)\n", hex, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1843:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == oct+strlen(oct), "Incorrect endpos (%p-%p)\n", oct, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1852:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == hex+strlen(hex), "Incorrect endpos (%p-%p)\n", hex, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1858:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no1+strlen(no1), "Incorrect endpos (%p-%p)\n", no1, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1861:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no2+strlen(no2), "Incorrect endpos (%p-%p)\n", no2, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1873:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == oct+strlen(oct), "Incorrect endpos (%p-%p)\n", oct, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1882:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no1+strlen(no1), "Incorrect endpos (%p-%p)\n", no1, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1885:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == no2+strlen(no2), "Incorrect endpos (%p-%p)\n", no2, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1897:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == oct+strlen(oct), "Incorrect endpos (%p-%p)\n", oct, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1906:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == overflow+strlen(overflow), "Incorrect endpos (%p-%p)\n", overflow, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:1912:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(endpos == neg_overflow+strlen(neg_overflow), "Incorrect endpos (%p-%p)\n", neg_overflow, endpos); data/wine-5.0/dlls/msvcrt/tests/string.c:3076:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(num, "t"); data/wine-5.0/dlls/msvcrt/tests/string.c:3084:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(num, "0"); data/wine-5.0/dlls/msvcrt/tests/string.c:4159:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nLen=strlen(xilstring); data/wine-5.0/dlls/msvcrt/tests/time.c:376:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(date); data/wine-5.0/dlls/msvcrt/tests/time.c:411:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(time); data/wine-5.0/dlls/msvcrt/tests/time.c:448:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(date); data/wine-5.0/dlls/msvcrt/tests/time.c:462:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(time); data/wine-5.0/dlls/msvcrt/tests/time.c:796:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(retA == strlen(tests[i].ret), "%d) ret = %ld\n", i, retA); data/wine-5.0/dlls/msvcrt/tests/time.c:835:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(retA == strlen(buf), "%d) ret = %ld\n", i, retA); data/wine-5.0/dlls/msvcrt/time.c:942:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *ret = strlen(timezone)+1; data/wine-5.0/dlls/msvcrt/undname.c:190:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen(ptr); data/wine-5.0/dlls/msvcrt/undname.c:251:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). case 's': t = va_arg(args, char*); if (t) len += strlen(t); break; data/wine-5.0/dlls/msvcrt/undname.c:272:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(t); data/wine-5.0/dlls/msvcrt/undname.c:390:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (close_char == '>' && last[strlen(last) - 1] == '>') data/wine-5.0/dlls/msvcrt/undname.c:497:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!in_args && str_modif[0] && str_modif[1] == '*' && sub_ct.left[strlen(sub_ct.left)-1] == '*') data/wine-5.0/dlls/msvcrt/undname.c:649:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += 2 + strlen(a->elts[i]); data/wine-5.0/dlls/msvcrt/undname.c:654:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(a->elts[i]); data/wine-5.0/dlls/msvcrt/undname.c:1634:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer = memget(strlen(result) + 1); data/wine-5.0/dlls/msvfw32/msvideo_main.c:314:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (s = buf; *s; s += strlen(s) + 1) data/wine-5.0/dlls/msvfw32/msvideo_main.c:388:75: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(key, value, 0, REG_SZ, (const BYTE *)driver, strlen(driver) + 1); data/wine-5.0/dlls/msvideo.dll16/msvideo16.c:909:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (s = buf; *s; s += strlen(s) + 1) data/wine-5.0/dlls/msxml3/bsc.c:205:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, written; data/wine-5.0/dlls/msxml3/bsc.c:212:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pstgmed->u.pstm, buf, sizeof(buf), &read); data/wine-5.0/dlls/msxml3/bsc.c:216:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Write(This->memstream, buf, read, &written); data/wine-5.0/dlls/msxml3/bsc.c:217:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while(SUCCEEDED(hr) && written != 0 && read != 0); data/wine-5.0/dlls/msxml3/domdoc.c:771:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, written, len; data/wine-5.0/dlls/msxml3/domdoc.c:786:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ISequentialStream_Read(stream, buf, sizeof(buf), &read); data/wine-5.0/dlls/msxml3/domdoc.c:787:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Write(hstream, buf, read, &written); data/wine-5.0/dlls/msxml3/domdoc.c:788:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while(SUCCEEDED(hr) && written != 0 && read != 0); data/wine-5.0/dlls/msxml3/httprequest.c:411:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, written; data/wine-5.0/dlls/msxml3/httprequest.c:419:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stgmed->u.pstm, buf, sizeof(buf), &read); data/wine-5.0/dlls/msxml3/httprequest.c:422:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Write(This->stream, buf, read, &written); data/wine-5.0/dlls/msxml3/httprequest.c:423:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while((hr == S_OK) && written != 0 && read != 0); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1280:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "A"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1283:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "E"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1286:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "D"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1289:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "T"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1292:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "C"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1295:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buf, "P"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1339:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf+=strlen(buf); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1347:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf += strlen(buf); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1357:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf += strlen(buf); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1392:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen(pos); data/wine-5.0/dlls/msxml3/tests/domdoc.c:1609:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str = SysAllocStringByteLen( win1252xml, strlen(win1252xml) ); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6424:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(hfile, buffer, sizeof(buffer), &read, NULL); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6425:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read != 0, "could not read file\n"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6445:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(hfile, buffer, sizeof(buffer), &read, NULL); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6446:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read != 0, "could not read file\n"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6474:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(ptr, win1252decl, strlen(win1252decl)), "got wrong xml declaration\n"); data/wine-5.0/dlls/msxml3/tests/domdoc.c:6941:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(V_ARRAY(&value)->rgsabound[0].cElements == strlen(entry->value), data/wine-5.0/dlls/msxml3/tests/domdoc.c:6970:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp( V_BSTR(&value), entry->value, strlen(entry->value)), data/wine-5.0/dlls/msxml3/tests/domdoc.c:7012:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, szBasicTransformXML, strlen(szBasicTransformXML), &dwWritten, NULL); data/wine-5.0/dlls/msxml3/tests/domdoc.c:7016:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i=0; i < strlen(lpPathBuffer); i++) data/wine-5.0/dlls/msxml3/tests/domdoc.c:8595:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(ptr, "dGVzdA=", strlen("dGVzdA=")); data/wine-5.0/dlls/msxml3/tests/domdoc.c:8618:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(ptr, "dGVzdA=", strlen("dGVzdA=")), "got wrong data, %s\n", ptr); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10150:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(hfile, data, strlen(data), &written, NULL); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10274:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen(path2); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10585:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(xmluriA), "got %d\n", len); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10590:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(xmluriA), "got %d\n", len); data/wine-5.0/dlls/msxml3/tests/domdoc.c:10593:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(xmluriA)-1; data/wine-5.0/dlls/msxml3/tests/domdoc.c:10597:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(xmluriA)-1, "got %d\n", len); data/wine-5.0/dlls/msxml3/tests/saxreader.c:134:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lenexp = strlen(expected); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2085:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *pcbRead = strlen(ret_str); data/wine-5.0/dlls/msxml3/tests/saxreader.c:2127:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen(data); data/wine-5.0/dlls/msxml3/tests/saxreader.c:3439:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen("<a>"); data/wine-5.0/dlls/msxml3/tests/saxreader.c:3709:92: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXContentHandler_startElement(content, _bstr_(table->uri), table->uri ? strlen(table->uri) : 0, data/wine-5.0/dlls/msxml3/tests/saxreader.c:3710:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_(table->local_name), table->local_name ? strlen(table->local_name) : 0, _bstr_(table->qname), data/wine-5.0/dlls/msxml3/tests/saxreader.c:3711:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). table->qname ? strlen(table->qname) : 0, table->attr); data/wine-5.0/dlls/msxml3/tests/saxreader.c:3717:90: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXContentHandler_endElement(content, _bstr_(table->uri), table->uri ? strlen(table->uri) : 0, data/wine-5.0/dlls/msxml3/tests/saxreader.c:3718:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_(table->local_name), table->local_name ? strlen(table->local_name) : 0, _bstr_(table->qname), data/wine-5.0/dlls/msxml3/tests/saxreader.c:3719:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). table->qname ? strlen(table->qname) : 0); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4148:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXContentHandler_characters(content, _bstr_(table->data), strlen(table->data)); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4171:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXContentHandler_characters(content, _bstr_(table->data), strlen(table->data)); data/wine-5.0/dlls/msxml3/tests/saxreader.c:4519:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(ptr, expectedA, strlen(expectedA)), "%s: got %s, expected %.50s\n", enc, ptr, expectedA); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5055:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_attributeDecl(decl, _bstr_("element"), strlen("element"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5056:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute"), strlen("attribute"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5056:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute"), strlen("attribute"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5057:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value"), strlen("value")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5057:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value"), strlen("value")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5068:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_attributeDecl(decl, _bstr_("element"), strlen("element"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5069:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute2"), strlen("attribute2"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5069:70: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute2"), strlen("attribute2"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5070:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value2"), strlen("value2")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5070:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value2"), strlen("value2")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5073:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_attributeDecl(decl, _bstr_("element2"), strlen("element2"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5074:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute3"), strlen("attribute3"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5074:70: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("attribute3"), strlen("attribute3"), _bstr_("CDATA"), strlen("CDATA"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5075:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value3"), strlen("value3")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5075:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("#REQUIRED"), strlen("#REQUIRED"), _bstr_("value3"), strlen("value3")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5102:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_internalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("value"), strlen("value")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5102:100: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_internalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("value"), strlen("value")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5129:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5129:100: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5130:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5133:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), NULL, 0, _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5133:109: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), NULL, 0, _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5136:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5136:100: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDeclHandler_externalEntityDecl(decl, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5162:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), NULL, 0, NULL, 0); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5165:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), NULL, 0); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5165:92: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), NULL, 0); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5168:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5168:92: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5168:126: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), _bstr_("pubid"), strlen("pubid"), _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5171:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), NULL, 0, _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5171:101: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXDTDHandler_notationDecl(dtd, _bstr_("name"), strlen("name"), NULL, 0, _bstr_("sysid"), strlen("sysid")); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5371:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getIndexFromQName(saxattr, _bstr_(table->qname), strlen(table->qname), &index); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5376:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getIndexFromQName(saxattr, _bstr_(table->qname), strlen(table->qname)-1, &index); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5413:86: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getValueFromQName(saxattr, _bstr_(table->qname), strlen(table->qname), NULL, NULL); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5416:86: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getValueFromQName(saxattr, _bstr_(table->qname), strlen(table->qname), NULL, &len); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5434:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getValueFromName(saxattr, _bstr_(table->uri), strlen(table->uri), _bstr_(table->local), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5435:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(table->local), NULL, NULL); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5439:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getValueFromQName(saxattr, _bstr_(table->qname), strlen(table->qname), &value, &len); data/wine-5.0/dlls/msxml3/tests/saxreader.c:5446:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = ISAXAttributes_getValueFromName(saxattr, _bstr_(table->uri), strlen(table->uri), data/wine-5.0/dlls/msxml3/tests/saxreader.c:5447:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _bstr_(table->local), strlen(table->local), &value, &len); data/wine-5.0/dlls/msxml3/tests/xmldoc.c:62:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD file_size, read; data/wine-5.0/dlls/msxml3/tests/xmldoc.c:72:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(hfile, ptr, file_size, &read, NULL); data/wine-5.0/dlls/msxml3/tests/xmldoc.c:73:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(file_size == read, "Expected to read the whole file, read %d\n", read); data/wine-5.0/dlls/msxml3/tests/xmldoc.c:73:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(file_size == read, "Expected to read the whole file, read %d\n", read); data/wine-5.0/dlls/msxml3/xmldoc.c:614:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, written, len; data/wine-5.0/dlls/msxml3/xmldoc.c:631:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). IStream_Read(pStm, buf, sizeof(buf), &read); data/wine-5.0/dlls/msxml3/xmldoc.c:632:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Write(This->stream, buf, read, &written); data/wine-5.0/dlls/msxml3/xmldoc.c:633:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while(SUCCEEDED(hr) && written != 0 && read != 0); data/wine-5.0/dlls/netapi32/nbt.c:186:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int scopeIDLen = strlen(gScopeID); data/wine-5.0/dlls/netapi32/netapi32.c:2935:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write( pipe_out[1], old, strlen( old ) ); data/wine-5.0/dlls/netapi32/netapi32.c:2937:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write( pipe_out[1], new, strlen( new ) ); data/wine-5.0/dlls/netapi32/netapi32.c:2939:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write( pipe_out[1], new, strlen( new ) ); data/wine-5.0/dlls/netapi32/tests/access.c:84:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwSize >= (sizeof(USER_INFO_0) + (wcslen(ui0->usri0_name) + 1) * sizeof(WCHAR)), data/wine-5.0/dlls/netapi32/tests/access.c:93:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(ui10->usri10_name) + 1 + data/wine-5.0/dlls/netapi32/tests/access.c:94:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui10->usri10_comment) + 1 + data/wine-5.0/dlls/netapi32/tests/access.c:95:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui10->usri10_usr_comment) + 1 + data/wine-5.0/dlls/netapi32/tests/access.c:96:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui10->usri10_full_name) + 1) * sizeof(WCHAR)), data/wine-5.0/dlls/netapi32/tests/access.c:387:24: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == wcslen(buf) + 1, "%u: got %u\n", i, size); data/wine-5.0/dlls/netapi32/tests/access.c:481:24: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == wcslen(buf) + 1, "%u: got %u\n", i, size); data/wine-5.0/dlls/netapi32/tests/wksta.c:69:47: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwSize >= (sizeof(WKSTA_USER_INFO_0) + wcslen(ui0->wkui0_username) * sizeof(WCHAR)), data/wine-5.0/dlls/netapi32/tests/wksta.c:79:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(ui1->wkui1_username) + data/wine-5.0/dlls/netapi32/tests/wksta.c:80:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui1->wkui1_logon_domain) + data/wine-5.0/dlls/netapi32/tests/wksta.c:81:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui1->wkui1_oth_domains) + data/wine-5.0/dlls/netapi32/tests/wksta.c:82:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcslen(ui1->wkui1_logon_server)) * sizeof(WCHAR)), data/wine-5.0/dlls/netapi32/tests/wksta.c:91:50: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwSize >= (sizeof(WKSTA_USER_INFO_1101) + wcslen(ui1101->wkui1101_oth_domains) * sizeof(WCHAR)), data/wine-5.0/dlls/ntdll/debugtools.c:78:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(name) >= sizeof(debug_options[0].name)) return; data/wine-5.0/dlls/ntdll/debugtools.c:127:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(debug_classes[i]); data/wine-5.0/dlls/ntdll/debugtools.c:222:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t n = strlen( str ) + 1; data/wine-5.0/dlls/ntdll/debugtools.c:246:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*str) ret += append_output( info, str, strlen( str )); data/wine-5.0/dlls/ntdll/debugtools.c:279:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return append_output( info, buffer, strlen( buffer )); data/wine-5.0/dlls/ntdll/directory.c:339:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ptr = get_dir_data_space( data, (strlen( name ) + sizeof(WCHAR)) & ~(sizeof(WCHAR) - 1) ); data/wine-5.0/dlls/ntdll/directory.c:411:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( name ) + 1; data/wine-5.0/dlls/ntdll/directory.c:571:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(config_dir) + sizeof("/dosdevices/a:") ))) data/wine-5.0/dlls/ntdll/directory.c:575:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen(buffer) - 2; data/wine-5.0/dlls/ntdll/directory.c:789:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(device) + 1 ); data/wine-5.0/dlls/ntdll/directory.c:817:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(device) + 1 ); data/wine-5.0/dlls/ntdll/directory.c:853:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(device) + 1 ); data/wine-5.0/dlls/ntdll/directory.c:884:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strncmp(mntStat[i].f_mntfromname, path_bsd_device, strlen(path_bsd_device)) == 0) data/wine-5.0/dlls/ntdll/directory.c:887:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(mntStat[i].f_mntfromname) + 2 /* 2 : r and \0 */ ); data/wine-5.0/dlls/ntdll/directory.c:957:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(entry->mnt_dir) + 1 ); data/wine-5.0/dlls/ntdll/directory.c:978:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RtlAllocateHeap( GetProcessHeap(), 0, strlen(entry[i].f_mntonname) + 1 ); data/wine-5.0/dlls/ntdll/directory.c:1376:10: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL mismatch; data/wine-5.0/dlls/ntdll/directory.c:1409:18: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!mismatch) data/wine-5.0/dlls/ntdll/directory.c:1454:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). long_len = ntdll_umbstowcs( 0, long_name, strlen(long_name), long_nameW, MAX_DIR_ENTRY_LEN ); data/wine-5.0/dlls/ntdll/directory.c:1464:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). short_len = ntdll_umbstowcs( 0, short_name, strlen(short_name), data/wine-5.0/dlls/ntdll/directory.c:2109:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = ntdll_umbstowcs( 0, kde[1].d_name, strlen(kde[1].d_name), data/wine-5.0/dlls/ntdll/directory.c:2119:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = ntdll_umbstowcs( 0, kde[0].d_name, strlen(kde[0].d_name), data/wine-5.0/dlls/ntdll/directory.c:2154:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = ntdll_umbstowcs( 0, de->d_name, strlen(de->d_name), buffer, MAX_DIR_ENTRY_LEN ); data/wine-5.0/dlls/ntdll/directory.c:2231:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(dir = RtlAllocateHeap( GetProcessHeap(), 0, strlen(config_dir) + sizeof(windows_dir) ))) return; data/wine-5.0/dlls/ntdll/directory.c:2345:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_len = strlen(config_dir) + sizeof("/dosdevices/") + name_len + 1; data/wine-5.0/dlls/ntdll/directory.c:2352:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dev = unix_name + strlen(unix_name); data/wine-5.0/dlls/ntdll/directory.c:2370:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name_ret->Length = strlen(unix_name); data/wine-5.0/dlls/ntdll/directory.c:2399:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_len = strlen(unix_name) + 1; data/wine-5.0/dlls/ntdll/directory.c:2442:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos = strlen( unix_name->Buffer ); data/wine-5.0/dlls/ntdll/directory.c:2500:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( unix_name->Buffer, "." ); data/wine-5.0/dlls/ntdll/directory.c:2533:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( unix_name->Buffer, unix_name->Buffer + 2, strlen(unix_name->Buffer) - 1 ); data/wine-5.0/dlls/ntdll/directory.c:2546:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name->Length = strlen( unix_name->Buffer ); data/wine-5.0/dlls/ntdll/directory.c:2659:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen( unix_name + pos ); data/wine-5.0/dlls/ntdll/directory.c:2666:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos += strlen( unix_name + pos ); data/wine-5.0/dlls/ntdll/directory.c:2736:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name_ret->Length = strlen(unix_name); data/wine-5.0/dlls/ntdll/directory.c:2821:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_len += strlen(config_dir) + sizeof("/dosdevices/"); data/wine-5.0/dlls/ntdll/directory.c:2826:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos = strlen(unix_name); data/wine-5.0/dlls/ntdll/directory.c:2858:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name_ret->Length = strlen(unix_name); data/wine-5.0/dlls/ntdll/directory.c:2955:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *cmd = RtlAllocateHeap( GetProcessHeap(), 0, strlen(mount_point)+sizeof(umount)); data/wine-5.0/dlls/ntdll/env.c:481:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += ntdll_umbstowcs( 0, *e, strlen(*e) + 1, NULL, 0 ); data/wine-5.0/dlls/ntdll/env.c:501:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ntdll_umbstowcs( 0, str, strlen(str) + 1, p, size - (p - ptr) ); data/wine-5.0/dlls/ntdll/env.c:529:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = env; *p; p += strlen(p) + 1, count++) data/wine-5.0/dlls/ntdll/env.c:535:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length += strlen(unix_vars[i]) + strlen(p) + 2; data/wine-5.0/dlls/ntdll/env.c:535:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length += strlen(unix_vars[i]) + strlen(p) + 2; data/wine-5.0/dlls/ntdll/env.c:549:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( dst, "=" ); data/wine-5.0/dlls/ntdll/env.c:551:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dst += strlen(dst) + 1; data/wine-5.0/dlls/ntdll/env.c:555:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = env; *p; p += strlen(p) + 1) data/wine-5.0/dlls/ntdll/env.c:570:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dst += strlen(dst) + 1; data/wine-5.0/dlls/ntdll/env.c:681:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = ntdll_umbstowcs( 0, argv0, strlen(argv0) + 1, NULL, 0 ); data/wine-5.0/dlls/ntdll/env.c:683:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ntdll_umbstowcs( 0, argv0, strlen(argv0) + 1, name, len ); data/wine-5.0/dlls/ntdll/env.c:743:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). total += ntdll_umbstowcs( 0, argv[argc], strlen(argv[argc]) + 1, NULL, 0 ); data/wine-5.0/dlls/ntdll/env.c:757:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD reslen = ntdll_umbstowcs( 0, argv[argc], strlen(argv[argc]) + 1, p, total ); data/wine-5.0/dlls/ntdll/file.c:580:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). SERVER_START_REQ( read ) data/wine-5.0/dlls/ntdll/file.c:1060:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). result = read( unix_handle, (char *)segments->Buffer + pos, min( length - pos, page_size - pos ) ); data/wine-5.0/dlls/ntdll/loader.c:770:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(name); data/wine-5.0/dlls/ntdll/loader.c:951:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(name); data/wine-5.0/dlls/ntdll/loader.c:1756:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t i, len = strlen(filename); data/wine-5.0/dlls/ntdll/loader.c:2441:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, &header, sizeof(header) ) != sizeof(header)) return 1; data/wine-5.0/dlls/ntdll/loader.c:2454:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, &header, sizeof(header) ) != sizeof(header)) return 1; data/wine-5.0/dlls/ntdll/loader.c:2508:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((*so_name = RtlAllocateHeap( GetProcessHeap(), 0, strlen(name) + 1 ))) data/wine-5.0/dlls/ntdll/loader.c:2535:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (build_dir) maxlen = strlen(build_dir) + sizeof("/programs/") + len; data/wine-5.0/dlls/ntdll/loader.c:2536:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; (path = wine_dll_enum_load_path( i )); i++) maxlen = max( maxlen, strlen(path)+1 ); data/wine-5.0/dlls/ntdll/loader.c:2560:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = prepend( ptr, build_dir, strlen(build_dir) ); data/wine-5.0/dlls/ntdll/loader.c:2571:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = prepend( ptr, build_dir, strlen(build_dir) ); data/wine-5.0/dlls/ntdll/loader.c:2579:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = prepend( file + pos, path, strlen(path) ); data/wine-5.0/dlls/ntdll/loader.c:4258:18: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). FILE_umask = umask(0777); data/wine-5.0/dlls/ntdll/loader.c:4259:5: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask( FILE_umask ); data/wine-5.0/dlls/ntdll/locale.c:490:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ntdll_umbstowcs( 0, unix_name, strlen(unix_name) + 1, buffer, ARRAY_SIZE(buffer) ) < 0) return 0; data/wine-5.0/dlls/ntdll/nt.c:2112:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, buf, sizeof(buf) ) == sizeof(buf)) data/wine-5.0/dlls/ntdll/path.c:1093:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(cwd) + lenA + 1; data/wine-5.0/dlls/ntdll/path.c:1100:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = cwd + strlen(cwd); data/wine-5.0/dlls/ntdll/printf.c:128:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( str ); data/wine-5.0/dlls/ntdll/printf.c:238:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( str ); data/wine-5.0/dlls/ntdll/printf.c:312:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/wine-5.0/dlls/ntdll/printf.c:317:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/wine-5.0/dlls/ntdll/printf.c:392:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). flags->Precision = strlen( buf ); data/wine-5.0/dlls/ntdll/printf.c:706:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeSize( &sz, format, strlen(format) + 1 ); data/wine-5.0/dlls/ntdll/printf.c:708:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( formatW, sz, NULL, format, strlen(format) + 1 ); data/wine-5.0/dlls/ntdll/printf.c:783:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeSize( &sz, format, strlen(format) + 1 ); data/wine-5.0/dlls/ntdll/printf.c:785:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( formatW, sz, NULL, format, strlen(format) + 1 ); data/wine-5.0/dlls/ntdll/process.c:1016:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( loader_env ); data/wine-5.0/dlls/ntdll/process.c:1085:5: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. usleep(delayms * 1000); data/wine-5.0/dlls/ntdll/process.c:1549:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read( fd[0], &status, sizeof(status) ); /* if we read something, exec or second fork failed */ data/wine-5.0/dlls/ntdll/relay.c:921:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( (char *)module + exports->Name ); data/wine-5.0/dlls/ntdll/relay.c:1083:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(SNOOP_DLL) + strlen(name)); data/wine-5.0/dlls/ntdll/relay.c:1087:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(SNOOP_DLL) + strlen(name)); data/wine-5.0/dlls/ntdll/relay.c:1092:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = (*dll)->name + strlen((*dll)->name) - 4; data/wine-5.0/dlls/ntdll/rtl.c:1054:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN(wstr, sizeof(wstr), NULL, str, strlen(str) + 1); data/wine-5.0/dlls/ntdll/rtl.c:1070:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN(wstr, sizeof(wstr), NULL, str, strlen(str) + 1); data/wine-5.0/dlls/ntdll/rtlstr.c:63:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). target->Length = strlen(source); data/wine-5.0/dlls/ntdll/rtlstr.c:86:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(source); data/wine-5.0/dlls/ntdll/rtlstr.c:951:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int src_len = strlen(src); data/wine-5.0/dlls/ntdll/server.c:250:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((ret = read( ntdll_get_thread_data()->reply_fd, buffer, size )) > 0) data/wine-5.0/dlls/ntdll/server.c:359:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read( ntdll_get_thread_data()->wait_fd[0], &reply, sizeof(reply) ); data/wine-5.0/dlls/ntdll/server.c:1250:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. usleep( 100000 * retry * retry ); data/wine-5.0/dlls/ntdll/server.c:1270:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen = sizeof(addr) - sizeof(addr.sun_path) + strlen(addr.sun_path) + 1; data/wine-5.0/dlls/ntdll/signal_x86_64.c:1379:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = cie->augmentation + strlen((const char *)cie->augmentation) + 1; data/wine-5.0/dlls/ntdll/string.c:135:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen( str ); data/wine-5.0/dlls/ntdll/string.c:144:12: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. return strncat( dst, src, len ); data/wine-5.0/dlls/ntdll/string.c:162:12: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). return strncpy( dst, src, len ); data/wine-5.0/dlls/ntdll/tests/directory.c:470:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(testdirW, sizeof(testdirW), NULL, testdirA, strlen(testdirA)+1); data/wine-5.0/dlls/ntdll/tests/directory.c:791:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(testdir_w, sizeof(testdir_w), NULL, testdir, strlen(testdir) + 1); data/wine-5.0/dlls/ntdll/tests/env.c:103:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name.Length = strlen(test->var) * 2; data/wine-5.0/dlls/ntdll/tests/env.c:111:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( bn, sizeof(bn), NULL, test->var, strlen(test->var)+1 ); data/wine-5.0/dlls/ntdll/tests/env.c:119:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( bn, sizeof(bn), NULL, test->val, strlen(test->val)+1 ); data/wine-5.0/dlls/ntdll/tests/env.c:120:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( value.Length == strlen(test->val) * sizeof(WCHAR), "Wrong length %d for %s\n", data/wine-5.0/dlls/ntdll/tests/env.c:122:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((value.Length == strlen(test->val) * sizeof(WCHAR) && memcmp(bv, bn, value.Length) == 0) || data/wine-5.0/dlls/ntdll/tests/env.c:128:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( value.Length == strlen(test->val) * sizeof(WCHAR), data/wine-5.0/dlls/ntdll/tests/env.c:142:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uvar.Length = strlen(var) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/env.c:145:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( bvar, sizeof(bvar), NULL, var, strlen(var)+1 ); data/wine-5.0/dlls/ntdll/tests/env.c:148:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). uval.Length = strlen(val) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/env.c:151:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( bval1, sizeof(bval1), NULL, val, strlen(val)+1 ); data/wine-5.0/dlls/ntdll/tests/env.c:243:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(src, sizeof(src), NULL, test->src, strlen(test->src)+1); data/wine-5.0/dlls/ntdll/tests/env.c:244:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(rst, sizeof(rst), NULL, test->dst, strlen(test->dst)+1); data/wine-5.0/dlls/ntdll/tests/env.c:246:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). us_src.Length = strlen(test->src) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/env.c:256:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ul == strlen(test->dst) * sizeof(WCHAR) + sizeof(WCHAR), data/wine-5.0/dlls/ntdll/tests/env.c:267:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ul == strlen(test->dst) * sizeof(WCHAR) + sizeof(WCHAR), data/wine-5.0/dlls/ntdll/tests/env.c:278:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ul == strlen(test->dst) * sizeof(WCHAR) + sizeof(WCHAR), data/wine-5.0/dlls/ntdll/tests/file.c:621:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = pNtWriteFile( handle, event, apc, &apc_count, &iosb, text, strlen(text), &offset, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:626:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( iosb.Information == strlen(text), "wrong info %lu\n", iosb.Information ); data/wine-5.0/dlls/ntdll/tests/file.c:637:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = pNtReadFile( handle, event, apc, &apc_count, &iosb, buffer, strlen(text) + 10, &offset, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:643:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( iosb.Information == strlen(text), "wrong info %lu\n", iosb.Information ); data/wine-5.0/dlls/ntdll/tests/file.c:653:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). offset.QuadPart = strlen(text) + 2; data/wine-5.0/dlls/ntdll/tests/file.c:674:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = pNtWriteFile( handle, event, apc, &apc_count, &iosb, text, strlen(text), &offset, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:681:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( iosb.Information == strlen(text), "wrong info %lu\n", iosb.Information ); data/wine-5.0/dlls/ntdll/tests/file.c:692:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = pNtReadFile( handle, event, apc, &apc_count, &iosb, buffer, strlen(text) + 10, &offset, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:695:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( iosb.Information == strlen(text), "wrong info %lu\n", iosb.Information ); data/wine-5.0/dlls/ntdll/tests/file.c:705:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). offset.QuadPart = strlen(text) + 2; data/wine-5.0/dlls/ntdll/tests/file.c:1070:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/ntdll/tests/file.c:1113:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile( server, recv_buf, TEST_BUF_LEN, &read, &o); data/wine-5.0/dlls/ntdll/tests/file.c:1116:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WriteFile( client, send_buf, TEST_BUF_LEN, &read, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:1132:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WriteFile( client, send_buf, 2, &read, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:1135:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile( server, recv_buf, 2, &read, &o); data/wine-5.0/dlls/ntdll/tests/file.c:1149:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile( server, recv_buf, TEST_BUF_LEN, &read, &o); data/wine-5.0/dlls/ntdll/tests/file.c:1176:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile( server, recv_buf, TEST_BUF_LEN, &read, &o); data/wine-5.0/dlls/ntdll/tests/file.c:1185:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WriteFile( client, send_buf, TEST_BUF_LEN, &read, NULL ); data/wine-5.0/dlls/ntdll/tests/file.c:1232:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WriteFile( client, send_buf, TEST_BUF_LEN, &read, NULL ); data/wine-5.0/dlls/ntdll/tests/path.c:95:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( buffer, sizeof(buffer), NULL, test->path, strlen(test->path)+1 ); data/wine-5.0/dlls/ntdll/tests/path.c:168:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN( buffer, sizeof(buffer), NULL, test->path, strlen(test->path)+1 ); data/wine-5.0/dlls/ntdll/tests/path.c:232:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). oem.Length = strlen(test->path); data/wine-5.0/dlls/ntdll/tests/path.c:241:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(test->path) <= 12) data/wine-5.0/dlls/ntdll/tests/path.c:370:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len= strlen(test->rname) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/path.c:371:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(pathbufW , sizeof(pathbufW), NULL, test->path, strlen(test->path)+1 ); data/wine-5.0/dlls/ntdll/tests/path.c:373:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == len || (test->alt_rname && ret == strlen(test->alt_rname)*sizeof(WCHAR)), data/wine-5.0/dlls/ntdll/tests/pipe.c:561:69: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static void _check_pipe_handle_state(int line, HANDLE handle, ULONG read, ULONG completion) data/wine-5.0/dlls/ntdll/tests/pipe.c:571:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok_(__FILE__, line)(fpi.ReadMode == read, "Unexpected ReadMode, expected %x, got %x\n", data/wine-5.0/dlls/ntdll/tests/pipe.c:572:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read, fpi.ReadMode); data/wine-5.0/dlls/ntdll/tests/pipe.c:810:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static BOOL create_pipe_pair( HANDLE *read, HANDLE *write, ULONG flags, ULONG type, ULONG size ) data/wine-5.0/dlls/ntdll/tests/pipe.c:846:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). HANDLE handle, read, write; data/wine-5.0/dlls/ntdll/tests/pipe.c:854:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!create_pipe_pair( &read, &write, FILE_FLAG_OVERLAPPED | pipe_flags, pipe_type, 4096 )) return; data/wine-5.0/dlls/ntdll/tests/pipe.c:859:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( is_signaled( read ), "read handle is not signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:860:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:862:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( !is_signaled( read ), "read handle is signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:872:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( !is_signaled( read ), "read handle is signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:885:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( !is_signaled( read ), "read handle is signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:886:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, 0, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:888:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( !is_signaled( read ), "read handle is signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:897:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok( is_signaled( read ), "read handle is not signaled\n" ); data/wine-5.0/dlls/ntdll/tests/pipe.c:913:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). test_peek(read); data/wine-5.0/dlls/ntdll/tests/pipe.c:915:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:935:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtFsControlFile( read, NULL, NULL, NULL, &iosb, FSCTL_PIPE_PEEK, NULL, 0, buffer, data/wine-5.0/dlls/ntdll/tests/pipe.c:951:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:970:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:986:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1008:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1016:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1022:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, (HANDLE)0xdeadbeef, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1029:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1036:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 1, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1046:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!create_pipe_pair( &read, &write, FILE_FLAG_OVERLAPPED | pipe_flags, pipe_type, 4096 )) return; data/wine-5.0/dlls/ntdll/tests/pipe.c:1050:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1064:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1066:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!create_pipe_pair( &read, &write, FILE_FLAG_OVERLAPPED | pipe_flags, pipe_type, 4096 )) return; data/wine-5.0/dlls/ntdll/tests/pipe.c:1067:48: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = DuplicateHandle(GetCurrentProcess(), read, GetCurrentProcess(), &handle, 0, TRUE, DUPLICATE_SAME_ACCESS); data/wine-5.0/dlls/ntdll/tests/pipe.c:1080:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = pNtCancelIoFile( read, &iosb2 ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1093:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1100:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1104:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = pNtCancelIoFile( read, &iosb2 ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1121:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!create_pipe_pair( &read, &write, FILE_FLAG_OVERLAPPED | pipe_flags, pipe_type, 4096 )) return; data/wine-5.0/dlls/ntdll/tests/pipe.c:1126:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1132:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = pNtCancelIoFileEx( read, &iosb, &iosb2 ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1146:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1152:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = NtReadFile( read, event, apc, &apc_count, &iosb, buffer, 2, NULL, NULL ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1158:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = pNtCancelIoFileEx( read, &iosb, &iosb2 ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1168:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1653:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). HANDLE read, write; data/wine-5.0/dlls/ntdll/tests/pipe.c:1657:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!create_pipe_pair( &read, &write, FILE_FLAG_OVERLAPPED | PIPE_ACCESS_INBOUND, data/wine-5.0/dlls/ntdll/tests/pipe.c:1661:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = pNtQueryVolumeInformationFile( read, &iosb, buffer, sizeof(buffer), FileFsDeviceInformation ); data/wine-5.0/dlls/ntdll/tests/pipe.c:1678:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). CloseHandle( read ); data/wine-5.0/dlls/ntdll/tests/port.c:254:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LpcMessage->msg64.DataSize = strlen(REQUEST1) + 1; data/wine-5.0/dlls/ntdll/tests/port.c:266:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LpcMessage->msg64.DataSize = strlen(REQUEST2) + 1; data/wine-5.0/dlls/ntdll/tests/port.c:282:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LpcMessage->msg.DataSize = strlen(REQUEST1) + 1; data/wine-5.0/dlls/ntdll/tests/port.c:294:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). LpcMessage->msg.DataSize = strlen(REQUEST2) + 1; data/wine-5.0/dlls/ntdll/tests/rtl.c:193:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(src) == 15, "Source must be 16 bytes long!\n"); data/wine-5.0/dlls/ntdll/tests/rtl.c:294:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(dest, src); pRtlMoveMemory(dest, dest + 1, strlen(src) - 1); data/wine-5.0/dlls/ntdll/tests/rtl.c:296:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(dest, src); pRtlMoveMemory(dest + 1, dest, strlen(src)); data/wine-5.0/dlls/ntdll/tests/rtl.c:1021:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/wine-5.0/dlls/ntdll/tests/rtl.c:1074:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). used = strlen(buffer); data/wine-5.0/dlls/ntdll/tests/rtl.c:1076:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(expect) + 1) && !strcmp(buffer, expect), data/wine-5.0/dlls/ntdll/tests/rtl.c:1084:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(expect) + 1) && !strcmp(buffer, expect), data/wine-5.0/dlls/ntdll/tests/rtl.c:1112:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). used = strlen(buffer); data/wine-5.0/dlls/ntdll/tests/rtl.c:1114:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(expect) + 1) && !strcmp(buffer, expect), data/wine-5.0/dlls/ntdll/tests/rtl.c:1122:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (size == strlen(expect) + 1) && !strcmp(buffer, expect), data/wine-5.0/dlls/ntdll/tests/rtl.c:1866:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/wine-5.0/dlls/ntdll/tests/rtl.c:1881:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/wine-5.0/dlls/ntdll/tests/rtl.c:2005:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == (strlen(tests[i].address) + 1) && !strcmp(buffer, tests[i].address), data/wine-5.0/dlls/ntdll/tests/rtl.c:2006:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "got len %d with '%s' (expected %d with '%s')\n", len, buffer, (int)strlen(tests[i].address), tests[i].address); data/wine-5.0/dlls/ntdll/tests/rtl.c:2021:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(name, sizeof(name), NULL, name_a, strlen(name_a) + 1); data/wine-5.0/dlls/ntdll/tests/rtl.c:2144:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pRtlMultiByteToUnicodeN(name, sizeof(name), NULL, name_a, strlen(name_a) + 1); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1209:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). main_str.Length = strlen(find_ch_in_ustr[test_num].main_str) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:1221:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). search_chars.Length = strlen(find_ch_in_ustr[test_num].search_chars) * sizeof(WCHAR); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2224:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(bytes_out == strlen(unicode_to_utf8[i].expected), data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2235:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(unicode_to_utf8[i].expected), "(test %d): wrong len %u\n", i, ret ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2250:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(bytes_out == strlen(unicode_to_utf8[i].expected) + 1, data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2260:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(unicode_to_utf8[i].expected) + 1, "(test %d): wrong len %u\n", i, ret ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2273:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(unicode_to_utf8[i].expected) + 1; data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2276:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(unicode_to_utf8[i].expected) + 1, "(test %d): wrong len %u\n", i, ret ); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2523:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8_to_unicode[i].utf8, strlen(utf8_to_unicode[i].utf8)); data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2536:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = MultiByteToWideChar( CP_UTF8, 0, utf8_to_unicode[i].utf8, strlen(utf8_to_unicode[i].utf8), data/wine-5.0/dlls/ntdll/tests/rtlstr.c:2550:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8_to_unicode[i].utf8, strlen(utf8_to_unicode[i].utf8) + 1); data/wine-5.0/dlls/ntdll/tests/string.c:1330:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = p__snprintf(buffer, strlen(teststring) - 1, teststring); data/wine-5.0/dlls/ntdll/tests/string.c:1334:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = p__snprintf(buffer, strlen(teststring), teststring); data/wine-5.0/dlls/ntdll/tests/string.c:1339:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = p__snprintf(buffer, strlen(teststring) + 1, teststring); data/wine-5.0/dlls/ntdll/thread.c:174:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/ntdll/thread.c:186:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *end = argv[argc-1] + strlen(argv[argc-1]) + 1; data/wine-5.0/dlls/ntdll/virtual.c:2298:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t ret = read( fd, addr, size ); data/wine-5.0/dlls/ntdll/virtual.c:2304:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read( fd, addr, size ); data/wine-5.0/dlls/ntdll/wcstring.c:266:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeSize( &len, src, strlen(src) ); data/wine-5.0/dlls/ntdll/wcstring.c:271:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( dst, n*sizeof(WCHAR), &len, src, strlen(src) ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:590:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FILE_OBJECT *file = wine_server_get_ptr( context->params.read.file ); data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:591:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG out_size = context->params.read.out_size; data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:601:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). offset.QuadPart = context->params.read.pos; data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:615:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). irpsp->Parameters.Read.Key = context->params.read.key; data/wine-5.0/dlls/ntoskrnl.exe/ntoskrnl.c:3688:64: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pnp_manager_enumerate_root_devices( service_name->Buffer + wcslen( servicesW ) ); data/wine-5.0/dlls/ntoskrnl.exe/pnp.c:940:54: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((id = ExAllocatePool( NonPagedPool, (wcslen( p + 1 ) + 1) * sizeof(WCHAR) ))) data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1104:11: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(test_path); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1608:29: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(name->Name.Length == wcslen(device_nameW) * sizeof(WCHAR), "got length %u\n", name->Name.Length); data/wine-5.0/dlls/ntoskrnl.exe/tests/driver.c:1637:29: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(name->Name.Length == wcslen(event_nameW) * sizeof(WCHAR), "got length %u\n", name->Name.Length); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:152:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD len, written, read; data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:180:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(okfile, buffer, sizeof(buffer), &read, NULL); data/wine-5.0/dlls/ntoskrnl.exe/tests/ntoskrnl.c:181:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). printf("%.*s", read, buffer); data/wine-5.0/dlls/odbccp32/odbccp32.c:833:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(buff); data/wine-5.0/dlls/odbccp32/odbccp32.c:1609:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(lpszDSN) > SQL_MAX_DSN_LENGTH || strpbrk(lpszDSN, invalid) != NULL) data/wine-5.0/dlls/odbccp32/tests/misc.c:232:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("defaultX"), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:236:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("def"), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:240:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("default"), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:258:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen("value0123456789"), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:269:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == (strlen("testing")+1), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:277:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == (strlen("testing") + strlen("value")+2), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:277:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == (strlen("testing") + strlen("value")+2), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:278:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(ret >= (strlen("testing") + strlen("value")+2)) data/wine-5.0/dlls/odbccp32/tests/misc.c:278:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(ret >= (strlen("testing") + strlen("value")+2)) data/wine-5.0/dlls/odbccp32/tests/misc.c:285:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == (strlen("testing")+1), "SQLGetPrivateProfileString returned %d\n", ret); data/wine-5.0/dlls/odbccp32/tests/misc.c:286:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(ret >= (strlen("testing")+1)) data/wine-5.0/dlls/odbccp32/tests/misc.c:502:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(driverpath) + 1, "got %u\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:508:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen("59") + 1, "got %u\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:525:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen("60;xxxx=555") + 1, "got %u\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:567:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(path), "invalid length %d\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:574:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(path), "invalid length %d\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:593:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(driverpath) + 1, "got %u\n", size); data/wine-5.0/dlls/odbccp32/tests/misc.c:648:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == 8, "got len %u\n", lstrlenA(buffer)); data/wine-5.0/dlls/odbccp32/tests/misc.c:653:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == 8, "got len %u\n", lstrlenA(buffer)); data/wine-5.0/dlls/odbccp32/tests/misc.c:660:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/wine-5.0/dlls/odbccp32/tests/misc.c:662:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer; *p; p += strlen(p) + 1) data/wine-5.0/dlls/odbccp32/tests/misc.c:671:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == len-2, "expected len %d, got %u\n", len-2, lstrlenA(buffer)); data/wine-5.0/dlls/odbccp32/tests/misc.c:677:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == len-1, "expected len %d, got %u\n", len-1, lstrlenA(buffer)); data/wine-5.0/dlls/odbccp32/tests/misc.c:683:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == len, "expected len %d, got %u\n", len, lstrlenA(buffer)); data/wine-5.0/dlls/odbccp32/tests/misc.c:698:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i = 0; i < strlen(invalid); i++) data/wine-5.0/dlls/ole2disp.dll16/ole2disp.c:339:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out = BSTR_AllocBytes(strlen(oleStr)+1); data/wine-5.0/dlls/ole2disp.dll16/ole2disp.c:461:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(BSTR_GetAddr(str)); data/wine-5.0/dlls/ole32/datacache.c:465:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/datacache.c:469:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, &length, sizeof(length), &read); data/wine-5.0/dlls/ole32/datacache.c:470:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (hr != S_OK || read != sizeof(length)) data/wine-5.0/dlls/ole32/datacache.c:479:53: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, &cf, sizeof(cf), &read); data/wine-5.0/dlls/ole32/datacache.c:480:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (hr != S_OK || read != sizeof(cf)) data/wine-5.0/dlls/ole32/datacache.c:489:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, format_name, length, &read); data/wine-5.0/dlls/ole32/datacache.c:490:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (hr != S_OK || read != length || format_name[length - 1] != '\0') data/wine-5.0/dlls/ole32/datacache.c:595:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/datacache.c:605:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, &header, sizeof(header), &read ); data/wine-5.0/dlls/ole32/datacache.c:610:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, &mf_place, sizeof(mf_place), &read ); data/wine-5.0/dlls/ole32/datacache.c:629:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, bits, stat.cbSize.u.LowPart, &read ); data/wine-5.0/dlls/ole32/datacache.c:672:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read, info_size, bi_size; data/wine-5.0/dlls/ole32/datacache.c:687:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, &pres, sizeof(pres), &read ); data/wine-5.0/dlls/ole32/datacache.c:692:67: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, &file, sizeof(BITMAPFILEHEADER), &read ); data/wine-5.0/dlls/ole32/datacache.c:705:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, dib, sizeof(DWORD), &read ); data/wine-5.0/dlls/ole32/datacache.c:711:76: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, dib + sizeof(DWORD), bi_size - sizeof(DWORD), &read ); data/wine-5.0/dlls/ole32/datacache.c:718:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, dib + bi_size, info_size - bi_size, &read ); data/wine-5.0/dlls/ole32/datacache.c:735:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, dib + info_size, stat.cbSize.u.LowPart, &read ); data/wine-5.0/dlls/ole32/datacache.c:785:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read, size_bits; data/wine-5.0/dlls/ole32/datacache.c:794:67: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read( stm, data, stat.cbSize.u.LowPart, &read ); data/wine-5.0/dlls/ole32/datacache.c:801:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read <= sizeof(DWORD) + sizeof(ENHMETAHEADER)) data/wine-5.0/dlls/ole32/defaulthandler.c:1781:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/ole32/defaulthandler.c:1784:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, &header, sizeof(header), &read); data/wine-5.0/dlls/ole32/ole2.c:2997:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pvarSrc->u.pszVal); data/wine-5.0/dlls/ole32/ole32_main.c:125:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtEscape(hdc, MFCOMMENT, strlen(szIconIndex)+1, szIconIndex, 0, NULL); data/wine-5.0/dlls/ole32/stg_prop.c:554:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(src) + 1; data/wine-5.0/dlls/ole32/stg_prop.c:716:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(name) >= MAX_VERSION_0_PROP_NAME_LENGTH) data/wine-5.0/dlls/ole32/stg_prop.c:1808:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). StorageUtl_WriteDWord(&keyLen, 0, strlen((LPCSTR)key) + 1); data/wine-5.0/dlls/ole32/storage32.c:99:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL read; data/wine-5.0/dlls/ole32/storage32.c:196:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL read; data/wine-5.0/dlls/ole32/storage32.c:3558:72: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = StorageImpl_ReadAt(This, ulOffset, buffer, This->bigBlockSize, &read); data/wine-5.0/dlls/ole32/storage32.c:3560:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (SUCCEEDED(hr) && read < This->bigBlockSize) data/wine-5.0/dlls/ole32/storage32.c:3563:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memset((LPBYTE)buffer+read, 0, This->bigBlockSize-read); data/wine-5.0/dlls/ole32/storage32.c:3563:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memset((LPBYTE)buffer+read, 0, This->bigBlockSize-read); data/wine-5.0/dlls/ole32/storage32.c:3566:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (out_read) *out_read = read; data/wine-5.0/dlls/ole32/storage32.c:3578:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/ole32/storage32.c:3584:60: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). StorageImpl_ReadAt(This, ulOffset, &tmp, sizeof(DWORD), &read); data/wine-5.0/dlls/ole32/storage32.c:4030:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/storage32.c:4062:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). StorageImpl_ReadBigBlock(This, depotBlockIndexPos, depotBuffer, &read); data/wine-5.0/dlls/ole32/storage32.c:4064:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!read) data/wine-5.0/dlls/ole32/storage32.c:4181:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/storage32.c:4271:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). StorageImpl_ReadBigBlock(This, depotBlockIndexPos, depotBuffer, &read); data/wine-5.0/dlls/ole32/storage32.c:4273:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/wine-5.0/dlls/ole32/storage32.c:5668:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!This->entries[entry].read) data/wine-5.0/dlls/ole32/storage32.c:5768:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (entry->read) data/wine-5.0/dlls/ole32/storage32.c:5844:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!This->entries[This->base.storageDirEntry].read) data/wine-5.0/dlls/ole32/storage32.c:5897:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!entry->read || data/wine-5.0/dlls/ole32/storage32.c:6009:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!root_entry->read) data/wine-5.0/dlls/ole32/storage32.c:6060:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else if (entry->read && entry->transactedParentEntry != entry->newTransactedParentEntry) data/wine-5.0/dlls/ole32/storage32.c:7669:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!cachedBlock->read) data/wine-5.0/dlls/ole32/storage32.c:7671:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/storage32.c:7672:107: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(StorageImpl_ReadBigBlock(This->parentStorage, cachedBlock->sector, cachedBlock->data, &read)) && !read) data/wine-5.0/dlls/ole32/storage32.c:7672:118: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(StorageImpl_ReadBigBlock(This->parentStorage, cachedBlock->sector, cachedBlock->data, &read)) && !read) data/wine-5.0/dlls/ole32/storage32.c:7753:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!cachedBlock->read && bytesToWrite != This->parentStorage->bigBlockSize) data/wine-5.0/dlls/ole32/storage32.c:7755:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/storage32.c:7756:107: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(StorageImpl_ReadBigBlock(This->parentStorage, cachedBlock->sector, cachedBlock->data, &read)) && !read) data/wine-5.0/dlls/ole32/storage32.c:7756:118: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(StorageImpl_ReadBigBlock(This->parentStorage, cachedBlock->sector, cachedBlock->data, &read)) && !read) data/wine-5.0/dlls/ole32/storage32.c:9064:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ILockBytes_ReadAt(plkbyt, offset, sig, sizeof(sig), &read); data/wine-5.0/dlls/ole32/storage32.c:10050:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IStorageCompObj.dwOleTypeNameLength = strlen(strOleTypeName)+1; data/wine-5.0/dlls/ole32/storage32.c:10055:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IStorageCompObj.dwProgIDNameLength = strlen(strOleTypeName)+1; data/wine-5.0/dlls/ole32/storage32.c:10412:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pOleStreamData[1].dwOleTypeNameLength = strlen(strMetafilePictName) +1; data/wine-5.0/dlls/ole32/tests/clipboard.c:88:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA(hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL); data/wine-5.0/dlls/ole32/tests/clipboard.c:437:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HGLOBAL h = GlobalAlloc(GMEM_MOVEABLE, strlen(text) + 1); data/wine-5.0/dlls/ole32/tests/clipboard.c:456:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). obj->text = GlobalAlloc(GMEM_MOVEABLE, strlen(cmpl_text_data) + 1); data/wine-5.0/dlls/ole32/tests/clipboard.c:460:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IStream_Write(obj->stm, cmpl_stm_data, strlen(cmpl_stm_data), NULL); data/wine-5.0/dlls/ole32/tests/clipboard.c:841:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(cmpl_stm_data), data/wine-5.0/dlls/ole32/tests/clipboard.c:843:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(ptr, cmpl_stm_data, strlen(cmpl_stm_data)), "mismatch\n"); data/wine-5.0/dlls/ole32/tests/clipboard.c:857:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(cmpl_text_data) + 1, data/wine-5.0/dlls/ole32/tests/clipboard.c:859:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(ptr, cmpl_text_data, strlen(cmpl_text_data) + 1), "mismatch\n"); data/wine-5.0/dlls/ole32/tests/clipboard.c:1512:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA(hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL); data/wine-5.0/dlls/ole32/tests/compobj.c:204:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). manifest_len = strlen(manifest); data/wine-5.0/dlls/ole32/tests/compobj.c:1349:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(hkey_psclsid, NULL, 0, REG_SZ, (const BYTE *)clsidA, strlen(clsidA)+1); data/wine-5.0/dlls/ole32/tests/compobj.c:2407:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RegSetValueExA(hkey, NULL, 0, REG_SZ, (const BYTE*)auxvalues[i], strlen(auxvalues[i])); data/wine-5.0/dlls/ole32/tests/defaulthandler.c:100:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/tests/defaulthandler.c:120:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stm, &header, sizeof(header), &read); data/wine-5.0/dlls/ole32/tests/defaulthandler.c:122:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(header), "read %d\n", read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:53:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/tests/hglobalstream.c:72:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pStream, buffer, sizeof(buffer), &read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:74:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(data), "IStream_Read returned read %d\n", read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:479:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read, written; data/wine-5.0/dlls/ole32/tests/hglobalstream.c:481:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hglobal = GlobalAlloc(GMEM_DDESHARE|GMEM_NODISCARD|GMEM_MOVEABLE, strlen(teststring) + 1); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:490:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pStream, buffer, sizeof(buffer), &read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:495:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). "read should be sizeof(teststring) instead of %d\n", read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:501:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(pStream, buffer, sizeof(buffer), &read); data/wine-5.0/dlls/ole32/tests/hglobalstream.c:504:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 0, "read should be 0 instead of %d\n", read); data/wine-5.0/dlls/ole32/tests/marshal.c:1519:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD size, read; data/wine-5.0/dlls/ole32/tests/marshal.c:1541:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, &objref, size, &read); data/wine-5.0/dlls/ole32/tests/marshal.c:1543:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == size, "read = %d, expected %d\n", read, size); data/wine-5.0/dlls/ole32/tests/marshal.c:1572:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD size, read; data/wine-5.0/dlls/ole32/tests/marshal.c:1593:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = CoGetMarshalSizeMax(&read, &IID_IUnknown, &Test_Unknown, data/wine-5.0/dlls/ole32/tests/marshal.c:1596:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(size == read, "IMarshal_GetMarshalSizeMax size = %d, expected %d\n", size, read); data/wine-5.0/dlls/ole32/tests/marshal.c:1596:83: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(size == read, "IMarshal_GetMarshalSizeMax size = %d, expected %d\n", size, read); data/wine-5.0/dlls/ole32/tests/marshal.c:1605:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, &objref, size, &read); data/wine-5.0/dlls/ole32/tests/marshal.c:1607:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == size, "read = %d, expected %d\n", read, size); data/wine-5.0/dlls/ole32/tests/marshal.c:3341:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WideCharToMultiByte(CP_ACP, 0, pszClsid, -1, buffer + strlen(buffer), sizeof(buffer) - strlen(buffer), NULL, NULL); data/wine-5.0/dlls/ole32/tests/marshal.c:3341:92: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WideCharToMultiByte(CP_ACP, 0, pszClsid, -1, buffer + strlen(buffer), sizeof(buffer) - strlen(buffer), NULL, NULL); data/wine-5.0/dlls/ole32/tests/marshal.c:3354:95: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). error = RegSetValueExA(hkey, NULL, 0, REG_SZ, (const unsigned char *)"\"ole32.dll\"", strlen("\"ole32.dll\"") + 1); data/wine-5.0/dlls/ole32/tests/ole_server.c:305:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = RegSetValueA(root, "LocalServer32", REG_SZ, server_path, strlen(server_path)); data/wine-5.0/dlls/ole32/tests/storage32.c:1054:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = IStream_Write( stm, "Test string", strlen("Test string"), NULL); data/wine-5.0/dlls/ole32/tests/usrmarshal.c:341:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA(hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL); data/wine-5.0/dlls/ole32/tests/usrmarshal.c:415:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA(hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL); data/wine-5.0/dlls/ole32/usrmarshal.c:2447:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/usrmarshal.c:2452:60: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = ISequentialStream_RemoteRead_Proxy(This, pv, cb, &read); data/wine-5.0/dlls/ole32/usrmarshal.c:2453:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(pcbRead) *pcbRead = read; data/wine-5.0/dlls/ole32/usrmarshal.c:2529:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER read, written; data/wine-5.0/dlls/ole32/usrmarshal.c:2534:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_RemoteCopyTo_Proxy(This, pstm, cb, &read, &written); data/wine-5.0/dlls/ole32/usrmarshal.c:2535:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(pcbRead) *pcbRead = read; data/wine-5.0/dlls/ole32/usrmarshal.c:2642:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/ole32/usrmarshal.c:2647:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = ILockBytes_RemoteReadAt_Proxy(This, ulOffset, pv, cb, &read); data/wine-5.0/dlls/ole32/usrmarshal.c:2648:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(pcbRead) *pcbRead = read; data/wine-5.0/dlls/oleaut32/tests/safearray.c:1800:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MKARRAY(0,strlen(szHello)+1,VT_UI1); data/wine-5.0/dlls/oleaut32/tests/safearray.c:1801:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(sa->pvData, szHello, strlen(szHello)+1); data/wine-5.0/dlls/oleaut32/tests/safearray.c:1817:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sa = SafeArrayCreateVector(VT_UI1, 0, strlen(szHello)+1); data/wine-5.0/dlls/oleaut32/tests/safearray.c:1822:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(sa->pvData, szHello, strlen(szHello)+1); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4011:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4030:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buf) < sizeof(buf)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4059:9: [1] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source is a constant character. sprintf(buf, "4"); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4094:9: [1] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source is a constant character. sprintf(buf, "4"); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4113:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4124:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buf) < sizeof(buf)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4137:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. #define ADD_FLAG(x) if (flags & x) { if (buf[0]) strcat(buf, "|"); strcat(buf, #x); flags &= ~x; } data/wine-5.0/dlls/oleaut32/tests/typelib.c:4154:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buf) < sizeof(buf)); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4922:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/oleaut32/tests/typelib.c:4958:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile( file, msft_header, sizeof(msft_header), &read, NULL ); data/wine-5.0/dlls/oleaut32/tests/typelib.c:4959:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == sizeof(msft_header), "read %d\n", read); data/wine-5.0/dlls/oleaut32/tests/typelib.c:5715:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/oleaut32/typelib.c:550:21: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (mismatch) data/wine-5.0/dlls/oleaut32/typelib.c:1348:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szVarType += strlen(strcpy(szVarType, "reserved | ")); data/wine-5.0/dlls/oleaut32/typelib.c:1350:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szVarType += strlen(strcpy(szVarType, "ref to ")); data/wine-5.0/dlls/oleaut32/typelib.c:1352:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szVarType += strlen(strcpy(szVarType, "array of ")); data/wine-5.0/dlls/oleaut32/typelib.c:1354:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szVarType += strlen(strcpy(szVarType, "vector of ")); data/wine-5.0/dlls/oleaut32/typelib.c:1388:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dump_TypeDesc(&pTD->u.lpadesc->tdescElem, szVarType + strlen(szVarType)); data/wine-5.0/dlls/oleaut32/typelib.c:3093:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( typeid ); data/wine-5.0/dlls/oleaut32/typelib.c:3124:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( resid ); data/wine-5.0/dlls/oleaut32/typelib.c:3963:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(fname); data/wine-5.0/dlls/oleaut32/typelib.c:10105:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *((INT16*)data) = (strlen << 2) | 1; /* FIXME: is that a flag, or what? */ data/wine-5.0/dlls/oleaut32/typelib.c:10112:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memset(data + sizeof(INT16) + strlen, 0x57, size - strlen - sizeof(INT16)); data/wine-5.0/dlls/oledb32/convert.c:1520:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *dst_len = (strlen(src) + 1) * sizeof(WCHAR); data/wine-5.0/dlls/oledlg/pastespl.c:78:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flagstr, "|"); data/wine-5.0/dlls/opcservices/factory.c:102:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). num_read = &read; data/wine-5.0/dlls/opcservices/package.c:553:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). num_read = &read; data/wine-5.0/dlls/opengl32/tests/opengl.c:98:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t ext_str_len = strlen(extension_string); data/wine-5.0/dlls/opengl32/wgl.c:1603:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = str = HeapAlloc(GetProcessHeap(), 0, strlen(extensions) + 2); data/wine-5.0/dlls/opengl32/wgl.c:1616:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = extensions + strlen(extensions); data/wine-5.0/dlls/opengl32/wgl.c:1619:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!has_extension(disabled, p, strlen(p))) data/wine-5.0/dlls/opengl32/wgl.c:1674:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = ext + strlen(ext); data/wine-5.0/dlls/propsys/tests/propsys.c:657:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prop.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/propsys/tests/propsys.c:1305:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). src.u.pszVal = CoTaskMemAlloc(strlen(topic)+1); data/wine-5.0/dlls/psapi/tests/psapi_main.c:429:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(szMapPath), "szMapPath=\"%s\" ret=%d\n", szMapPath, ret); data/wine-5.0/dlls/psapi/tests/psapi_main.c:491:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret > strlen(device_name), "map_name should be longer than device_name\n"); data/wine-5.0/dlls/psapi/tests/psapi_main.c:492:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(memcmp(map_name, device_name, strlen(device_name)) == 0, "map name does not start with a device name: %s\n", map_name); data/wine-5.0/dlls/psapi/tests/psapi_main.c:499:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret > strlen(device_name), "map_name should be longer than device_name\n"); data/wine-5.0/dlls/psapi/tests/psapi_main.c:505:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(memcmp(map_name, device_name, strlen(device_name)) == 0, "map name does not start with a device name: %s\n", map_name); data/wine-5.0/dlls/psapi/tests/psapi_main.c:512:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret > strlen(device_name), "map_name should be longer than device_name\n"); data/wine-5.0/dlls/psapi/tests/psapi_main.c:513:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(memcmp(map_name, device_name, strlen(device_name)) == 0, "map name does not start with a device name: %s\n", map_name); data/wine-5.0/dlls/psapi/tests/psapi_main.c:596:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). todo_wine ok(ret >= strlen(szImgPath), "szImgPath=\"%s\" ret=%d\n", szImgPath, ret); data/wine-5.0/dlls/psapi/tests/psapi_main.c:657:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(szModExPath), "szModExPath=\"%s\" ret=%d\n", szModExPath, ret); data/wine-5.0/dlls/psapi/tests/psapi_main.c:665:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == 4 || ret == strlen(szModExPath), "wrong length %u\n", ret ); data/wine-5.0/dlls/psapi/tests/psapi_main.c:666:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( broken(szModExPath[3]) /*w2kpro*/ || strlen(szModExPath) == 3, data/wine-5.0/dlls/psapi/tests/psapi_main.c:718:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(szModBaseName), "szModBaseName=\"%s\" ret=%d\n", szModBaseName, ret); data/wine-5.0/dlls/qcap/tests/qcap.c:1616:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/qcap/tests/qcap.c:1628:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(avi_stream, buf, sizeof(buf), &read); data/wine-5.0/dlls/qcap/tests/qcap.c:1633:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read) data/wine-5.0/dlls/qcap/tests/qcap.c:1635:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(WriteFile(f, buf, read, &read, NULL), "WriteFile failed\n"); data/wine-5.0/dlls/qcap/tests/qcap.c:1635:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(WriteFile(f, buf, read, &read, NULL), "WriteFile failed\n"); data/wine-5.0/dlls/qcap/v4l.c:75:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static typeof(read) *video_read = read; data/wine-5.0/dlls/qcap/v4l.c:75:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static typeof(read) *video_read = read; data/wine-5.0/dlls/qmgr/tests/job.c:302:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD w, len = strlen(contents); data/wine-5.0/dlls/riched20/editor.c:1259:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read >= size) data/wine-5.0/dlls/riched20/editor.c:1273:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/dlls/riched20/editor.c:1842:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). data.length = strlen(string); data/wine-5.0/dlls/riched20/editor.c:3902:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = lParam ? strlen((char *)lParam) : 0; data/wine-5.0/dlls/riched20/para.c:859:10: [1] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source is a constant character. p += sprintf(p, "\t"); data/wine-5.0/dlls/riched20/para.c:861:10: [1] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source is a constant character. p += sprintf(p, "\n"); data/wine-5.0/dlls/riched20/tests/editor.c:295:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : f->expected_loc + strlen(f->needle)); data/wine-5.0/dlls/riched20/tests/editor.c:314:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : f->expected_loc + strlen(f->needle)); data/wine-5.0/dlls/riched20/tests/editor.c:406:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int expected_nCopied = min(gl[i].buffer_len, strlen(gl[i].text)); data/wine-5.0/dlls/riched20/tests/editor.c:407:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int expected_bytes_written = min(gl[i].buffer_len, strlen(gl[i].text)); data/wine-5.0/dlls/riched20/tests/editor.c:431:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(resultbuf+strlen(resultbuf), "%02x", dest[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:434:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(expectedbuf+strlen(expectedbuf), "%02x", gl[i].text[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:436:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(expectedbuf+strlen(expectedbuf), "??"); data/wine-5.0/dlls/riched20/tests/editor.c:438:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(expectedbuf+strlen(expectedbuf), "%02x", origdest[j] & 0xFF); data/wine-5.0/dlls/riched20/tests/editor.c:1676:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result = SendMessageA(hwndRichEdit, WM_GETTEXT, strlen(text), (LPARAM)buffer); data/wine-5.0/dlls/riched20/tests/editor.c:1703:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result = SendMessageA(hwndRichEdit, WM_GETTEXT, strlen(text2), (LPARAM)buffer); data/wine-5.0/dlls/riched20/tests/editor.c:1749:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(result == strlen(text2), "EM_GETTEXTRANGE returned %ld\n", result); data/wine-5.0/dlls/riched20/tests/editor.c:1781:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(result == strlen(text2), "EM_GETTEXTRANGE returned %ld\n", result); data/wine-5.0/dlls/riched20/tests/editor.c:2095:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2146:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2187:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2298:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2453:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2501:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2555:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2623:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:2674:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end_offset = at_offset + strlen(urls[i].text); data/wine-5.0/dlls/riched20/tests/editor.c:3840:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched20/tests/editor.c:3870:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched20/tests/editor.c:3900:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched20/tests/editor.c:3912:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched20/tests/editor.c:4590:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(buffer); data/wine-5.0/dlls/riched20/tests/editor.c:4599:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(buffer); data/wine-5.0/dlls/riched20/tests/editor.c:4609:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(buffer); data/wine-5.0/dlls/riched20/tests/editor.c:4623:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(buffer); data/wine-5.0/dlls/riched20/tests/editor.c:4712:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int size = strlen(*str); data/wine-5.0/dlls/riched20/tests/editor.c:5654:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPoint32A(hdc, fmtstrings[i].string, strlen(fmtstrings[i].string), &stringsize); data/wine-5.0/dlls/riched20/tests/editor.c:5741:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int size = strlen(*str); data/wine-5.0/dlls/riched20/tests/editor.c:5866:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int length4 = strlen(streamText4) + 1; data/wine-5.0/dlls/riched20/tests/editor.c:6418:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(base_string), "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:6423:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(base_string), "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:6463:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(base_string), "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:6468:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(base_string), "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:6475:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(test_string_2) + 2, "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:6480:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(test_string_2), "ret %d\n",ret); data/wine-5.0/dlls/riched20/tests/editor.c:8284:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(src); i++) data/wine-5.0/dlls/riched20/writer.c:408:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\trgaph%d", pFmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:410:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\trleft%d", pFmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:422:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\clbrdr%c", sideChar[i]); data/wine-5.0/dlls/riched20/writer.c:423:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrs"); data/wine-5.0/dlls/riched20/writer.c:424:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrw%d", borders[i]->width); data/wine-5.0/dlls/riched20/writer.c:426:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrcf%u", idx); data/wine-5.0/dlls/riched20/writer.c:429:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\cellx%d", cell->member.cell.nRightBoundary); data/wine-5.0/dlls/riched20/writer.c:441:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\trgaph%d", pFmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:443:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\trleft%d", pFmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:450:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\trbrdr%c", sideChar[i]); data/wine-5.0/dlls/riched20/writer.c:451:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrs"); data/wine-5.0/dlls/riched20/writer.c:452:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrw%d", borders[i]->width); data/wine-5.0/dlls/riched20/writer.c:454:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\brdrcf%u", idx); data/wine-5.0/dlls/riched20/writer.c:459:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\cellx%d", pFmt->rgxTabs[i] & 0x00FFFFFF); data/wine-5.0/dlls/riched20/writer.c:599:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\itap%d", pStream->nNestingLevel); data/wine-5.0/dlls/riched20/writer.c:641:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\sl%d\\slmult0", fmt->dyLineSpacing); data/wine-5.0/dlls/riched20/writer.c:644:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\sl-%d\\slmult0", fmt->dyLineSpacing); data/wine-5.0/dlls/riched20/writer.c:647:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\sl-%d\\slmult1", fmt->dyLineSpacing * 240 / 20); data/wine-5.0/dlls/riched20/writer.c:673:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\li%d", fmt->dxOffset); data/wine-5.0/dlls/riched20/writer.c:675:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\fi%d", fmt->dxStartIndent); data/wine-5.0/dlls/riched20/writer.c:677:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\ri%d", fmt->dxRightIndent); data/wine-5.0/dlls/riched20/writer.c:698:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props+strlen(props), "\\tx%d", fmt->rgxTabs[i]&0x00FFFFFF); data/wine-5.0/dlls/riched20/writer.c:703:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\sa%d", fmt->dySpaceAfter); data/wine-5.0/dlls/riched20/writer.c:705:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\sb%d", fmt->dySpaceBefore); data/wine-5.0/dlls/riched20/writer.c:707:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\s%d", fmt->sStyle); data/wine-5.0/dlls/riched20/writer.c:716:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\shading%d", fmt->wShadingWeight); data/wine-5.0/dlls/riched20/writer.c:720:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\cfpat%d", (fmt->wShadingStyle >> 4) & 0xf); data/wine-5.0/dlls/riched20/writer.c:722:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\cbpat%d", (fmt->wShadingStyle >> 8) & 0xf); data/wine-5.0/dlls/riched20/writer.c:725:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(props, " "); data/wine-5.0/dlls/riched20/writer.c:771:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\highlight%u", i); data/wine-5.0/dlls/riched20/writer.c:778:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\cf%u", i); data/wine-5.0/dlls/riched20/writer.c:782:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\animtext%u", fmt->bAnimation); data/wine-5.0/dlls/riched20/writer.c:784:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\kerning%u", fmt->wKerning); data/wine-5.0/dlls/riched20/writer.c:792:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\lang%u", LOWORD(fmt->lcid)); data/wine-5.0/dlls/riched20/writer.c:798:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\up%d", fmt->yOffset); data/wine-5.0/dlls/riched20/writer.c:800:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\dn%d", -fmt->yOffset); data/wine-5.0/dlls/riched20/writer.c:803:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\fs%d", fmt->yHeight / 10); data/wine-5.0/dlls/riched20/writer.c:805:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\expnd%u\\expndtw%u", fmt->sSpacing / 5, fmt->sSpacing); data/wine-5.0/dlls/riched20/writer.c:846:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(props + strlen(props), "\\f%u", i); data/wine-5.0/dlls/riched20/writer.c:859:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(props, " "); data/wine-5.0/dlls/riched32/tests/editor.c:170:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int size = strlen(*str); data/wine-5.0/dlls/riched32/tests/editor.c:337:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched32/tests/editor.c:350:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched32/tests/editor.c:364:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/wine-5.0/dlls/riched32/tests/editor.c:427:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected_nCopied = min(gl[i].buffer_len, strlen(gl_text)); data/wine-5.0/dlls/riched32/tests/editor.c:429:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected_bytes_written = min(gl[i].buffer_len, strlen(gl_text) + (broken_os ? 0 : 1)); data/wine-5.0/dlls/riched32/tests/editor.c:761:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : f->expected_loc + strlen(f->needle)); data/wine-5.0/dlls/riched32/tests/editor.c:1155:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(src); i++) data/wine-5.0/dlls/rpcrt4/cpsf.c:265:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(key, NULL, 0, REG_SZ, (const BYTE *)name, strlen(name)+1); data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:1868:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pStubMsg->ActualCount = strlen((const char *)pMemory)+1; data/wine-5.0/dlls/rpcrt4/ndr_marshall.c:1991:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pStubMsg->ActualCount = strlen((const char *)pMemory)+1; data/wine-5.0/dlls/rpcrt4/ndr_ole.c:196:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER len, ULARGE_INTEGER *read, ULARGE_INTEGER *written) data/wine-5.0/dlls/rpcrt4/ndr_stubless.c:251:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf( buffer + strlen(buffer), " ServerAllocSize = %d", param_attributes.ServerAllocSize * 8); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:50:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (slen == -1) slen = strlen(src); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:310:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(dst), slen = strlen(src); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:310:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(dst), slen = strlen(src); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:415:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen((const char *)string_binding); data/wine-5.0/dlls/rpcrt4/rpc_binding.c:470:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ObjUuid && *ObjUuid) len += strlen((char*)ObjUuid) * 2 + 1; data/wine-5.0/dlls/rpcrt4/rpc_binding.c:471:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (Protseq && *Protseq) len += strlen((char*)Protseq) * 2 + 1; data/wine-5.0/dlls/rpcrt4/rpc_binding.c:472:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (NetworkAddr && *NetworkAddr) len += strlen((char*)NetworkAddr) * 2; data/wine-5.0/dlls/rpcrt4/rpc_binding.c:473:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (Endpoint && *Endpoint) len += strlen((char*)Endpoint) * 2 + 2; data/wine-5.0/dlls/rpcrt4/rpc_binding.c:474:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (Options && *Options) len += strlen((char*)Options) * 2 + 2; data/wine-5.0/dlls/rpcrt4/rpc_binding.c:633:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp((const char *)opt, ep_opt, strlen(ep_opt)) == 0) { data/wine-5.0/dlls/rpcrt4/rpc_binding.h:105:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int (*read)(RpcConnection *conn, void *buffer, unsigned int len); data/wine-5.0/dlls/rpcrt4/rpc_binding.h:191:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return Connection->ops->read(Connection, buffer, len); data/wine-5.0/dlls/rpcrt4/rpc_epmap.c:249:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). min(strlen((char *)Annotation) + 1, ept_max_annotation_size)); data/wine-5.0/dlls/rpcrt4/rpc_message.c:267:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ROUND_UP(FIELD_OFFSET(RpcAddressString, string[strlen(ServerAddress) + 1]), 4) + data/wine-5.0/dlls/rpcrt4/rpc_message.c:281:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). server_address->length = strlen(ServerAddress) + 1; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:183:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pipe_name = I_RpcAllocate(sizeof(prefix) + strlen(endpoint)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:243:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pipe_name = I_RpcAllocate(sizeof(prefix) + strlen(endpoint)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:483:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). networkaddr_size = networkaddr ? strlen(networkaddr) + 1 : 1; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:484:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). endpoint_size = endpoint ? strlen(endpoint) + 1 : 1; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:783:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). endpoint_size = strlen(endpoint) + 1; data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1969:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). servername = HeapAlloc(GetProcessHeap(), 0, (strlen(httpc->common.NetworkAddr) + 1)*sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:1977:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, httpc->common.NetworkAddr, -1, servername, strlen(httpc->common.NetworkAddr) + 1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2774:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). url = HeapAlloc(GetProcessHeap(), 0, sizeof(wszRpcProxyPrefix) + (strlen(Connection->NetworkAddr) + 1 + strlen(Connection->Endpoint))*sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2774:109: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). url = HeapAlloc(GetProcessHeap(), 0, sizeof(wszRpcProxyPrefix) + (strlen(Connection->NetworkAddr) + 1 + strlen(Connection->Endpoint))*sizeof(WCHAR)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2779:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Connection->NetworkAddr)+1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:2781:81: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, Connection->Endpoint, -1, url+lstrlenW(url), strlen(Connection->Endpoint)+1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3521:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *protseq = I_RpcAllocate(strlen(protseq_ops->name) + 1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3619:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvector->Protseq[i] = HeapAlloc(GetProcessHeap(), 0, (strlen(protseq_list[i].name)+1)*sizeof(unsigned short)); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3623:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (WCHAR*)pvector->Protseq[i], strlen(protseq_list[i].name) + 1); data/wine-5.0/dlls/rpcrt4/rpc_transport.c:3652:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pvector->Protseq[i] = HeapAlloc(GetProcessHeap(), 0, strlen(protseq_list[i].name)+1); data/wine-5.0/dlls/rpcrt4/rpcrt4_main.c:578:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen((char*)s) != 36) return RPC_S_INVALID_STRING_UUID; data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2186:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(StubMsg.BufferLength >= strlen((char *)memsrc) + 1 + 8, "length %d\n", StubMsg.BufferLength); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2195:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen((char *)memsrc) + 1 + 8, "Buffer %p Start %p len %d\n", data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2197:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(StubMsg.BufferStart + 8, memsrc, strlen((char *)memsrc) + 1), "incorrectly marshaled\n"); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2259:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(StubMsg.BufferLength >= strlen((char *)memsrc2) + 1 + 8, "length %d\n", StubMsg.BufferLength); data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2268:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen((char *)memsrc2) + 1 + 8, "Buffer %p Start %p len %d\n", data/wine-5.0/dlls/rpcrt4/tests/ndr_marshall.c:2270:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!memcmp(StubMsg.BufferStart + 8, memsrc2, strlen((char *)memsrc2) + 1), "incorrectly marshaled\n"); data/wine-5.0/dlls/rpcrt4/tests/server.c:293:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *d = HeapAlloc(GetProcessHeap(), 0, strlen(s) + 1); data/wine-5.0/dlls/rpcrt4/tests/server.c:360:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(s); data/wine-5.0/dlls/rpcrt4/tests/server.c:365:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(s); data/wine-5.0/dlls/rpcrt4/tests/server.c:1179:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(str_length(string) == strlen(string), "RPC str_length\n"); data/wine-5.0/dlls/rpcrt4/tests/server.c:1180:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(str_t_length(string) == strlen(string), "RPC str_length\n"); data/wine-5.0/dlls/rpcrt4/tests/server.c:1635:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(cstr_length(str1, sizeof str1) == strlen(str1), "RPC cstr_length\n"); data/wine-5.0/dlls/rsaenh/rsaenh.c:4043:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pKeyContainer->szName)+1); data/wine-5.0/dlls/rsaenh/rsaenh.c:4047:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pKeyContainer->szProvName)+1); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:45:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int strlen; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:852:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:867:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:902:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:956:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:971:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1006:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1062:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1077:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1112:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1197:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(pbData,cTestData[i].origstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1212:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:1247:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printBytes("expected",cTestData[i].decstr,cTestData[i].strlen); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3058:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(data, test_string, strlen(test_string) + 1); data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3059:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dataLen = strlen(test_string) + 1; data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3256:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(result && dataLen == strlen(szContainer)+1 && strcmp(szContainer,szName) == 0, data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3275:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dataLen == strlen(container)+1 || data/wine-5.0/dlls/rsaenh/tests/rsaenh.c:3276:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dataLen == strlen(szContainer)+1) /* WinME */, data/wine-5.0/dlls/sane.ds/capability.c:294:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(m) >= len) data/wine-5.0/dlls/sane.ds/capability.c:303:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (memcmp(mode, SANE_VALUE_SCAN_MODE_GRAY, strlen(SANE_VALUE_SCAN_MODE_GRAY)) == 0) data/wine-5.0/dlls/sane.ds/sane_main.c:423:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(in) <= outsize - 1) data/wine-5.0/dlls/sane.ds/sane_main.c:438:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(p) > outsize - 7 - 1) data/wine-5.0/dlls/sane.ds/sane_main.c:439:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) - (outsize - 7 - 1); data/wine-5.0/dlls/sane.ds/sane_main.c:442:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(out + strlen(out), "(%04X)", signature % 0x10000); data/wine-5.0/dlls/sapi/automation.c:151:103: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI file_stream_Read(ISpeechFileStream *iface, VARIANT *buffer, LONG written, LONG *read) data/wine-5.0/dlls/sapi/automation.c:153:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FIXME("(%p, %p, %d, %p): stub.\n", iface, buffer, written, read); data/wine-5.0/dlls/sapi/automation.c:233:82: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI spstream_Read(ISpStream *iface, void *pv, ULONG cb, ULONG *read) data/wine-5.0/dlls/sapi/automation.c:235:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FIXME("(%p, %p, %d, %p): stub.\n", iface, pv, cb, read); data/wine-5.0/dlls/sapi/automation.c:262:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER *read, ULARGE_INTEGER *written) data/wine-5.0/dlls/sapi/automation.c:265:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read, written); data/wine-5.0/dlls/schedsvc/schedsvc.c:138:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile(hfile, comment, strlen(comment), &size, NULL)) data/wine-5.0/dlls/schedsvc/schedsvc.c:150:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile(hfile, p, strlen(p), &size, NULL)) data/wine-5.0/dlls/schedsvc/schedsvc.c:155:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile(hfile, xml, strlen(xml), &size, NULL)) data/wine-5.0/dlls/scrobj/scrobj.c:249:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t size = (wcslen(str) + 1) * sizeof(WCHAR); data/wine-5.0/dlls/scrobj/scrobj.c:775:19: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(member->name); data/wine-5.0/dlls/scrobj/scrobj.c:1285:35: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return hres == S_OK && len == wcslen(name) && !memcmp(qname, name, len * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1318:35: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return hres == S_OK && len == wcslen(name) && !memicmp(qname, name, len * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1414:29: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t progid_len = wcslen(factory->progid); data/wine-5.0/dlls/scrobj/scrobj.c:1415:30: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t version_len = wcslen(factory->version); data/wine-5.0/dlls/scrobj/scrobj.c:1601:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/scrobj/scrobj.c:1648:106: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IXmlReader_ReadValueChunk(factory->xml_reader, script->body + size, buf_size - size - 1, &read); data/wine-5.0/dlls/scrobj/scrobj.c:1650:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/scrobj/scrobj.c:1941:38: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(url) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1948:38: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->description) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1957:76: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). status = RegSetValueExW(key, NULL, 0, REG_SZ, (BYTE*)str, (wcslen(str) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1968:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->versioned_progid) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1979:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->progid) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:1995:38: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->description) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:2003:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->classid_str) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:2019:38: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->description) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:2027:42: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(factory->classid_str) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/scrobj/scrobj.c:2530:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = key_name + wcslen(key_name); data/wine-5.0/dlls/scrobj/tests/scrobj.c:671:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/scrobj/tests/scrobj.c:717:13: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = (wcslen(buffer) + 1) * sizeof(WCHAR); data/wine-5.0/dlls/scrobj/tests/scrobj.c:732:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size >= strlen(expect) + 1 && !strcmp(buf + size - strlen(expect), expect + 1), data/wine-5.0/dlls/scrobj/tests/scrobj.c:732:79: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size >= strlen(expect) + 1 && !strcmp(buf + size - strlen(expect), expect + 1), data/wine-5.0/dlls/scrobj/tests/scrobj.c:735:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == strlen(expect) + 1 && !memicmp(buf, expect, size), data/wine-5.0/dlls/scrrun/filesystem.c:436:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/scrrun/filesystem.c:440:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(stream->file, buf, sizeof(buf), &read, NULL)) data/wine-5.0/dlls/scrrun/filesystem.c:446:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->eof = read != sizeof(buf); data/wine-5.0/dlls/scrrun/filesystem.c:447:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return append_read_data(stream, buf, read); data/wine-5.0/dlls/scrrun/filesystem.c:759:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, buf_offset = 0; data/wine-5.0/dlls/scrrun/filesystem.c:764:60: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(stream->file, buf, sizeof(buf), &read, NULL)) data/wine-5.0/dlls/scrrun/filesystem.c:772:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->unicode = IsTextUnicode(buf, read, NULL); data/wine-5.0/dlls/scrrun/filesystem.c:778:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (stream->unicode && read >= 2 && buf[0] == 0xff && buf[1] == 0xfe) data/wine-5.0/dlls/scrrun/filesystem.c:788:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->eof = read != sizeof(buf); data/wine-5.0/dlls/scrrun/tests/filesystem.c:2089:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, data, strlen(data), &size, NULL); data/wine-5.0/dlls/secur32/dispatcher.c:179:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if((read_size = read(helper->pipe_in, helper->com_buf + helper->com_buf_offset, data/wine-5.0/dlls/secur32/dispatcher.c:311:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int len = read(helper->pipe_in, temp, sizeof(temp)-1); data/wine-5.0/dlls/secur32/ntlm.c:1216:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t ntlm_pipe_err_v3_len = strlen("BH NT_STATUS_ACCESS_DENIED"); data/wine-5.0/dlls/secur32/ntlm.c:1217:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t ntlm_pipe_err_v4_len = strlen("BH NT_STATUS_UNSUCCESSFUL"); data/wine-5.0/dlls/secur32/ntlm.c:1414:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD size_name = strlen(info->Name) + 1, size_comment = strlen(info->Comment) + 1; data/wine-5.0/dlls/secur32/ntlm.c:1414:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD size_name = strlen(info->Name) + 1, size_comment = strlen(info->Comment) + 1; data/wine-5.0/dlls/secur32/schannel_gnutls.c:252:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = priority + strlen(priority); data/wine-5.0/dlls/secur32/schannel_gnutls.c:260:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/wine-5.0/dlls/secur32/schannel_gnutls.c:274:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/wine-5.0/dlls/secur32/schannel_gnutls.c:318:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pgnutls_server_name_set( s, GNUTLS_NAME_DNS, target, strlen(target) ); data/wine-5.0/dlls/secur32/schannel_macosx.c:850:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). SSLSetPeerDomainName( s->context, target, strlen(target) ); data/wine-5.0/dlls/secur32/tests/negotiate.c:230:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen( "user" ); data/wine-5.0/dlls/secur32/tests/negotiate.c:232:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen( "domain" ); data/wine-5.0/dlls/secur32/tests/negotiate.c:234:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen( "password" ); data/wine-5.0/dlls/secur32/tests/ntlm.c:614:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:616:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:618:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen((char *) id.Password); data/wine-5.0/dlls/secur32/tests/ntlm.c:834:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:836:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:838:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen((char *) id.Password); data/wine-5.0/dlls/secur32/tests/ntlm.c:1008:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:1010:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:1012:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen((char *) id.Password); data/wine-5.0/dlls/secur32/tests/ntlm.c:1264:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:1266:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:1268:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen((char *) id.Password); data/wine-5.0/dlls/secur32/tests/ntlm.c:1292:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:1302:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:1389:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). idA.UserLength = strlen(test_user); data/wine-5.0/dlls/secur32/tests/ntlm.c:1391:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). idA.DomainLength = strlen(workgroup); data/wine-5.0/dlls/secur32/tests/ntlm.c:1393:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). idA.PasswordLength = strlen(test_pass); data/wine-5.0/dlls/secur32/tests/ntlm.c:1428:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.UserLength = strlen((char *) id.User); data/wine-5.0/dlls/secur32/tests/ntlm.c:1430:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.DomainLength = strlen((char *) id.Domain); data/wine-5.0/dlls/secur32/tests/ntlm.c:1432:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id.PasswordLength = strlen((char *) id.Password); data/wine-5.0/dlls/setupapi/devinst.c:1528:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!name || strlen(name) >= MAX_DEVICE_ID_LEN) data/wine-5.0/dlls/setupapi/devinst.c:3413:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!instance_id || strlen(instance_id) >= MAX_DEVICE_ID_LEN) data/wine-5.0/dlls/setupapi/devinst.c:4566:81: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExW(device->key, L"Class", 0, REG_SZ, (BYTE *)classname, wcslen(classname) * sizeof(WCHAR)); data/wine-5.0/dlls/setupapi/devinst.c:4760:74: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExW(device->key, L"DeviceDesc", 0, REG_SZ, (BYTE *)field, wcslen(field) * sizeof(WCHAR)); data/wine-5.0/dlls/setupapi/fakedll.c:102:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy( sec->Name, name, min( strlen(name), sizeof(sec->Name)) ); data/wine-5.0/dlls/setupapi/fakedll.c:229:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, file_buffer, header_size ) != header_size) goto done; data/wine-5.0/dlls/setupapi/fakedll.c:232:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (dos->e_lfanew < strlen(signature) + 1) goto done; data/wine-5.0/dlls/setupapi/fakedll.c:233:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (memcmp( dos + 1, signature, strlen(signature) + 1 )) goto done; data/wine-5.0/dlls/setupapi/fakedll.c:244:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read( fd, (char *)file_buffer + header_size, data/wine-5.0/dlls/setupapi/fakedll.c:786:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lang.len = strlen( lang.ptr ); data/wine-5.0/dlls/setupapi/fakedll.c:793:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy( new_buffer + strlen(new_buffer), arch.ptr, len - (arch.ptr - manifest) ); data/wine-5.0/dlls/setupapi/fakedll.c:795:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). arch.len = strlen( current_arch ); data/wine-5.0/dlls/setupapi/setupcab.c:566:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fpnsize = strlen(CabinetFile); data/wine-5.0/dlls/setupapi/tests/devinst.c:57:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(file, data, strlen(data), &size, NULL); data/wine-5.0/dlls/setupapi/tests/devinst.c:58:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && size == strlen(data), "Failed to write %s, error %u.\n", name, GetLastError()); data/wine-5.0/dlls/setupapi/tests/devinst.c:357:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(id, "Root\\LEGACY_BOGUS\\", strlen("Root\\LEGACY_BOGUS\\")); data/wine-5.0/dlls/setupapi/tests/devinst.c:1221:79: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expectedsize = FIELD_OFFSET(SP_DEVICE_INTERFACE_DETAIL_DATA_W, DevicePath[strlen(path) + 1]); data/wine-5.0/dlls/setupapi/tests/devinst.c:2508:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(class_key, "Installer32", 0, REG_SZ, (BYTE *)regdata, strlen(regdata)+1); data/wine-5.0/dlls/setupapi/tests/devinst.c:2556:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(class_key, "Installer32", 0, REG_SZ, (BYTE *)regdata, strlen(regdata)+1); data/wine-5.0/dlls/setupapi/tests/devinst.c:2584:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(class_key, "Installer32", 0, REG_SZ, (BYTE *)regdata, strlen(regdata)+1); data/wine-5.0/dlls/setupapi/tests/devinst.c:2610:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueExA(class_key, "Installer32", 0, REG_SZ, (BYTE *)regdata, strlen(regdata)+1); data/wine-5.0/dlls/setupapi/tests/devinst.c:2648:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). regdata[strlen(regdata) + 1] = 0; data/wine-5.0/dlls/setupapi/tests/devinst.c:2650:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). REG_MULTI_SZ, (BYTE *)regdata, strlen(regdata) + 2); data/wine-5.0/dlls/setupapi/tests/devinst.c:2702:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). regdata[strlen(regdata) + 1] = 0; data/wine-5.0/dlls/setupapi/tests/devinst.c:2704:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). REG_MULTI_SZ, (BYTE *)regdata, strlen(regdata) + 2); data/wine-5.0/dlls/setupapi/tests/devinst.c:2727:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). regdata[strlen(regdata) + 1] = 0; data/wine-5.0/dlls/setupapi/tests/devinst.c:2729:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). REG_MULTI_SZ, (BYTE *)regdata, strlen(regdata) + 2); data/wine-5.0/dlls/setupapi/tests/dialog.c:45:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(length == strlen(path) + 1, "Expect length %u, got %u\n", lstrlenA(path) + 1, length); data/wine-5.0/dlls/setupapi/tests/dialog.c:51:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(length == strlen(path) + 1, "Expect length %u, got %u\n", lstrlenA(path) + 1, length); data/wine-5.0/dlls/setupapi/tests/dialog.c:58:106: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SetupPromptForDiskA(0, "Test", "Testdisk", path, "kernel32.dll", NULL, IDF_CHECKFIRST, buffer, strlen(path), &length); data/wine-5.0/dlls/setupapi/tests/dialog.c:62:106: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SetupPromptForDiskA(0, "Test", "Testdisk", path, "kernel32.dll", NULL, IDF_CHECKFIRST, buffer, strlen(path) + 1, &length); data/wine-5.0/dlls/setupapi/tests/dialog.c:64:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(length == strlen(path) + 1, "Expect length %u, got %u\n", lstrlenA(path) + 1, length); data/wine-5.0/dlls/setupapi/tests/install.c:64:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(handle, data, strlen(data), &res, NULL); data/wine-5.0/dlls/setupapi/tests/install.c:195:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tempname && (strlen(tempname) < (unsigned)cbTempName)) data/wine-5.0/dlls/setupapi/tests/install.c:764:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:764:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:879:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:879:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:902:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:902:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 3 + strlen(inffile) + strlen(inffile2); data/wine-5.0/dlls/setupapi/tests/install.c:913:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 2 + strlen(invalid_inf); data/wine-5.0/dlls/setupapi/tests/install.c:923:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 4 + strlen(inffile) + strlen(inffile2) + strlen(invalid_inf); data/wine-5.0/dlls/setupapi/tests/install.c:923:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 4 + strlen(inffile) + strlen(inffile2) + strlen(invalid_inf); data/wine-5.0/dlls/setupapi/tests/install.c:923:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expected = 4 + strlen(inffile) + strlen(inffile2) + strlen(invalid_inf); data/wine-5.0/dlls/setupapi/tests/install.c:2053:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CURR_DIR); data/wine-5.0/dlls/setupapi/tests/misc.c:58:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(file, data, strlen(data), &size, NULL); data/wine-5.0/dlls/setupapi/tests/misc.c:59:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret && size == strlen(data), "Failed to write %s, error %u.\n", name, GetLastError()); data/wine-5.0/dlls/setupapi/tests/misc.c:208:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/setupapi/tests/misc.c:268:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(orig_dest) + 1, "Got %d.\n", size); data/wine-5.0/dlls/setupapi/tests/misc.c:275:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(dest) + 1, "Got %d.\n", size); data/wine-5.0/dlls/setupapi/tests/misc.c:364:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/setupapi/tests/misc.c:373:41: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(handle, buffer, size, &read, NULL); data/wine-5.0/dlls/setupapi/tests/parser.c:80:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile( handle, data, strlen(data), &res, NULL )) trace( "write error\n" ); data/wine-5.0/dlls/setupapi/tests/parser.c:434:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( key_names[i].data, "%foo%", strlen( "%foo%" ) )) data/wine-5.0/dlls/setupapi/tests/parser.c:482:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( buffer, "," ); data/wine-5.0/dlls/setupapi/tests/parser.c:652:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( buffer, "=" ); data/wine-5.0/dlls/setupx.dll16/infparse.c:120:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *len = strlen( subst ); data/wine-5.0/dlls/setupx.dll16/infparse.c:128:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *len = strlen( subst ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:495:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pCurrLDD->pszPath = HeapAlloc( heap, 0, strlen(pldd->pszPath)+1 ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:500:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pCurrLDD->pszVolLabel = HeapAlloc( heap, 0, strlen(pldd->pszVolLabel)+1 ); data/wine-5.0/dlls/setupx.dll16/setupx_main.c:505:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pCurrLDD->pszDiskName = HeapAlloc( heap, 0, strlen(pldd->pszDiskName)+1 ); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:149:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str = HeapAlloc(heap, 0, strlen(lpszName)+1); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:184:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(vhstrlist[vhstr]->pStr)+1; data/wine-5.0/dlls/setupx.dll16/virtcopy.c:406:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer, "\\"); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:651:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buf, "\\"); data/wine-5.0/dlls/setupx.dll16/virtcopy.c:655:81: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (RegSetValueExA(hKeyConflict, "BackupDirectory", 0, REG_SZ, (LPBYTE)buf, strlen(buf)+1)) data/wine-5.0/dlls/shcore/main.c:91:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/shcore/main.c:96:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Read(stream, dest, size, &read); data/wine-5.0/dlls/shcore/main.c:97:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (SUCCEEDED(hr) && read != size) data/wine-5.0/dlls/shcore/main.c:862:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(stream->u.file.handle, buff, size, &read, NULL)) data/wine-5.0/dlls/shcore/main.c:869:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *read_len = read; data/wine-5.0/dlls/shcore/main.c:1705:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(dest); data/wine-5.0/dlls/shcore/main.c:2134:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(buff) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:390:81: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey, "Test1", 0, REG_EXPAND_SZ, (BYTE *)test_path1, strlen(test_path1)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shcore/tests/shcore.c:391:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey, "Test2", 0, REG_SZ, (BYTE *)test_path1, strlen(test_path1)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shcore/tests/shcore.c:392:81: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey, "Test3", 0, REG_EXPAND_SZ, (BYTE *)test_path2, strlen(test_path2)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shcore/tests/shcore.c:398:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(test_path1) - strlen("%LONGSYSTEMVAR%") + strlen(test_envvar1) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:398:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(test_path1) - strlen("%LONGSYSTEMVAR%") + strlen(test_envvar1) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:398:70: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(test_path1) - strlen("%LONGSYSTEMVAR%") + strlen(test_envvar1) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:399:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(test_path2) - strlen("%FOO%") + strlen(test_envvar2) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:399:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(test_path2) - strlen("%FOO%") + strlen(test_envvar2) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:399:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(test_path2) - strlen("%FOO%") + strlen(test_envvar2) + 1; data/wine-5.0/dlls/shcore/tests/shcore.c:509:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_len1 = max(strlen(test_exp_path1)+1, strlen(test_path1)+1); data/wine-5.0/dlls/shcore/tests/shcore.c:509:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_len1 = max(strlen(test_exp_path1)+1, strlen(test_path1)+1); data/wine-5.0/dlls/shcore/tests/shcore.c:510:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_len2 = max(strlen(test_exp_path2)+1, strlen(test_path2)+1); data/wine-5.0/dlls/shcore/tests/shcore.c:510:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer_len2 = max(strlen(test_exp_path2)+1, strlen(test_path2)+1); data/wine-5.0/dlls/shcore/tests/shcore.c:571:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(test_envvar2) - 2; data/wine-5.0/dlls/shdocvw/tests/shortcut.c:62:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define REG_VALUE_SIZE(x) ((x->dwType==REG_SZ)?strlen(x->szValue)+1:sizeof(DWORD)) data/wine-5.0/dlls/shell.dll16/shell.c:178:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(lpDrop); data/wine-5.0/dlls/shell.dll16/shell.c:354:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(entry); data/wine-5.0/dlls/shell.dll16/shell.c:355:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( ; *lpEnv ; lpEnv+=strlen(lpEnv)+1 ) data/wine-5.0/dlls/shell.dll16/shell.c:430:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(lpKey); data/wine-5.0/dlls/shell32/autocomplete.c:219:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/shell32/autocomplete.c:229:85: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (FAILED(IEnumString_Next(ac->enumstr, array_size - cur, &strs[cur], &read))) data/wine-5.0/dlls/shell32/autocomplete.c:231:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while (read != 0 && (cur += read) < array_size); data/wine-5.0/dlls/shell32/autocomplete.c:231:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while (read != 0 && (cur += read) < array_size); data/wine-5.0/dlls/shell32/autocomplete.c:234:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } while (read != 0); data/wine-5.0/dlls/shell32/clipboard.c:174:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(szTemp) + 1; data/wine-5.0/dlls/shell32/cpanelfolder.c:243:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(name); data/wine-5.0/dlls/shell32/cpanelfolder.c:247:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(displayName); data/wine-5.0/dlls/shell32/cpanelfolder.c:251:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(comment); data/wine-5.0/dlls/shell32/debughlp.c:163:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return pdata->u.file.szNames + strlen (pdata->u.file.szNames) + 1; data/wine-5.0/dlls/shell32/debughlp.c:166:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return pdata->u.network.szNames + strlen (pdata->u.network.szNames) + 1; data/wine-5.0/dlls/shell32/dialogs.c:403:74: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA (hkey, szIndex, 0, REG_SZ, (LPBYTE)pszLatest, strlen (pszLatest) + 1) ; data/wine-5.0/dlls/shell32/dialogs.c:425:70: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA (hkey, szIndex, 0, REG_SZ, (LPBYTE)pszLatest, strlen (pszLatest) + 1) ; data/wine-5.0/dlls/shell32/dialogs.c:428:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA (hkey, "MRUList", 0, REG_SZ, (LPBYTE)pszList, strlen (pszList) + 1) ; data/wine-5.0/dlls/shell32/pidl.c:1948:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwReturn = strlen (szTemp); data/wine-5.0/dlls/shell32/pidl.c:1957:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwReturn = strlen(szSrc); data/wine-5.0/dlls/shell32/pidl.c:1967:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwReturn = strlen (szTemp); data/wine-5.0/dlls/shell32/pidl.c:1977:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwReturn = strlen (szTemp); data/wine-5.0/dlls/shell32/pidl.c:2195:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return pdata->u.file.szNames + strlen (pdata->u.file.szNames) + 1; data/wine-5.0/dlls/shell32/pidl.c:2198:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return pdata->u.network.szNames + strlen (pdata->u.network.szNames) + 1; data/wine-5.0/dlls/shell32/shellole.c:613:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(lpDrop); data/wine-5.0/dlls/shell32/shellpath.c:636:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(lpszPathA); data/wine-5.0/dlls/shell32/shellpath.c:776:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(lpszPath); data/wine-5.0/dlls/shell32/shellpath.c:4406:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int cLen = strlen(szBasePath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:406:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cDriveSymlinkLen = strlen(pszUnixPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:410:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (szPath[strlen(szPath)-1] != '/') strcat(szPath, "/"); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:410:42: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (szPath[strlen(szPath)-1] != '/') strcat(szPath, "/"); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:439:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(szPath, "/"); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:457:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pPathTail = pElement + strlen(pElement); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:556:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cComponentULen = strlen(pszComponentU); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:641:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int cBasePathLen = strlen(pUnixFolder->m_pszPath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:666:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cPathLen = strlen(szCompletePath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:769:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD dwPathLen = strlen(szBasePath)+1; data/wine-5.0/dlls/shell32/shfldr_unixfs.c:789:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pNextDir += strlen(szBasePath); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1383:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int cLenDest = strlen(szDest); data/wine-5.0/dlls/shell32/shfldr_unixfs.c:1503:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!UNIXFS_filename_from_shitemid(pidl, szPath + strlen(szPath))) data/wine-5.0/dlls/shell32/shfldr_unixfs.c:2083:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pszRelativeDst = szAbsoluteDst + strlen(szAbsoluteDst); data/wine-5.0/dlls/shell32/shlview_cmenu.c:1178:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pDropFiles + offset); data/wine-5.0/dlls/shell32/tests/brsfolder.c:48:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path_search_string, "*"); data/wine-5.0/dlls/shell32/tests/brsfolder.c:185:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!GetCurrentDirectoryA(MAX_PATH-strlen(title)-3, test_folder_path)) data/wine-5.0/dlls/shell32/tests/brsfolder.c:189:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(test_folder_path, "\\"); data/wine-5.0/dlls/shell32/tests/brsfolder.c:191:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(test_folder_path, "\\"); data/wine-5.0/dlls/shell32/tests/brsfolder.c:245:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). test_folder_path[strlen(test_folder_path)+1] = '\0'; data/wine-5.0/dlls/shell32/tests/progman_dde.c:123:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). command = DdeCreateDataHandle(instance, (BYTE *)command_str, strlen(command_str)+1, 0, 0, 0, 0); data/wine-5.0/dlls/shell32/tests/progman_dde.c:161:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(title, "\\"); data/wine-5.0/dlls/shell32/tests/progman_dde.c:186:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/shell32/tests/progman_dde.c:387:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(list, group, strlen(group)) && list[strlen(group)] == '\r') data/wine-5.0/dlls/shell32/tests/progman_dde.c:387:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(list, group, strlen(group)) && list[strlen(group)] == '\r') data/wine-5.0/dlls/shell32/tests/recyclebin.c:59:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf[strlen(buf) + 1] = '\0'; data/wine-5.0/dlls/shell32/tests/recyclebin.c:67:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file,buf,strlen(buf),&written,NULL); data/wine-5.0/dlls/shell32/tests/shelllink.c:1303:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CharLowerBuffA(pathA, strlen(pathA)); data/wine-5.0/dlls/shell32/tests/shelllink.c:1315:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CharLowerBuffA(pathA, strlen(pathA)); data/wine-5.0/dlls/shell32/tests/shellole.c:328:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). PROPVARIANT read[10]; data/wine-5.0/dlls/shell32/tests/shellole.c:422:5: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read[0].vt = VT_BSTR; data/wine-5.0/dlls/shell32/tests/shellole.c:423:5: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read[0].u.bstrVal = (void*)0xdeadbeef; data/wine-5.0/dlls/shell32/tests/shellole.c:427:79: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = pSHPropStgReadMultiple(property_storage, 0, 10, (void*)0xdeadbeef, read); data/wine-5.0/dlls/shell32/tests/shellole.c:435:82: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = pSHPropStgReadMultiple(property_storage, 1251, 10, (void*)0xdeadbeef, read); data/wine-5.0/dlls/shell32/tests/shellole.c:777:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(num == strlen(DROPTEST_FILENAME), "got %u\n", num); data/wine-5.0/dlls/shell32/tests/shellole.c:854:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hDrop = GlobalAlloc(GHND, sizeof(DROPFILES) + (strlen(DROPTEST_FILENAME) + 2) * sizeof(WCHAR)); data/wine-5.0/dlls/shell32/tests/shellole.c:861:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPWSTR)(pDrop + 1), strlen(DROPTEST_FILENAME) + 1); data/wine-5.0/dlls/shell32/tests/shellpath.c:1596:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szTemp = CharPrevA(lpszPath, lpszPath + strlen(lpszPath)); data/wine-5.0/dlls/shell32/tests/shellpath.c:1715:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = path + strlen(path); data/wine-5.0/dlls/shell32/tests/shellpath.c:1769:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(originalPath); data/wine-5.0/dlls/shell32/tests/shellpath.c:1794:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(originalPath) + 1); data/wine-5.0/dlls/shell32/tests/shellpath.c:1956:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hay += strlen(hay) + 1; data/wine-5.0/dlls/shell32/tests/shlexec.c:79:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) + 1; data/wine-5.0/dlls/shell32/tests/shlexec.c:106:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) / 2; data/wine-5.0/dlls/shell32/tests/shlexec.c:129:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(h, buffer, strlen(buffer), &w, NULL); data/wine-5.0/dlls/shell32/tests/shlexec.c:139:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(!(strlen(buf) & 1)); data/wine-5.0/dlls/shell32/tests/shlexec.c:270:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). shared_block += strlen(shared_block) + 1; data/wine-5.0/dlls/shell32/tests/shlexec.c:360:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer, " "); data/wine-5.0/dlls/shell32/tests/shlexec.c:362:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). vsprintf(buffer+strlen(buffer), msg, valist); data/wine-5.0/dlls/shell32/tests/shlexec.c:431:9: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. int equal, shortequal; data/wine-5.0/dlls/shell32/tests/shlexec.c:440:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/shell32/tests/shlexec.c:446:14: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/shell32/tests/shlexec.c:453:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. okShell_(file,line)(equal || broken(shortequal) /* XP SP1 */, data/wine-5.0/dlls/shell32/tests/shlexec.c:487:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (str[strlen(str)-1] == '"') data/wine-5.0/dlls/shell32/tests/shlexec.c:492:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(str, "\""); data/wine-5.0/dlls/shell32/tests/shlexec.c:513:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(shell_call, ")"); data/wine-5.0/dlls/shell32/tests/shlexec.c:598:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(shell_call, ")"); data/wine-5.0/dlls/shell32/tests/shlexec.c:731:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rc=RegSetValueExA(hkey, NULL, 0, REG_SZ, (LPBYTE) class, strlen(class)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:855:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rc=RegSetValueExA(hkey_cmd, NULL, 0, REG_SZ, (LPBYTE)cmdtail, strlen(cmdtail)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:859:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = heap_alloc(strlen(argv0) + 10 + strlen(child_file) + 2 + strlen(cmdtail) + 1); data/wine-5.0/dlls/shell32/tests/shlexec.c:859:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = heap_alloc(strlen(argv0) + 10 + strlen(child_file) + 2 + strlen(cmdtail) + 1); data/wine-5.0/dlls/shell32/tests/shlexec.c:859:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmd = heap_alloc(strlen(argv0) + 10 + strlen(child_file) + 2 + strlen(cmdtail) + 1); data/wine-5.0/dlls/shell32/tests/shlexec.c:861:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rc=RegSetValueExA(hkey_cmd, NULL, 0, REG_SZ, (LPBYTE)cmd, strlen(cmd)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:874:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(ddeexec)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:884:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(application)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:894:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(topic)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:904:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(ifexec)+1); data/wine-5.0/dlls/shell32/tests/shlexec.c:984:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lp += strlen(tmplongpath + lp); data/wine-5.0/dlls/shell32/tests/shlexec.c:987:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmplen = strlen(shortpath) - 1; data/wine-5.0/dlls/shell32/tests/shlexec.c:993:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmplen = strlen(tmplongpath) + 1; data/wine-5.0/dlls/shell32/tests/shlexec.c:1599:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (cmd) cmd += strlen(test->verb); data/wine-5.0/dlls/shell32/tests/shlexec.c:1823:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = fileurl + strlen(test->urlprefix); data/wine-5.0/dlls/shell32/tests/shlexec.c:2086:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/shell32/tests/shlexec.c:2089:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(command) == strlen(argv0)+1 && strncmp(command, argv0, strlen(argv0)) == 0); data/wine-5.0/dlls/shell32/tests/shlexec.c:2089:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(command) == strlen(argv0)+1 && strncmp(command, argv0, strlen(argv0)) == 0); data/wine-5.0/dlls/shell32/tests/shlexec.c:2089:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(command) == strlen(argv0)+1 && strncmp(command, argv0, strlen(argv0)) == 0); data/wine-5.0/dlls/shell32/tests/shlexec.c:2091:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "FindExecutable(%s) returned command='%s' instead of '%s'\n", data/wine-5.0/dlls/shell32/tests/shlexec.c:2188:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(params,"\""); data/wine-5.0/dlls/shell32/tests/shlexec.c:2424:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(shared_block + strlen(shared_block) + 1, test->topic ? test->topic : SZDDESYS_TOPIC); data/wine-5.0/dlls/shell32/tests/shlfileop.c:67:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/shell32/tests/shlfileop.c:68:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/shell32/tests/shlfileop.c:106:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/shell32/tests/shlfileop.c:111:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(file, buf, MAX_PATH - 1, &read, NULL); data/wine-5.0/dlls/shell32/tests/shlfileop.c:112:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buf[read] = 0; data/wine-5.0/dlls/shell32/tests/shlfileop.c:535:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf += strlen(buf); data/wine-5.0/dlls/shell32/tests/shlfileop.c:539:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf += strlen(buf) + 1; data/wine-5.0/dlls/shell32/tests/shlfileop.c:540:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). files += strlen(files) + 1; data/wine-5.0/dlls/shell32/tests/shlfileop.c:554:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf[strlen(buf) + 1] = '\0'; data/wine-5.0/dlls/shell32/tests/shlfileop.c:584:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf[strlen(buf) + 1] = '\0'; data/wine-5.0/dlls/shell32/tests/shlfolder.c:279:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/shell32/tests/shlfolder.c:280:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/shell32/tests/shlfolder.c:1633:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(pidlFile->mkid.abID[12 + strlen(szFile) + 1] != '\0', data/wine-5.0/dlls/shell32/tests/shlfolder.c:1637:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(pidlFile->mkid.abID[12 + strlen(szFile) + 1] == '\0', data/wine-5.0/dlls/shell32/tests/shlfolder.c:1823:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(appdata, testpath, strlen(appdata)), data/wine-5.0/dlls/shell32/tests/shlfolder.c:1825:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!lstrcmpA(&testpath[1 + strlen(appdata)], winetemp), data/wine-5.0/dlls/shell32/tests/shlfolder.c:1871:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!strncmp(appdata, testpath, strlen(appdata)), data/wine-5.0/dlls/shell32/tests/shlfolder.c:1873:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!lstrcmpA(&testpath[1 + strlen(appdata)], winetemp), data/wine-5.0/dlls/shell32/tests/shlfolder.c:1917:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = WriteFile(file, desktopini_contents1, strlen(desktopini_contents1), &res, NULL) && data/wine-5.0/dlls/shell32/tests/shlfolder.c:1918:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, resourcefile, strlen(resourcefile), &res, NULL) && data/wine-5.0/dlls/shell32/tests/shlfolder.c:1919:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, desktopini_contents2, strlen(desktopini_contents2), &res, NULL); data/wine-5.0/dlls/shell32/trash.c:469:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *path = SHAlloc(strlen(info_dir)+strlen(file_name)+strlen(trashinfo_suffix)+1); data/wine-5.0/dlls/shell32/trash.c:469:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *path = SHAlloc(strlen(info_dir)+strlen(file_name)+strlen(trashinfo_suffix)+1); data/wine-5.0/dlls/shell32/trash.c:469:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *path = SHAlloc(strlen(info_dir)+strlen(file_name)+strlen(trashinfo_suffix)+1); data/wine-5.0/dlls/shell32/trash.c:478:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write(writer, trashinfo_header, strlen(trashinfo_header)); data/wine-5.0/dlls/shell32/trash.c:521:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename_buffer = SHAlloc(strlen(base_name)+9+1); data/wine-5.0/dlls/shell32/trash.c:573:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). trash_path = SHAlloc(strlen(pBucket->files_dir)+strlen(trash_file_name)+1); data/wine-5.0/dlls/shell32/trash.c:573:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). trash_path = SHAlloc(strlen(pBucket->files_dir)+strlen(trash_file_name)+1); data/wine-5.0/dlls/shell32/trash.c:795:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int suffix_length = strlen(trashinfo_suffix); data/wine-5.0/dlls/shell32/trash.c:798:78: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char *filename = (const char*)(id->abID+1+sizeof(WIN32_FIND_DATAW)+strlen(bucket_name)+1); data/wine-5.0/dlls/shell32/trash.c:804:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strcmp(filename+strlen(filename)-suffix_length,trashinfo_suffix)) data/wine-5.0/dlls/shell32/trash.c:811:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:811:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:811:89: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:813:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path[strlen(home_trash->files_dir)+strlen(filename)-suffix_length] = '\0'; data/wine-5.0/dlls/shell32/trash.c:813:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path[strlen(home_trash->files_dir)+strlen(filename)-suffix_length] = '\0'; data/wine-5.0/dlls/shell32/trash.c:829:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int suffix_length = strlen(trashinfo_suffix); data/wine-5.0/dlls/shell32/trash.c:833:78: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char *filename = (const char*)(id->abID+1+sizeof(WIN32_FIND_DATAW)+strlen(bucket_name)+1); data/wine-5.0/dlls/shell32/trash.c:837:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strcmp(filename+strlen(filename)-suffix_length,trashinfo_suffix)) data/wine-5.0/dlls/shell32/trash.c:842:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:842:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:842:89: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path = SHAlloc(max(strlen(home_trash->files_dir),strlen(home_trash->info_dir))+strlen(filename)+1); data/wine-5.0/dlls/shell32/trash.c:847:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path[strlen(home_trash->files_dir)+strlen(filename)-suffix_length] = '\0'; data/wine-5.0/dlls/shell32/trash.c:847:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_path[strlen(home_trash->files_dir)+strlen(filename)-suffix_length] = '\0'; data/wine-5.0/dlls/shell32/xdg.c:118:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SHAlloc(strlen(env)+1); data/wine-5.0/dlls/shell32/xdg.c:130:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SHAlloc(strlen(home)+strlen(paths[path_id].default_value)-5+1); data/wine-5.0/dlls/shell32/xdg.c:130:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SHAlloc(strlen(home)+strlen(paths[path_id].default_value)-5+1); data/wine-5.0/dlls/shell32/xdg.c:134:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ret); data/wine-5.0/dlls/shell32/xdg.c:141:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = SHAlloc(strlen(paths[path_id].default_value)+1); data/wine-5.0/dlls/shell32/xdg.c:200:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). root_len = strlen(root_path); data/wine-5.0/dlls/shell32/xdg.c:202:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret_buffer = SHAlloc(root_len+1+strlen(subpath)+1); data/wine-5.0/dlls/shell32/xdg.c:228:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *buffer = SHAlloc(strlen(path)+1); data/wine-5.0/dlls/shell32/xdg.c:588:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). end = content + strlen(content) - 1; data/wine-5.0/dlls/shell32/xdg.c:615:15: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. char *equal, *eq_begin, *eq_end; data/wine-5.0/dlls/shell32/xdg.c:620:30: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (equal == NULL || equal > end) data/wine-5.0/dlls/shell32/xdg.c:663:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fd, parsed->contents, stats.st_size) == -1) goto failed; data/wine-5.0/dlls/shell32/xdg.c:757:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *config_file = heap_alloc(strlen(home_dir) + strlen("/.config/user-dirs.dirs") + 1); data/wine-5.0/dlls/shell32/xdg.c:757:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *config_file = heap_alloc(strlen(home_dir) + strlen("/.config/user-dirs.dirs") + 1); data/wine-5.0/dlls/shell32/xdg.c:766:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *config_file = heap_alloc(strlen(config_home) + strlen("/user-dirs.dirs") + 1); data/wine-5.0/dlls/shell32/xdg.c:766:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *config_file = heap_alloc(strlen(config_home) + strlen("/user-dirs.dirs") + 1); data/wine-5.0/dlls/shell32/xdg.c:799:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(p, xdg_dirs[i], strlen(xdg_dirs[i]))) data/wine-5.0/dlls/shell32/xdg.c:801:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(xdg_dirs[i]); data/wine-5.0/dlls/shell32/xdg.c:850:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out = heap_alloc(strlen(home_dir) + strlen(p) + 2); data/wine-5.0/dlls/shell32/xdg.c:850:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out = heap_alloc(strlen(home_dir) + strlen(p) + 2); data/wine-5.0/dlls/shell32/xdg.c:855:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(out, "/"); data/wine-5.0/dlls/shell32/xdg.c:859:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). out = heap_alloc(strlen(p) + 1); data/wine-5.0/dlls/shell32/xdg.c:865:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). d = out + strlen(out); data/wine-5.0/dlls/shell32/xdg.c:928:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/wine-5.0/dlls/shlwapi/ordinal.c:469:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). iLen = strlen(xguid) + 1; data/wine-5.0/dlls/shlwapi/path.c:1381:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwLen = strlen(lpszSuffix); data/wine-5.0/dlls/shlwapi/path.c:1385:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t dwCompareLen = strlen(*lppszArray); data/wine-5.0/dlls/shlwapi/path.c:1459:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(skip, ext, strlen(ext) + 1); data/wine-5.0/dlls/shlwapi/path.c:1483:27: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(skip, ext, (wcslen(ext) + 1) * sizeof(WCHAR)); data/wine-5.0/dlls/shlwapi/reg.c:652:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). REG_SZ, lpszValue, strlen(lpszValue)); data/wine-5.0/dlls/shlwapi/reg.c:722:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t dwStrLen = strlen(lpszType); data/wine-5.0/dlls/shlwapi/reg.c:792:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(lpExt, lpExt + 1, strlen(lpExt + 1) + 1); data/wine-5.0/dlls/shlwapi/reg.c:851:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwLen = strlen(lpszExt) + 1; data/wine-5.0/dlls/shlwapi/string.c:514:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). StrCpyNA(lpszStr + strlen(lpszStr), lpszCat, cchMax); data/wine-5.0/dlls/shlwapi/string.c:984:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( lpszIter, lpszTmp, strlen(lpszTmp) + 1 ); data/wine-5.0/dlls/shlwapi/tests/istream.c:696:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULARGE_INTEGER count, read, written; data/wine-5.0/dlls/shlwapi/tests/istream.c:724:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = IStream_CopyTo(src, dst, count, &read, &written); data/wine-5.0/dlls/shlwapi/tests/istream.c:727:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read.QuadPart == 1, "read does not match size: %d != 1\n", U(read).LowPart); data/wine-5.0/dlls/shlwapi/tests/istream.c:727:69: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read.QuadPart == 1, "read does not match size: %d != 1\n", U(read).LowPart); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1808:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buff2, " "); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:1819:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buff2, " "); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2690:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2697:54: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ReadFile(file, buf, sizeof(buf) * sizeof(CHAR), &read, NULL); data/wine-5.0/dlls/shlwapi/tests/ordinal.c:2698:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buf[read] = '\0'; data/wine-5.0/dlls/shlwapi/tests/path.c:208:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = (strlen(p) + 1); data/wine-5.0/dlls/shlwapi/tests/path.c:294:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(ret_path), "ret len %d from url %s\n", len, TEST_PATHFROMURL[i].url); data/wine-5.0/dlls/shlwapi/tests/path.c:1505:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&sysdrvA[1], ":"); data/wine-5.0/dlls/shlwapi/tests/shreg.c:90:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey,"Test1",0,REG_EXPAND_SZ, (LPBYTE) sTestpath1, strlen(sTestpath1)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shlwapi/tests/shreg.c:91:75: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey,"Test2",0,REG_SZ, (LPBYTE) sTestpath1, strlen(sTestpath1)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shlwapi/tests/shreg.c:92:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(!RegSetValueExA(hKey,"Test3",0,REG_EXPAND_SZ, (LPBYTE) sTestpath2, strlen(sTestpath2)+1), "RegSetValueExA failed\n"); data/wine-5.0/dlls/shlwapi/tests/shreg.c:98:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(sTestpath1) - strlen("%LONGSYSTEMVAR%") + strlen(sEnvvar1) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:98:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(sTestpath1) - strlen("%LONGSYSTEMVAR%") + strlen(sEnvvar1) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:98:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen1 = strlen(sTestpath1) - strlen("%LONGSYSTEMVAR%") + strlen(sEnvvar1) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:99:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(sTestpath2) - strlen("%FOO%") + strlen(sEnvvar2) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:99:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(sTestpath2) - strlen("%FOO%") + strlen(sEnvvar2) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:99:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nExpectedLen2 = strlen(sTestpath2) - strlen("%FOO%") + strlen(sEnvvar2) + 1; data/wine-5.0/dlls/shlwapi/tests/shreg.c:212:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nUsedBuffer1 = max(strlen(sExpTestpath1)+1, strlen(sTestpath1)+1); data/wine-5.0/dlls/shlwapi/tests/shreg.c:212:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nUsedBuffer1 = max(strlen(sExpTestpath1)+1, strlen(sTestpath1)+1); data/wine-5.0/dlls/shlwapi/tests/shreg.c:213:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nUsedBuffer2 = max(strlen(sExpTestpath2)+1, strlen(sTestpath2)+1); data/wine-5.0/dlls/shlwapi/tests/shreg.c:213:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nUsedBuffer2 = max(strlen(sExpTestpath2)+1, strlen(sTestpath2)+1); data/wine-5.0/dlls/shlwapi/tests/shreg.c:244:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen(sTestpath2) + 1)), /* < IE4.x */ data/wine-5.0/dlls/shlwapi/tests/shreg.c:272:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen(sTestpath2) + 1)), /* < IE6 */ data/wine-5.0/dlls/shlwapi/tests/shreg.c:285:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwSize = strlen(sEnvvar2) - 2; data/wine-5.0/dlls/shlwapi/tests/shreg.c:300:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen("") + 1)), /* < IE 5.5 */ data/wine-5.0/dlls/shlwapi/tests/shreg.c:327:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen(sEnvvar2) + 1)) || /* IE4.01 SP1 (W98) and IE5 (W98SE) */ data/wine-5.0/dlls/shlwapi/tests/shreg.c:328:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen("") + 1)), /* IE4.01 (NT4) and IE5.x (W2K) */ data/wine-5.0/dlls/shlwapi/tests/shreg.c:341:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(dwSize == (strlen(sTestpath2) + 1)), /* IE4.01 SP1 (Win98) */ data/wine-5.0/dlls/shlwapi/tests/url.c:652:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwSize == strlen(szExpected)+1 || data/wine-5.0/dlls/shlwapi/tests/url.c:653:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (*szExpected == '?' && dwSize == strlen(szExpected)), data/wine-5.0/dlls/shlwapi/tests/url.c:1296:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(ret_url), "ret len %d from path %s\n", len, TEST_URLFROMPATH[i].path); data/wine-5.0/dlls/shlwapi/tests/url.c:1509:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(parseda.cchSuffix == strlen(test->url+test->protocol_len+1), data/wine-5.0/dlls/shlwapi/tests/url.c:1532:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(parsedw.cchSuffix == strlen(test->url+test->protocol_len+1), data/wine-5.0/dlls/snmpapi/main.c:510:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(one); data/wine-5.0/dlls/snmpapi/main.c:522:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(oid, "."); data/wine-5.0/dlls/twain_32/dsm_ctrl.c:94:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((devices[nrdevices].modname = HeapAlloc(GetProcessHeap(), 0, strlen(dsname) + 1))) data/wine-5.0/dlls/typelib.dll16/typelib.c:103:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = HeapAlloc( GetProcessHeap(), 0, strlen(pathname) + 1 ); data/wine-5.0/dlls/ucrtbase/tests/misc.c:474:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(cmdline); data/wine-5.0/dlls/ucrtbase/tests/misc.c:482:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(len = strlen(path); len>0; len--) data/wine-5.0/dlls/ucrtbase/tests/misc.c:1153:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(tests[i].ret), "%d) ret = %d\n", i, ret); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1171:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(buf), "%d) ret = %d\n", i, ret); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1386:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/ucrtbase/tests/misc.c:1398:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "\\"); data/wine-5.0/dlls/ucrtbase/tests/printf.c:164:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = strlen(fmt) > bufsiz ? -1 : strlen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:164:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = strlen(fmt) > bufsiz ? -1 : strlen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:177:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = strlen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:192:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = strlen(fmt) >= bufsiz ? -2 : strlen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:192:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = strlen(fmt) >= bufsiz ? -2 : strlen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:239:30: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = wcslen(fmt) > bufsiz ? -1 : wcslen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:239:58: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = wcslen(fmt) > bufsiz ? -1 : wcslen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:254:30: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = wcslen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:271:30: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = wcslen(fmt) >= bufsiz ? -2 : wcslen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:271:59: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int expect = wcslen(fmt) >= bufsiz ? -2 : wcslen(fmt); data/wine-5.0/dlls/ucrtbase/tests/printf.c:491:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). exp = strlen(out7); data/wine-5.0/dlls/urlmon/binding.c:110:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/urlmon/binding.c:113:81: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). do hres = IInternetProtocolEx_Read(stgmed_buf->protocol, buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/binding.c:493:96: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = This->buf->hres = IInternetProtocolEx_Read(This->buf->protocol, (PBYTE)pv, cb, &read); data/wine-5.0/dlls/urlmon/binding.c:495:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = ReadFile(This->buf->file, pv, cb, &read, NULL) ? S_OK : INET_E_DOWNLOAD_FAILURE; data/wine-5.0/dlls/urlmon/binding.c:499:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/urlmon/binding.c:506:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read ? S_OK : S_FALSE; data/wine-5.0/dlls/urlmon/bindprot.c:758:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(pv, This->buf, read); data/wine-5.0/dlls/urlmon/bindprot.c:767:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). This->buf_size -= read; data/wine-5.0/dlls/urlmon/bindprot.c:770:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read < cb) { data/wine-5.0/dlls/urlmon/bindprot.c:786:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(protocol, (BYTE*)pv+read, cb-read, &cread); data/wine-5.0/dlls/urlmon/bindprot.c:786:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(protocol, (BYTE*)pv+read, cb-read, &cread); data/wine-5.0/dlls/urlmon/bindprot.c:795:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/urlmon/bindprot.c:947:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sizeof(buf)-This->buf_size, &read); data/wine-5.0/dlls/urlmon/bindprot.c:966:51: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(This->buf+This->buf_size, buf, read); data/wine-5.0/dlls/urlmon/bindprot.c:967:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). This->buf_size += read; data/wine-5.0/dlls/urlmon/file.c:214:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(This->file, pv, cb, &read, NULL)) data/wine-5.0/dlls/urlmon/file.c:218:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/urlmon/file.c:220:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return cb == read ? S_OK : S_FALSE; data/wine-5.0/dlls/urlmon/protocol.c:439:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(read < size && protocol->available_bytes) { data/wine-5.0/dlls/urlmon/protocol.c:442:65: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = InternetReadFile(protocol->request, ((BYTE *)buf)+read, data/wine-5.0/dlls/urlmon/protocol.c:443:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). protocol->available_bytes > size-read ? size-read : protocol->available_bytes, &len); data/wine-5.0/dlls/urlmon/protocol.c:443:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). protocol->available_bytes > size-read ? size-read : protocol->available_bytes, &len); data/wine-5.0/dlls/urlmon/protocol.c:488:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *read_ret = read; data/wine-5.0/dlls/urlmon/protocol.c:495:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read ? S_OK : S_FALSE; data/wine-5.0/dlls/urlmon/tests/misc.c:1519:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(expected) <= strlen(str2) && data/wine-5.0/dlls/urlmon/tests/misc.c:1519:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(expected) <= strlen(str2) && data/wine-5.0/dlls/urlmon/tests/misc.c:1520:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). !memcmp(expected, str2, strlen(expected)*sizeof(CHAR)), data/wine-5.0/dlls/urlmon/tests/misc.c:1544:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sizeof(expected) <= strlen(str2) && !memcmp(expected, str2, sizeof(expected)-1), data/wine-5.0/dlls/urlmon/tests/misc.c:1553:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sizeof(expected) <= strlen(str2) && !memcmp(expected, str2, sizeof(expected)-1), data/wine-5.0/dlls/urlmon/tests/protocol.c:990:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/wine-5.0/dlls/urlmon/tests/protocol.c:1034:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/urlmon/tests/protocol.c:1066:128: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(binding_test ? binding_protocol : async_protocol, expect_pv = buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:1069:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read, "read == 0\n"); data/wine-5.0/dlls/urlmon/tests/protocol.c:1097:124: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(binding_test ? binding_protocol : async_protocol, expect_pv = buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:1101:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:1101:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:1154:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/urlmon/tests/protocol.c:1167:94: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(binding_protocol, expect_pv=buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:1293:77: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(filtered_protocol, buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:2465:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(filtered_protocol, buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:2474:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcbRead = read; data/wine-5.0/dlls/urlmon/tests/protocol.c:2477:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memset(pv, 'x', read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3815:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/urlmon/tests/protocol.c:3934:76: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(protocol, expect_pv = buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3936:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 100, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3941:76: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(protocol, expect_pv = buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3943:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3943:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3977:76: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IInternetProtocol_Read(protocol, expect_pv = buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3980:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 100, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/protocol.c:3986:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read == 0, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/stream.c:207:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/urlmon/tests/stream.c:233:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). do hres = IStream_Read(U(*pstgmed).pstm, buf, 512, &read); data/wine-5.0/dlls/urlmon/tests/uri.c:5139:17: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/urlmon/tests/uri.c:8739:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/urlmon/tests/uri.c:8752:38: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hres = IUri_IsEqual(uriA, NULL, &equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8754:9: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(!equal, "Error: Expected equal to be FALSE, but was %d instead.\n", equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8754:76: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(!equal, "Error: Expected equal to be FALSE, but was %d instead.\n", equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8760:38: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hres = IUri_IsEqual(uriA, uriA, &equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8762:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Error: Expected equal URIs.\n"); data/wine-5.0/dlls/urlmon/tests/uri.c:8765:38: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hres = IUri_IsEqual(uriA, uriB, &equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8767:8: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal, "Error: Expected equal URIs.\n"); data/wine-5.0/dlls/urlmon/tests/uri.c:8790:42: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hres = IUri_IsEqual(uriA, uriB, &equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8793:30: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == test.equal, "Error: Expected the comparison to be %d on equality_tests[%d].\n", test.equal, i); data/wine-5.0/dlls/urlmon/tests/uri.c:8793:110: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == test.equal, "Error: Expected the comparison to be %d on equality_tests[%d].\n", test.equal, i); data/wine-5.0/dlls/urlmon/tests/uri.c:8799:60: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. hres = IUri_IsEqual(uriA, &custom_uri.IUri_iface, &equal); data/wine-5.0/dlls/urlmon/tests/uri.c:8802:30: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == test.equal, "Error: Expected the comparison to be %d on equality_tests[%d].\n", test.equal, i); data/wine-5.0/dlls/urlmon/tests/uri.c:8802:110: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ok(equal == test.equal, "Error: Expected the comparison to be %d on equality_tests[%d].\n", test.equal, i); data/wine-5.0/dlls/urlmon/tests/uri.c:9303:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9398:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9493:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9588:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9750:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9845:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/uri.c:9940:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD expected_len = expected ? strlen(expected) : 0; data/wine-5.0/dlls/urlmon/tests/url.c:1153:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read) { data/wine-5.0/dlls/urlmon/tests/url.c:1958:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/urlmon/tests/url.c:2045:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(stream, buf, 512, &read); data/wine-5.0/dlls/urlmon/tests/url.c:2046:70: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(test_protocol == HTTP_TEST && emulate_protocol && read) data/wine-5.0/dlls/urlmon/tests/url.c:3215:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/urlmon/tests/url.c:3224:60: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hres = IStream_Read(stream, buf, sizeof(buf), &read); data/wine-5.0/dlls/urlmon/tests/url.c:3225:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(read != 0xdeadbeef, "read = 0xdeadbeef\n"); data/wine-5.0/dlls/urlmon/tests/url.c:3226:66: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(emulate_protocol && test_protocol == HTTP_TEST && read) data/wine-5.0/dlls/urlmon/tests/url.c:3230:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/url.c:3230:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(!read, "read = %d\n", read); data/wine-5.0/dlls/urlmon/tests/url.c:3673:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, content, strlen(content), &size, NULL); data/wine-5.0/dlls/user.exe16/comm.c:449:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(device) < 4) data/wine-5.0/dlls/user.exe16/dialog.c:138:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/dialog.c:151:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/dialog.c:259:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/dialog.c:271:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/dialog.c:276:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/dialog.c:289:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/user.exe16/network.c:191:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(label) + 1 > *cbRemoteName) data/wine-5.0/dlls/user.exe16/network.c:193:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *cbRemoteName = strlen(label) + 1; data/wine-5.0/dlls/user.exe16/network.c:197:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *cbRemoteName = strlen(lpRemoteName) + 1; data/wine-5.0/dlls/user.exe16/user.c:1328:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!cch) cch = strlen(str16); data/wine-5.0/dlls/user.exe16/user.c:1466:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res += strlen(str) + 1; data/wine-5.0/dlls/user.exe16/user.c:2692:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!wdata) wdata = strlen( MapSL(ldata) ); data/wine-5.0/dlls/user.exe16/user.c:3189:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). from = HeapAlloc( GetProcessHeap(), 0, strlen(source)+1 ); data/wine-5.0/dlls/user.exe16/user.c:3256:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fmtstr=HeapAlloc(GetProcessHeap(),0,strlen(f)+2); data/wine-5.0/dlls/user.exe16/user.c:3260:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fmtstr=HeapAlloc(GetProcessHeap(),0,strlen(f)+2); data/wine-5.0/dlls/user.exe16/user.c:3262:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). f+=strlen(f); /*at \0*/ data/wine-5.0/dlls/user.exe16/user.c:3322:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). talloced = strlen(target)+1; data/wine-5.0/dlls/user.exe16/user.c:3337:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(allocstring): data/wine-5.0/dlls/user.exe16/user.c:3338:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(lpBuffer); data/wine-5.0/dlls/user32/class.c:271:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD lenA = strlen(name) + 1; data/wine-5.0/dlls/user32/combo.c:1722:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/dlls/user32/defwnd.c:762:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result = strlen( dest ); data/wine-5.0/dlls/user32/edit.c:3364:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(textA); data/wine-5.0/dlls/user32/lstr.c:67:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return CharToOemBuffA( s, d, strlen( s ) + 1 ); data/wine-5.0/dlls/user32/lstr.c:118:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return OemToCharBuffA( s, d, strlen( s ) + 1 ); data/wine-5.0/dlls/user32/lstr.c:159:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return OemToCharBuffW( s, d, strlen( s ) + 1 ); data/wine-5.0/dlls/user32/menu.c:3805:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = strlen(str); data/wine-5.0/dlls/user32/spy.c:2175:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( sp_e->msg_name, "\"" ); data/wine-5.0/dlls/user32/tests/class.c:1093:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/user32/tests/clipboard.c:511:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA( hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL ); data/wine-5.0/dlls/user32/tests/clipboard.c:526:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ExtTextOutA(hdc, 0, 0, ETO_OPAQUE, &rect, "Test String", strlen("Test String"), NULL); data/wine-5.0/dlls/user32/tests/clipboard.c:1752:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HANDLE h, text = GlobalAlloc( GMEM_DDESHARE|GMEM_MOVEABLE, strlen(str) + 1 ); data/wine-5.0/dlls/user32/tests/dde.c:1598:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hdata = DdeClientTransaction((LPBYTE)test_cmd, strlen(test_cmd) + 1, hconv, (HSZ)0xdead, 0xbeef, XTYP_EXECUTE, 1000, &ret); data/wine-5.0/dlls/user32/tests/dde.c:2433:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_a = strlen(test_cmd_a_to_a) + 1; data/wine-5.0/dlls/user32/tests/edit.c:1363:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(str), "Expected %s, got len %d\n", str, ret); data/wine-5.0/dlls/user32/tests/edit.c:1369:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(ret == strlen(str), "Expected %s, got len %d\n", str, ret); data/wine-5.0/dlls/user32/tests/edit.c:2117:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(password), "Expected: %s, got len %d\n", password, r); data/wine-5.0/dlls/user32/tests/edit.c:2163:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok((strlen(text) << 16) == r, "Unexpected length %d\n", r); data/wine-5.0/dlls/user32/tests/edit.c:2184:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(text) == r, "Unexpected length %d\n", r); data/wine-5.0/dlls/user32/tests/edit.c:3136:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(str) == len, "got %d\n", len); data/wine-5.0/dlls/user32/tests/edit.c:3159:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen("first line") == len, "got %d\n", len); data/wine-5.0/dlls/user32/tests/edit.c:3165:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(str2) == len, "got %d\n", len); data/wine-5.0/dlls/user32/tests/edit.c:3198:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(str), "Failed to get a line %d.\n", r); data/wine-5.0/dlls/user32/tests/edit.c:3204:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(r == strlen(str), "Failed to get a line %d.\n", r); data/wine-5.0/dlls/user32/tests/input.c:1665:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(nameA); data/wine-5.0/dlls/user32/tests/input.c:2101:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(buffer), "wrong len %u for '%s'\n", ret, buffer ); data/wine-5.0/dlls/user32/tests/input.c:2107:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(buffer), "wrong len %u for '%s'\n", ret, buffer ); data/wine-5.0/dlls/user32/tests/listbox.c:1017:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1073:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1104:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/user32/tests/listbox.c:1178:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1180:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/user32/tests/listbox.c:1254:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1327:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/user32/tests/listbox.c:1499:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1535:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1536:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( (pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']') || data/wine-5.0/dlls/user32/tests/listbox.c:1555:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/user32/tests/listbox.c:1582:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen(pathBuffer) == 5, "Length of drive string is not 5\n" ); data/wine-5.0/dlls/user32/tests/listbox.c:1625:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1629:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( (pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']') || data/wine-5.0/dlls/user32/tests/listbox.c:1697:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( pathBuffer[0] == '[' && pathBuffer[strlen(pathBuffer)-1] == ']', data/wine-5.0/dlls/user32/tests/listbox.c:1714:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(pathBuffer, "*"); data/wine-5.0/dlls/user32/tests/listbox.c:1763:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1767:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/user32/tests/listbox.c:1768:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tempBuffer, "]"); data/wine-5.0/dlls/user32/tests/listbox.c:1783:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (strchr(tempBuffer, '.') == NULL) strcat(tempBuffer, "."); data/wine-5.0/dlls/user32/tests/listbox.c:1826:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = pathBuffer + strlen(pathBuffer); data/wine-5.0/dlls/user32/tests/listbox.c:1830:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lstrcpynA(tempBuffer + 1, pathBuffer, strlen(pathBuffer)); data/wine-5.0/dlls/user32/tests/listbox.c:1831:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tempBuffer, "]"); data/wine-5.0/dlls/user32/tests/listbox.c:1846:50: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (strchr(tempBuffer, '.') == NULL) strcat(tempBuffer, "."); data/wine-5.0/dlls/user32/tests/menu.c:486:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.cch = strlen( buffer ); data/wine-5.0/dlls/user32/tests/menu.c:560:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info.cch = strlen( buffer ); data/wine-5.0/dlls/user32/tests/menu.c:874:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). TextOutA( hdc, 10, 50, buf, strlen( buf)); data/wine-5.0/dlls/user32/tests/menu.c:2852:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(mii.cch == strlen(menu_data[i].str), data/wine-5.0/dlls/user32/tests/menu.c:2853:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "%u: expected cch %u, got %u\n", i, (UINT)strlen(menu_data[i].str), mii.cch); data/wine-5.0/dlls/user32/tests/menu.c:2916:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mii.cch = strlen( item[i].str); data/wine-5.0/dlls/user32/tests/menu.c:2965:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(mii.cch == strlen(item[i].str), data/wine-5.0/dlls/user32/tests/menu.c:2966:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). "%u: expected cch %u, got %u\n", i, (UINT)strlen(item[i].str), mii.cch); data/wine-5.0/dlls/user32/tests/menu.c:3949:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mii.cch = strlen(string); data/wine-5.0/dlls/user32/tests/menu.c:4016:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mii.cch = strlen(string); data/wine-5.0/dlls/user32/tests/menu.c:4088:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mii.cch = strlen(string); data/wine-5.0/dlls/user32/tests/menu.c:4141:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mii.cch = strlen(string); data/wine-5.0/dlls/user32/tests/monitor.c:111:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(device->DeviceID) == 0 || /* vista+ */ data/wine-5.0/dlls/user32/tests/monitor.c:117:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(broken(strlen(device->DeviceID) == 0) || /* XP on Testbot returns an empty string, whereas real machine doesn't */ data/wine-5.0/dlls/user32/tests/monitor.c:136:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(monitor_name + strlen(monitor_name), "\\Monitor%d", monitor_index); data/wine-5.0/dlls/user32/tests/monitor.c:155:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(device->DeviceID) == 0 || /* vista ~ win7 */ data/wine-5.0/dlls/user32/tests/msg.c:2070:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (flags) sprintf(buffer + strlen(buffer),"|0x%04x", flags); data/wine-5.0/dlls/user32/tests/msg.c:2296:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf( seq->output + strlen(seq->output), " (flags %x)", msg->flags ); data/wine-5.0/dlls/user32/tests/msg.c:8649:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, manifest, strlen(manifest), &size, NULL); data/wine-5.0/dlls/user32/tests/sysparams.c:2458:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(newval, ""); data/wine-5.0/dlls/user32/tests/text.c:620:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(i=0,j=0;i<=strlen(str);i++,j++) data/wine-5.0/dlls/user32/tests/text.c:631:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). extent = GetTabbedTextExtentA( hdc, string, strlen( string), (tabcount), tabs); \ data/wine-5.0/dlls/user32/tests/text.c:722:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = DrawStateA(hdc, GetStockObject(DKGRAY_BRUSH), NULL, (LPARAM)text, strlen(text), data/wine-5.0/dlls/user32/tests/text.c:732:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = DrawStateA(hdc, GetStockObject(DKGRAY_BRUSH), NULL, 0, strlen(text), data/wine-5.0/dlls/user32/tests/win.c:7485:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( buf, "a" ); data/wine-5.0/dlls/user32/tests/winstation.c:229:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). todo_wine ok( buffer[strlen(buffer) - 1] == '$', "unexpected window station name '%s'\n", buffer ); data/wine-5.0/dlls/user32/tests/wsprintf.c:72:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(rc == strlen(i64_formats[i].res), "%u: wsprintfA length failure: rc=%d\n", i, rc); data/wine-5.0/dlls/user32/text.c:1096:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( !str || ((count == -1) && !(count = strlen(str)))) data/wine-5.0/dlls/user32/text.c:1269:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!cch) cch = strlen( (LPCSTR)lParam ); data/wine-5.0/dlls/user32/uitools.c:1604:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen((LPSTR)lp); data/wine-5.0/dlls/user32/win.c:2887:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(lpString); data/wine-5.0/dlls/user32/winhelp.c:116:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dsize = dwData ? strlen((LPSTR)dwData) + 1 : 0; data/wine-5.0/dlls/user32/winhelp.c:129:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nlen = strlen(lpHelpFile) + 1; data/wine-5.0/dlls/user32/winproc.c:381:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). class_lenA = strlen(csA->lpszClass) + 1; data/wine-5.0/dlls/user32/winproc.c:386:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_lenA = strlen(csA->lpszName) + 1; data/wine-5.0/dlls/user32/winproc.c:428:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). title_lenA = strlen(csA->szTitle) + 1; data/wine-5.0/dlls/user32/winproc.c:433:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). class_lenA = strlen(csA->szClass) + 1; data/wine-5.0/dlls/user32/winproc.c:504:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD lenW, lenA = strlen(strA) + 1; data/wine-5.0/dlls/user32/winproc.c:786:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RtlMultiByteToUnicodeN( (LPWSTR)lParam, ~0u, &len, buffer, strlen(buffer) + 1 ); data/wine-5.0/dlls/userenv/tests/userenv.c:54:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). varlen = strlen(var); data/wine-5.0/dlls/userenv/tests/userenv.c:58:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). envlen = strlen(buf); data/wine-5.0/dlls/userenv/tests/userenv.c:63:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buflen = strlen(buf); data/wine-5.0/dlls/usp10/bidi.c:153:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(debug_type[types[i]])+1; data/wine-5.0/dlls/usp10/bidi.c:483:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(debug_type[*iso_run->item[i].pcls])+1; data/wine-5.0/dlls/usp10/tests/usp10.c:2589:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen((char *)efnd.elf[i].elfFullName) >= LF_FACESIZE) data/wine-5.0/dlls/usp10/tests/usp10.c:2637:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen((char *)efnd.elf[i].elfFullName) >= LF_FACESIZE) data/wine-5.0/dlls/uxtheme/system.c:288:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (BYTE*)colorStr, strlen (colorStr)+1); data/wine-5.0/dlls/vbscript/tests/createobj.c:1046:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1050:5: [1] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant character. wcscpy(str, L"C"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1204:5: [1] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant character. wcscpy(str, L"C"); data/wine-5.0/dlls/vbscript/tests/vbscript.c:1244:5: [1] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. Risk is low because the source is a constant character. wcscpy(str, L"C"); data/wine-5.0/dlls/vbscript/vbscript.h:232:7: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. X(equal, 1, 0, 0) \ data/wine-5.0/dlls/ver.dll16/version.c:203:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( typeid ); data/wine-5.0/dlls/ver.dll16/version.c:234:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). BYTE len = strlen( resid ); data/wine-5.0/dlls/version/tests/info.c:60:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, name, strlen(name), &written, NULL); data/wine-5.0/dlls/version/tests/info.c:61:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(file, "\n", strlen("\n"), &written, NULL); data/wine-5.0/dlls/version/tests/info.c:559:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(value_name[i]) + 1, "VerQueryValue returned %u\n", len); data/wine-5.0/dlls/version/tests/info.c:727:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(p) + 1, "[%u] VerQueryValue returned %u\n", i, size); data/wine-5.0/dlls/version/tests/install.c:82:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwCur == 1 + strlen(windir), "Wrong length of buffer for current location: " data/wine-5.0/dlls/version/tests/install.c:104:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwCur == 1 + strlen(windir), "Wrong length of buffer for current location: " data/wine-5.0/dlls/version/tests/install.c:130:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(filename, p, 1 + strlen(p)); data/wine-5.0/dlls/version/tests/install.c:157:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwOut == 1 + strlen(windir), "Wrong length of buffer for current location: " data/wine-5.0/dlls/version/tests/install.c:166:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwOut == 1 + strlen(appdir), "Wrong length of buffer for current location: " data/wine-5.0/dlls/version/version.c:123:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmplast=strlen(pdest)+1; data/wine-5.0/dlls/version/version.c:136:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmplast = strlen(pdest)+1; data/wine-5.0/dlls/version/version.c:225:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*tmpfilelen<strlen(tmpfn+tmplast)) { data/wine-5.0/dlls/version/version.c:230:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *tmpfilelen = strlen(tmpfn+tmplast)+1; data/wine-5.0/dlls/vnbt.vxd/vnbt.c:87:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info->scopeLen = min(strlen(fixedInfo->ScopeId) + 1, data/wine-5.0/dlls/webservices/reader.c:1096:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len < 0) len = strlen( str ); data/wine-5.0/dlls/webservices/tests/msg.c:333:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen( expected ); data/wine-5.0/dlls/webservices/tests/msg.c:1024:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, xml, strlen(xml) ); data/wine-5.0/dlls/webservices/tests/msg.c:1082:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, xml, strlen(xml) ); data/wine-5.0/dlls/webservices/tests/msg.c:1145:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, xml, strlen(xml) ); data/wine-5.0/dlls/webservices/tests/proxy.c:731:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send( c, status, strlen(status), 0 ); data/wine-5.0/dlls/webservices/tests/proxy.c:734:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send( c, buf, strlen(buf), 0 ); data/wine-5.0/dlls/webservices/tests/proxy.c:784:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( "Content-Length: " ); data/wine-5.0/dlls/webservices/tests/proxy.c:803:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int data_len = strlen( buf ); data/wine-5.0/dlls/webservices/tests/reader.c:1179:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, tests[i].text, strlen(tests[i].text) ); data/wine-5.0/dlls/webservices/tests/reader.c:1182:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = WsFillReader( reader, strlen(tests[i].text), NULL, NULL ); data/wine-5.0/dlls/webservices/tests/reader.c:2280:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ULONG size = strlen( data ); data/wine-5.0/dlls/webservices/tests/reader.c:2605:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ULONG size = strlen( data ); data/wine-5.0/dlls/webservices/tests/reader.c:3533:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prepare_type_test( reader, tests[i].str, strlen(tests[i].str) ); data/wine-5.0/dlls/webservices/tests/reader.c:3726:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prepare_type_test( reader, tests[i].str, strlen(tests[i].str) ); data/wine-5.0/dlls/webservices/tests/reader.c:4073:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, tests[i].str, strlen(tests[i].str) ); data/wine-5.0/dlls/webservices/tests/reader.c:4087:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( utf8->value.length == strlen(tests[i].res), "%u: got %u\n", i, utf8->value.length ); data/wine-5.0/dlls/webservices/tests/reader.c:4088:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( !memcmp( utf8->value.bytes, tests[i].res, strlen(tests[i].res) ), "%u: wrong data\n", i ); data/wine-5.0/dlls/webservices/tests/reader.c:4637:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = set_input( reader, tests[i].str, strlen(tests[i].str) ); data/wine-5.0/dlls/webservices/tests/reader.c:4653:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( prefix.length == strlen( tests[i].prefix ), "%u: got %u\n", i, prefix.length ); data/wine-5.0/dlls/webservices/tests/reader.c:4656:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( localname.length == strlen( tests[i].localname ), "%u: got %u\n", i, localname.length ); data/wine-5.0/dlls/webservices/tests/reader.c:4659:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ns.length == strlen( tests[i].ns ), "%u: got %u\n", i, ns.length ); data/wine-5.0/dlls/webservices/tests/reader.c:5984:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(expected); data/wine-5.0/dlls/webservices/tests/reader.c:6376:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prepare_type_test( reader, tests[i].str, strlen(tests[i].str) ); data/wine-5.0/dlls/webservices/tests/reader.c:6696:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ULONG len = strlen( test->xml ); data/wine-5.0/dlls/webservices/tests/reader.c:6736:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = WsFillReader( reader, strlen(stream_tests[2].xml), NULL, NULL ); data/wine-5.0/dlls/webservices/tests/reader.c:6761:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hr = WsFillReader( reader, strlen( stream_tests[i].xml ), NULL, NULL ); data/wine-5.0/dlls/webservices/tests/writer.c:365:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( expected ); data/wine-5.0/dlls/webservices/tests/writer.c:1283:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(expected); data/wine-5.0/dlls/webservices/tests/writer.c:2776:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8.value.length = strlen( tests_elem[i].text ); data/wine-5.0/dlls/webservices/tests/writer.c:2796:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8.value.length = strlen( tests_attr[i].text ); data/wine-5.0/dlls/webservices/tests/writer.c:2819:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8.value.length = strlen( tests_cdata[i].text ); data/wine-5.0/dlls/webservices/tests/writer.c:2841:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). comment.value.length = strlen( tests_comment[i].text ); data/wine-5.0/dlls/webservices/tests/writer.c:2969:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( expected ); data/wine-5.0/dlls/webservices/tests/writer.c:3173:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str->length = strlen( src ); data/wine-5.0/dlls/webservices/tests/writer.c:3560:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8.value.length = strlen( elem_tests[i].text ); data/wine-5.0/dlls/webservices/tests/writer.c:3585:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). utf8.value.length = strlen( attr_tests[i].value ); data/wine-5.0/dlls/wiaservc/wiaservc_private.h:43:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t n = strlen(s) + 1; data/wine-5.0/dlls/winaspi.dll16/winaspi.c:331:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = read(fd, sg_reply_hdr, out_len); data/wine-5.0/dlls/windowscodecs/regsvr.c:233:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->author) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:240:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->friendlyname) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:261:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:268:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->mimetypes) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:275:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->extensions) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:448:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->author) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:455:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->friendlyname) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:476:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:483:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->mimetypes) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:490:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->extensions) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:626:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->author) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:633:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->friendlyname) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:647:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:783:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->author) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:790:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->friendlyname) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:811:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:818:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:993:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->author) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:1000:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->friendlyname) + 1); data/wine-5.0/dlls/windowscodecs/regsvr.c:1014:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(list->version) + 1); data/wine-5.0/dlls/windowscodecs/tests/converter.c:236:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. BOOL equal; data/wine-5.0/dlls/windowscodecs/tests/converter.c:294:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal && expect->alt_data) data/wine-5.0/dlls/windowscodecs/tests/converter.c:297:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal && winetest_debug > 1) data/wine-5.0/dlls/windowscodecs/tests/converter.c:312:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return equal; data/wine-5.0/dlls/windowscodecs/tests/metadata.c:382:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). U(id).pszVal = CoTaskMemAlloc(strlen("winetest") + 1); data/wine-5.0/dlls/windowscodecs/tests/metadata.c:727:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(td[i].count == strlen(U(value).pszVal) || data/wine-5.0/dlls/windowscodecs/tests/metadata.c:728:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). broken(td[i].count == strlen(U(value).pszVal) + 1), /* before Win7 */ data/wine-5.0/dlls/windowscodecs/tests/metadata.c:730:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (td[i].count == strlen(U(value).pszVal)) data/wine-5.0/dlls/winealsa.drv/midi.c:1185:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (strlen(snd_seq_client_info_get_name(cinfo)) + strlen(snd_seq_port_info_get_name(pinfo)) + 3) < MAXPNAMELEN ) { data/wine-5.0/dlls/winealsa.drv/midi.c:1185:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (strlen(snd_seq_client_info_get_name(cinfo)) + strlen(snd_seq_port_info_get_name(pinfo)) + 3) < MAXPNAMELEN ) { data/wine-5.0/dlls/winealsa.drv/midi.c:1251:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (strlen(snd_seq_client_info_get_name(cinfo)) + strlen(snd_seq_port_info_get_name(pinfo)) + 3) < MAXPNAMELEN ) { data/wine-5.0/dlls/winealsa.drv/midi.c:1251:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (strlen(snd_seq_client_info_get_name(cinfo)) + strlen(snd_seq_port_info_get_name(pinfo)) + 3) < MAXPNAMELEN ) { data/wine-5.0/dlls/winealsa.drv/mmdevdrv.c:4144:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). val_len = strlen(val); data/wine-5.0/dlls/wineandroid.drv/keyboard.c:961:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (s && (strlen( s ) == 1)) data/wine-5.0/dlls/wineandroid.drv/opengl.c:621:28: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (wgl_extensions[0]) strcat( wgl_extensions, " " ); data/wine-5.0/dlls/wineandroid.drv/window.c:415:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = read( event_pipe[0], &event->data, sizeof(event->data) ); data/wine-5.0/dlls/winebus.sys/bus.h:37:108: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). NTSTATUS (*get_feature_report)(DEVICE_OBJECT *device, UCHAR id, BYTE *report, DWORD length, ULONG_PTR *read); data/wine-5.0/dlls/winebus.sys/bus_iohid.c:234:108: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static NTSTATUS get_feature_report(DEVICE_OBJECT *device, UCHAR id, BYTE *report, DWORD length, ULONG_PTR *read) data/wine-5.0/dlls/winebus.sys/bus_sdl.c:725:108: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static NTSTATUS get_feature_report(DEVICE_OBJECT *device, UCHAR id, BYTE *report, DWORD length, ULONG_PTR *read) data/wine-5.0/dlls/winebus.sys/bus_udev.c:780:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size = read(plfds[0].fd, report_buffer, sizeof(report_buffer)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:850:115: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static NTSTATUS hidraw_get_feature_report(DEVICE_OBJECT *device, UCHAR id, BYTE *report, DWORD length, ULONG_PTR *read) data/wine-5.0/dlls/winebus.sys/bus_udev.c:994:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size = read(plfds[0].fd, &ie, sizeof(ie)); data/wine-5.0/dlls/winebus.sys/bus_udev.c:1035:114: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static NTSTATUS lnxev_get_feature_report(DEVICE_OBJECT *device, UCHAR id, BYTE *report, DWORD length, ULONG_PTR *read) data/wine-5.0/dlls/winebus.sys/bus_udev.c:1076:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = heap_alloc(strlen(uevent) + 1); data/wine-5.0/dlls/winebus.sys/bus_udev.c:1129:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int shift = strlen(s) - 1; data/wine-5.0/dlls/winecrt0/debug.c:73:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(name) >= sizeof(debug_options[0].name)) return; data/wine-5.0/dlls/winecrt0/debug.c:122:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(debug_classes[i]); data/wine-5.0/dlls/winecrt0/debug.c:174:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen( str ); data/wine-5.0/dlls/winecrt0/debug.c:203:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return fwrite( buffer, 1, strlen(buffer), stderr ); data/wine-5.0/dlls/wined3d/adapter_gl.c:399:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(testcode), testcode)); data/wine-5.0/dlls/wined3d/adapter_gl.c:618:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(testcode), testcode)); data/wine-5.0/dlls/wined3d/adapter_gl.c:787:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(program_code), program_code)); data/wine-5.0/dlls/wined3d/adapter_gl.c:2095:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == strlen(map[i].extension_string) data/wine-5.0/dlls/wined3d/arb_program_shader.c:60:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *ptr += strlen(p); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3327:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GL_EXTCALL(glProgramStringARB(target, GL_PROGRAM_FORMAT_ASCII_ARB, strlen(src), src)); data/wine-5.0/dlls/wined3d/arb_program_shader.c:3889:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name = heap_alloc(strlen(sig->elements[i].semantic_name) + 1); data/wine-5.0/dlls/wined3d/context.c:2285:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GL_PROGRAM_FORMAT_ASCII_ARB, strlen(dummy_program), dummy_program)); data/wine-5.0/dlls/wined3d/directx.c:642:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = min(strlen(src), dst_size - 1); data/wine-5.0/dlls/wined3d/glsl_shader.c:499:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *ptr += strlen(p); data/wine-5.0/dlls/wined3d/shader.c:3131:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). q = p + strlen(p); data/wine-5.0/dlls/wined3d/shader_sm4.c:1703:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ins->dst_count = strlen(opcode_info->dst_info); data/wine-5.0/dlls/wined3d/shader_sm4.c:1705:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ins->src_count = strlen(opcode_info->src_info); data/wine-5.0/dlls/wined3d/utils.c:2084:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (j = 0; j < strlen(typed_formats[i].channels); ++j) data/wine-5.0/dlls/wined3d/utils.c:3481:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(s) != 4) data/wine-5.0/dlls/wined3d/wined3d_main.c:189:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name) + 1; data/wine-5.0/dlls/wined3d/wined3d_main.c:345:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(buffer) + 1; data/wine-5.0/dlls/winejoystick.drv/joystick_linux.c:324:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while ((read(dev, &ev, sizeof(struct js_event))) > 0) { data/wine-5.0/dlls/winemac.drv/clipboard.c:536:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (memcmp(pos, keyword, strlen(keyword)) == 0) data/wine-5.0/dlls/winemac.drv/clipboard.c:537:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return pos + strlen(keyword); data/wine-5.0/dlls/winemac.drv/clipboard.c:671:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(header) + 12; /* 3 * 4 extra chars for %010lu */ data/wine-5.0/dlls/winemac.drv/clipboard.c:1141:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = (char*)p + strlen(p) + 1; data/wine-5.0/dlls/winemac.drv/display.c:149:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!GlobalGetAtomNameA(guid_atom, key + strlen(key), 40)) data/wine-5.0/dlls/winemac.drv/opengl.c:1291:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(str) + sizeof(legacy_extensions); data/wine-5.0/dlls/winemac.drv/opengl.c:1293:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length += strlen(legacy_ext_swap_control); data/wine-5.0/dlls/winemac.drv/opengl.c:1668:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static void make_context_current(struct wgl_context *context, BOOL read) data/wine-5.0/dlls/winemac.drv/opengl.c:1674:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) data/wine-5.0/dlls/winemac.drv/opengl.c:4148:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(gl_info.wglExtensions, " "); data/wine-5.0/dlls/winemac.drv/window.c:766:10: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (!equal) data/wine-5.0/dlls/winemac.drv/window.c:769:9: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (equal) data/wine-5.0/dlls/winemapi/main.c:106:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). scode = MAPIAllocateBuffer(sizeof(**recip) + sizeof(smtp) + strlen(name), data/wine-5.0/dlls/wineoss.drv/midi.c:652:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). len = read(midiSeqFD, buffer, sizeof(buffer)); data/wine-5.0/dlls/wineoss.drv/mmdevdrv.c:1524:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). nread = read(This->fd, This->local_buffer + pos * This->fmt->nBlockAlign, data/wine-5.0/dlls/wineps.drv/afm.c:116:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(family->FamilyName = HeapAlloc(PSDRV_Heap, 0, strlen(afm->FamilyName)+1 ))) { data/wine-5.0/dlls/wineps.drv/afm2c.c:194:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < strlen(buffer); ++i) data/wine-5.0/dlls/wineps.drv/builtin.c:431:4: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(family->FamilyName))) data/wine-5.0/dlls/wineps.drv/download.c:125:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen((char*)potm + (ptrdiff_t)potm->otmpFaceName) + 1; data/wine-5.0/dlls/wineps.drv/download.c:329:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pdl->ps_name = HeapAlloc(GetProcessHeap(), 0, strlen(ps_name)+1); data/wine-5.0/dlls/wineps.drv/download.c:808:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/escape.c:201:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(p + strlen(p) + 1) = '\0'; /* 2 '\0's at end of string */ data/wine-5.0/dlls/wineps.drv/font.c:102:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen ((LPSTR) physDev->pi->FontSubTable[i].pData) < data/wine-5.0/dlls/wineps.drv/glyphlist.c:80:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). g = HeapAlloc(PSDRV_Heap, 0, sizeof(GLYPHNAME) + strlen(szName) + 1); data/wine-5.0/dlls/wineps.drv/graphics.c:114:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/mkagl.c:266:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (cp == NULL || strlen(cp) < 3) data/wine-5.0/dlls/wineps.drv/ppd.c:193:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = HeapAlloc(PSDRV_Heap, 0, strlen(str) + 1); data/wine-5.0/dlls/wineps.drv/ppd.c:246:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!end) end = start + strlen(start); data/wine-5.0/dlls/wineps.drv/ppd.c:350:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!end) end = start + strlen(start); data/wine-5.0/dlls/wineps.drv/ppd.c:400:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cp = line + strlen(line) - 1; data/wine-5.0/dlls/wineps.drv/ppd.c:830:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). page->FullName = HeapAlloc( PSDRV_Heap, 0, strlen(page->Name)+1 ); data/wine-5.0/dlls/wineps.drv/ps.c:275:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(feature) + strlen(value)); data/wine-5.0/dlls/wineps.drv/ps.c:275:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(feature) + strlen(value)); data/wine-5.0/dlls/wineps.drv/ps.c:278:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, buf, strlen(buf) ); data/wine-5.0/dlls/wineps.drv/ps.c:279:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, invocation, strlen(invocation) ); data/wine-5.0/dlls/wineps.drv/ps.c:280:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psendfeature, strlen(psendfeature) ); data/wine-5.0/dlls/wineps.drv/ps.c:363:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = sizeof(media) + strlen( info->page->Name ) + 1; data/wine-5.0/dlls/wineps.drv/ps.c:368:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( buf, "\n"); data/wine-5.0/dlls/wineps.drv/ps.c:380:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, str, strlen( str ) ); data/wine-5.0/dlls/wineps.drv/ps.c:420:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( psadobe ); data/wine-5.0/dlls/wineps.drv/ps.c:432:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(escaped_title) + 30 ); data/wine-5.0/dlls/wineps.drv/ps.c:452:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( buf ); data/wine-5.0/dlls/wineps.drv/ps.c:456:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psbeginprolog, strlen(psbeginprolog) ); data/wine-5.0/dlls/wineps.drv/ps.c:457:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psprolog, strlen(psprolog) ); data/wine-5.0/dlls/wineps.drv/ps.c:458:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psendprolog, strlen(psendprolog) ); data/wine-5.0/dlls/wineps.drv/ps.c:459:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psbeginsetup, strlen(psbeginsetup) ); data/wine-5.0/dlls/wineps.drv/ps.c:470:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). write_spool( dev, psendsetup, strlen(psendsetup) ); data/wine-5.0/dlls/wineps.drv/ps.c:491:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( write_spool( dev, buf, strlen(buf) ) != strlen(buf) ) { data/wine-5.0/dlls/wineps.drv/ps.c:491:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( write_spool( dev, buf, strlen(buf) ) != strlen(buf) ) { data/wine-5.0/dlls/wineps.drv/ps.c:549:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( write_spool( dev, buf, strlen(buf) ) != strlen(buf) ) { data/wine-5.0/dlls/wineps.drv/ps.c:549:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( write_spool( dev, buf, strlen(buf) ) != strlen(buf) ) { data/wine-5.0/dlls/wineps.drv/ps.c:563:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:571:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:588:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:601:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:609:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:616:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = HeapAlloc( GetProcessHeap(), 0, strlen(name) + 256 ); data/wine-5.0/dlls/wineps.drv/ps.c:624:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool( dev, buf, strlen(buf) ); data/wine-5.0/dlls/wineps.drv/ps.c:629:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool( dev, buf, strlen(buf) ); data/wine-5.0/dlls/wineps.drv/ps.c:636:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool( dev, buf, strlen(buf) ); data/wine-5.0/dlls/wineps.drv/ps.c:657:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:663:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:680:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:692:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:765:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:772:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:834:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:857:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:863:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:879:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:901:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(ptr, "\n"); data/wine-5.0/dlls/wineps.drv/ps.c:930:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:938:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:946:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:954:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/ps.c:1002:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type1.c:107:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = HeapAlloc(GetProcessHeap(), 0, sizeof(dict) + strlen(ps_name) + data/wine-5.0/dlls/wineps.drv/type1.c:113:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type1.c:650:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pdl->ps_name) + strlen(glyph_name) + 100); data/wine-5.0/dlls/wineps.drv/type1.c:650:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pdl->ps_name) + strlen(glyph_name) + 100); data/wine-5.0/dlls/wineps.drv/type1.c:653:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type1.c:657:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type1.c:660:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type1afm.c:89:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(buffer); data/wine-5.0/dlls/wineps.drv/type1afm.c:94:11: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). i = fgetc(file); /* find the newline or EOF */ data/wine-5.0/dlls/wineps.drv/type1afm.c:133:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *p_result = strlen(buffer); data/wine-5.0/dlls/wineps.drv/type1afm.c:150:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). INT len = strlen(key); data/wine-5.0/dlls/wineps.drv/type1afm.c:234:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cp = buffer + strlen(key); /* first char after key */ data/wine-5.0/dlls/wineps.drv/type1afm.c:304:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cp = buffer + strlen(key); /* first char after key */ data/wine-5.0/dlls/wineps.drv/type1afm.c:314:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *p_str = HeapAlloc(PSDRV_Heap, 0, strlen(cp) + 1); data/wine-5.0/dlls/wineps.drv/type42.c:203:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf = HeapAlloc(GetProcessHeap(), 0, sizeof(start) + strlen(ps_name) + data/wine-5.0/dlls/wineps.drv/type42.c:212:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:218:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:227:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:235:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:244:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:270:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:276:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:351:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pdl->ps_name) + 100); data/wine-5.0/dlls/wineps.drv/type42.c:356:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:361:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineps.drv/type42.c:367:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PSDRV_WriteSpool(dev, buf, strlen(buf)); data/wine-5.0/dlls/wineqtdecoder/qtdatahandler.c:278:73: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. Handle dataRef, Boolean *equal) data/wine-5.0/dlls/wineqtdecoder/qtdatahandler.c:365:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str[0] = strlen(stream_sigs[i].fname); data/wine-5.0/dlls/winex11.drv/clipboard.c:462:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. usleep( SELECTION_WAIT ); data/wine-5.0/dlls/winex11.drv/clipboard.c:586:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *uri = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, strlen(encodedURI) + 1); data/wine-5.0/dlls/winex11.drv/clipboard.c:728:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = unicode_text_from_string( CP_UNIXCP, srcstr[0], strlen(srcstr[0]) + 1 ); data/wine-5.0/dlls/winex11.drv/clipboard.c:878:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( header ) + 12; /* 3 * 4 extra chars for %010lu */ data/wine-5.0/dlls/winex11.drv/clipboard.c:1695:17: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. usleep(SELECTION_WAIT); data/wine-5.0/dlls/winex11.drv/event.c:1533:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winex11.drv/event.c:1555:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p_drop += strlen( p_drop ) + 1; data/wine-5.0/dlls/winex11.drv/event.c:1556:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winex11.drv/keyboard.c:1431:28: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. unsigned current, match, mismatch, seq, i, syms; data/wine-5.0/dlls/winex11.drv/keyboard.c:1516:12: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. match, mismatch, seq, score); data/wine-5.0/dlls/winex11.drv/keyboard.c:1523:18: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. ismatch = !mismatch; data/wine-5.0/dlls/winex11.drv/opengl.c:359:84: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static Bool (*pglXMakeContextCurrent)( Display *dpy, GLXDrawable draw, GLXDrawable read, GLXContext ctx ); data/wine-5.0/dlls/winex11.drv/opengl.c:401:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen( ext ); data/wine-5.0/dlls/winex11.drv/opengl.c:477:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). glExtensions = HeapAlloc(GetProcessHeap(), 0, strlen(str)+sizeof(legacy_extensions)); data/wine-5.0/dlls/winex11.drv/opengl.c:1772:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). struct gl_drawable *read ) data/wine-5.0/dlls/winex11.drv/opengl.c:1782:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ctx->drawables[1] = read ? grab_gl_drawable( read ) : NULL; data/wine-5.0/dlls/winex11.drv/opengl.c:1782:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ctx->drawables[1] = read ? grab_gl_drawable( read ) : NULL; data/wine-5.0/dlls/winex11.drv/opengl.c:3091:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(wglExtensions, " "); data/wine-5.0/dlls/winex11.drv/settings.c:171:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!GlobalGetAtomNameA(guid_atom, key + strlen(key), 40)) data/wine-5.0/dlls/winex11.drv/window.c:148:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). srclen = strlen(src) + 1; data/wine-5.0/dlls/winex11.drv/wintab.c:584:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(target->name) >= WT_MAX_NAME_LEN) data/wine-5.0/dlls/winhttp/request.c:1352:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( strA ); data/wine-5.0/dlls/winhttp/request.c:1889:82: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static BOOL read_data( struct request *request, void *buffer, DWORD size, DWORD *read, BOOL async ) data/wine-5.0/dlls/winhttp/request.c:1928:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (ret && read) *read = bytes_read; data/wine-5.0/dlls/winhttp/request.c:2911:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read_data( r->hdr.request, r->buffer, r->to_read, r->read, TRUE ); data/wine-5.0/dlls/winhttp/request.c:2917:88: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL WINAPI WinHttpReadData( HINTERNET hrequest, LPVOID buffer, DWORD to_read, LPDWORD read ) data/wine-5.0/dlls/winhttp/request.c:2922:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE("%p, %p, %d, %p\n", hrequest, buffer, to_read, read); data/wine-5.0/dlls/winhttp/request.c:2945:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r->read = read; data/wine-5.0/dlls/winhttp/request.c:2951:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read_data( request, buffer, to_read, read, FALSE ); data/wine-5.0/dlls/winhttp/request.c:4208:81: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI stream_Read( IStream *iface, void *buf, ULONG len, ULONG *read ) data/wine-5.0/dlls/winhttp/request.c:4254:107: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI stream_CopyTo( IStream *iface, IStream *stream, ULARGE_INTEGER len, ULARGE_INTEGER *read, data/wine-5.0/dlls/winhttp/session.c:1395:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len_domain = strlen( domain ), len_suffix = strlen( suffix ); data/wine-5.0/dlls/winhttp/session.c:1395:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len_domain = strlen( domain ), len_suffix = strlen( suffix ); data/wine-5.0/dlls/winhttp/session.c:1418:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = lstrlenW( L"http://" ) + strlen( hostname ) + lstrlenW( L"/wpad.dat" ); data/wine-5.0/dlls/winhttp/session.c:1445:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(name = heap_alloc( sizeof("wpad") + strlen(p) ))) data/wine-5.0/dlls/winhttp/session.c:1744:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( p ); data/wine-5.0/dlls/winhttp/session.c:1861:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = InternetGetProxyInfo( urlA, strlen(urlA), data/wine-5.0/dlls/winhttp/session.c:1862:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hostnameA, strlen(hostnameA), &result, &len_result ))) data/wine-5.0/dlls/winhttp/tests/notification.c:829:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send( server_socket, msg, strlen( msg ), 0 ); data/wine-5.0/dlls/winhttp/tests/notification.c:850:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( expect_prefix ); data/wine-5.0/dlls/winhttp/tests/notification.c:945:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(expected_data); data/wine-5.0/dlls/winhttp/winhttp_private.h:238:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD *read; data/wine-5.0/dlls/wininet/cookie.c:438:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) { data/wine-5.0/dlls/wininet/cookie.c:450:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) { data/wine-5.0/dlls/wininet/cookie.c:462:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) { data/wine-5.0/dlls/wininet/cookie.c:475:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) { data/wine-5.0/dlls/wininet/cookie.c:485:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!WriteFile(cookie_handle, buf, strlen(buf), &bytes_written, NULL)) { data/wine-5.0/dlls/wininet/ftp.c:1187:86: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static DWORD FTPFILE_ReadFile(object_header_t *hdr, void *buffer, DWORD size, DWORD *read, data/wine-5.0/dlls/wininet/ftp.c:1206:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!WriteFile(file->cache_file_handle, buffer, *read, &bytes_written, NULL)) data/wine-5.0/dlls/wininet/ftp.c:2294:82: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = WideCharToMultiByte(CP_ACP, 0, lpszCommand, -1, NULL, 0, NULL, NULL) + strlen(szCRLF); data/wine-5.0/dlls/wininet/ftp.c:2545:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szaddr, strlen(szaddr)+1); data/wine-5.0/dlls/wininet/ftp.c:2556:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szaddr, strlen(szaddr)+1); data/wine-5.0/dlls/wininet/ftp.c:2569:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). szaddr, strlen(szaddr)+1); data/wine-5.0/dlls/wininet/ftp.c:2713:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwParamLen = lpszParam?strlen(lpszParam)+1:0; data/wine-5.0/dlls/wininet/ftp.c:2714:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = dwParamLen + strlen(szFtpCommands[ftpCmd]) + strlen(szCRLF); data/wine-5.0/dlls/wininet/ftp.c:2714:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = dwParamLen + strlen(szFtpCommands[ftpCmd]) + strlen(szCRLF); data/wine-5.0/dlls/wininet/ftp.c:3654:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!isdigit(pszToken[0]) && 10 == strlen(pszToken)) { data/wine-5.0/dlls/wininet/ftp.c:3681:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(pszToken) >= 3) { data/wine-5.0/dlls/wininet/ftp.c:3720:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if(isdigit(pszToken[0]) && 8 == strlen(pszToken)) { data/wine-5.0/dlls/wininet/http.c:380:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD (*read)(data_stream_t*,http_request_t*,BYTE*,DWORD,DWORD*,BOOL); data/wine-5.0/dlls/wininet/http.c:444:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD *read, BOOL allow_blocking) data/wine-5.0/dlls/wininet/http.c:461:53: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = gzip_stream->parent_stream->vtbl->read(gzip_stream->parent_stream, req, gzip_stream->buf+gzip_stream->buf_size, data/wine-5.0/dlls/wininet/http.c:1878:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). server->addr_str, strlen(server->addr_str)+1); data/wine-5.0/dlls/wininet/http.c:2596:82: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static DWORD read_http_stream(http_request_t *req, BYTE *buf, DWORD size, DWORD *read, BOOL allow_blocking) data/wine-5.0/dlls/wininet/http.c:2600:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = req->data_stream->vtbl->read(req->data_stream, req, buf, size, read, allow_blocking); data/wine-5.0/dlls/wininet/http.c:2600:74: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = req->data_stream->vtbl->read(req->data_stream, req, buf, size, read, allow_blocking); data/wine-5.0/dlls/wininet/http.c:2603:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). assert(*read <= size); data/wine-5.0/dlls/wininet/http.c:2606:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(*read) { data/wine-5.0/dlls/wininet/http.c:2610:53: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bres = WriteFile(req->hCacheFile, buf, *read, &written, NULL); data/wine-5.0/dlls/wininet/http.c:2615:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if((res == ERROR_SUCCESS && !*read) || req->data_stream->vtbl->end_of_data(req->data_stream, req)) data/wine-5.0/dlls/wininet/http.c:2637:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &read, allow_blocking); data/wine-5.0/dlls/wininet/http.c:2641:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). req->read_size += read; data/wine-5.0/dlls/wininet/http.c:2643:44: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE("read %u bytes, read_size %u\n", read, req->read_size); data/wine-5.0/dlls/wininet/http.c:2645:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *read_bytes = read; data/wine-5.0/dlls/wininet/http.c:2656:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD *read, BOOL allow_blocking) data/wine-5.0/dlls/wininet/http.c:2735:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD *read, BOOL allow_blocking) data/wine-5.0/dlls/wininet/http.c:3004:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = refill_read_buffer(req, FALSE, &read); data/wine-5.0/dlls/wininet/http.c:3010:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(res != WSAEWOULDBLOCK && (res != ERROR_SUCCESS || !read)) { data/wine-5.0/dlls/wininet/http.c:3011:59: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). WARN("res %u read %u, closing connection\n", res, read); data/wine-5.0/dlls/wininet/http.c:3024:81: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static DWORD HTTPREQ_Read(http_request_t *req, void *buffer, DWORD size, DWORD *read, BOOL allow_blocking) data/wine-5.0/dlls/wininet/http.c:3098:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (read < task->size) { data/wine-5.0/dlls/wininet/http.c:3099:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = HTTPREQ_Read(req, (char*)task->buf + read, task->size - read, &read_bytes, TRUE); data/wine-5.0/dlls/wininet/http.c:3099:75: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = HTTPREQ_Read(req, (char*)task->buf + read, task->size - read, &read_bytes, TRUE); data/wine-5.0/dlls/wininet/http.c:3106:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = refill_read_buffer(req, TRUE, &read); data/wine-5.0/dlls/wininet/http.c:3110:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). complete_arg = read; /* QueryDataAvailable reports read bytes in request complete notification */ data/wine-5.0/dlls/wininet/http.c:3111:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(res != ERROR_SUCCESS || !read) data/wine-5.0/dlls/wininet/http.c:3115:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE("res %u read %u\n", res, read); data/wine-5.0/dlls/wininet/http.c:3118:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *task->ret_read = read; data/wine-5.0/dlls/wininet/http.c:3121:94: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). INTERNET_SendCallback(&req->hdr, req->hdr.dwContext, INTERNET_STATUS_RESPONSE_RECEIVED, &read, sizeof(read)); data/wine-5.0/dlls/wininet/http.c:3121:107: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). INTERNET_SendCallback(&req->hdr, req->hdr.dwContext, INTERNET_STATUS_RESPONSE_RECEIVED, &read, sizeof(read)); data/wine-5.0/dlls/wininet/http.c:3169:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). memcpy(buf, req->read_buf + req->read_pos, read); data/wine-5.0/dlls/wininet/http.c:3170:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). req->read_size -= read; data/wine-5.0/dlls/wininet/http.c:3171:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). req->read_pos += read; data/wine-5.0/dlls/wininet/http.c:3174:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read < size && (!read || !(flags & IRF_NO_WAIT)) && !end_of_read_data(req)) { data/wine-5.0/dlls/wininet/http.c:3174:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read < size && (!read || !(flags & IRF_NO_WAIT)) && !end_of_read_data(req)) { data/wine-5.0/dlls/wininet/http.c:3180:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(read < size) { data/wine-5.0/dlls/wininet/http.c:3181:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = HTTPREQ_Read(req, (char*)buf+read, size-read, &cread, allow_blocking); data/wine-5.0/dlls/wininet/http.c:3181:63: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = HTTPREQ_Read(req, (char*)buf+read, size-read, &cread, allow_blocking); data/wine-5.0/dlls/wininet/http.c:3200:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return async_read(req, buf, size, read, ret_read); data/wine-5.0/dlls/wininet/http.c:3201:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read) data/wine-5.0/dlls/wininet/http.c:3206:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *ret_read = read; data/wine-5.0/dlls/wininet/http.c:3212:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &read, sizeof(read)); data/wine-5.0/dlls/wininet/http.c:3212:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &read, sizeof(read)); data/wine-5.0/dlls/wininet/http.c:4688:52: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. LPWSTR comma = strchrW(ptr, ','), end, equal; data/wine-5.0/dlls/wininet/http.c:4694:35: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. for (equal = end - 1; equal > ptr && *equal != '='; equal--) data/wine-5.0/dlls/wininet/http.c:4694:51: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. for (equal = end - 1; equal > ptr && *equal != '='; equal--) data/wine-5.0/dlls/wininet/http.c:4850:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(request->server->addr_str)+1); data/wine-5.0/dlls/wininet/http.c:4864:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). request->server->addr_str, strlen(request->server->addr_str)+1); data/wine-5.0/dlls/wininet/internet.c:398:22: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. LPCWSTR end, equal; data/wine-5.0/dlls/wininet/internet.c:402:44: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if ((equal = strchrW(ptr, '=')) && equal < end && data/wine-5.0/dlls/wininet/internet.c:1116:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *lpdwBufferLength = strlen(lpszBuffer); data/wine-5.0/dlls/wininet/internet.c:2386:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len_domain = strlen( domain ), len_suffix = strlen( suffix ); data/wine-5.0/dlls/wininet/internet.c:2386:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len_domain = strlen( domain ), len_suffix = strlen( suffix ); data/wine-5.0/dlls/wininet/internet.c:2411:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = lstrlenW( httpW ) + strlen( hostname ) + lstrlenW( wpadW ); data/wine-5.0/dlls/wininet/internet.c:2438:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(name = heap_alloc( sizeof("wpad") + strlen(p) ))) data/wine-5.0/dlls/wininet/internet.c:3552:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). command = heap_alloc(strlen(ping)+len+strlen(redirect)+1); data/wine-5.0/dlls/wininet/internet.c:3552:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). command = heap_alloc(strlen(ping)+len+strlen(redirect)+1); data/wine-5.0/dlls/wininet/internet.c:4179:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (url)->dw##component##Length : strlen((url)->lpsz##component)) data/wine-5.0/dlls/wininet/internet.c:4254:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *lpdwUrlLength += strlen("//"); data/wine-5.0/dlls/wininet/internet.c:4259:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *lpdwUrlLength += strlen("@"); data/wine-5.0/dlls/wininet/internet.c:4272:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *lpdwUrlLength += strlen(":"); data/wine-5.0/dlls/wininet/internet.c:4285:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *lpdwUrlLength += strlen(":"); data/wine-5.0/dlls/wininet/internet.h:119:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD size = strlen(str)+1; data/wine-5.0/dlls/wininet/internet.h:156:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(len_a < 0) len_a = strlen(str); data/wine-5.0/dlls/wininet/tests/http.c:259:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == strlen(exbuf), "unexpected size %d for \"%s\"\n", size, exbuf); data/wine-5.0/dlls/wininet/tests/http.c:265:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == strlen(exbuf)+1, "unexpected size %d for \"%s\"\n", size, exbuf); data/wine-5.0/dlls/wininet/tests/http.c:272:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == strlen(exbuf)*sizeof(WCHAR), "unexpected size %d for \"%s\"\n", size, exbuf); data/wine-5.0/dlls/wininet/tests/http.c:278:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == (strlen(exbuf)+1)*sizeof(WCHAR), "unexpected size %d for \"%s\"\n", size, exbuf); data/wine-5.0/dlls/wininet/tests/http.c:328:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(size == strlen(expected_url), "size = %u\n", size); data/wine-5.0/dlls/wininet/tests/http.c:378:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwStatusInformationLength == strlen(lpvStatusInformation)+1, "unexpected size %u\n", data/wine-5.0/dlls/wininet/tests/http.c:387:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(dwStatusInformationLength == strlen(lpvStatusInformation)+1, "unexpected size %u\n", data/wine-5.0/dlls/wininet/tests/http.c:545:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = InternetReadFile(req, buf, buf_size, &read); data/wine-5.0/dlls/wininet/tests/http.c:548:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/dlls/wininet/tests/http.c:667:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). post_len = strlen(test->post_data); data/wine-5.0/dlls/wininet/tests/http.c:1810:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(buffer) * sizeof(CHAR), "Length wrong\n"); data/wine-5.0/dlls/wininet/tests/http.c:1813:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strcmp(buffer + strlen(buffer) - 4, "\r\n\r\n")==0, "Invalid end of headers string\n"); data/wine-5.0/dlls/wininet/tests/http.c:2394:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send(c, send_buffer, strlen(send_buffer), 0); data/wine-5.0/dlls/wininet/tests/http.c:2481:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send(c, buffer, strlen(buffer), 0); data/wine-5.0/dlls/wininet/tests/http.c:2491:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send(c, msg, strlen(msg), 0); data/wine-5.0/dlls/wininet/tests/http.c:2703:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2711:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2726:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2743:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2754:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(useragent) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2761:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(useragent), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2787:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2794:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(username), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2820:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(password) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2827:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(password), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2844:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). url = HeapAlloc(GetProcessHeap(), 0, strlen(url_fmt) + 11); data/wine-5.0/dlls/wininet/tests/http.c:2852:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(url) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2859:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(url), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2867:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == (strlen(url) + 1) * sizeof(WCHAR), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2874:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(url), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2886:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(password) + 1, "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:2893:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz == strlen(password), "got %u\n", sz); data/wine-5.0/dlls/wininet/tests/http.c:3552:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, size; data/wine-5.0/dlls/wininet/tests/http.c:3572:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3572:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3573:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3583:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3583:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3584:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3598:52: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3598:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf, sizeof(buf), &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3599:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3619:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, size; data/wine-5.0/dlls/wininet/tests/http.c:3648:62: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3648:71: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3649:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3677:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3677:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3678:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3707:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3707:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3708:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3722:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3722:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3723:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3755:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3755:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3756:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:3786:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3786:73: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while(InternetReadFile(req, buf+size, sizeof(buf)-1-size, &read) && read) data/wine-5.0/dlls/wininet/tests/http.c:3787:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size += read; data/wine-5.0/dlls/wininet/tests/http.c:5042:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). send(server_socket, msg, strlen(msg), 0); data/wine-5.0/dlls/wininet/tests/http.c:5165:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(received_response_size == strlen(response), "received_response_size = %u\n", received_response_size); data/wine-5.0/dlls/wininet/tests/http.c:5202:75: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _readex_expect_sync_data_len(line, req, flags, buf, buf_size, exdata, strlen(exdata), expect_receive); data/wine-5.0/dlls/wininet/tests/http.c:5235:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _read_expect_sync_data_len(line, req, buf, buf_size, exdata, strlen(exdata)); data/wine-5.0/dlls/wininet/tests/http.c:5274:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok_(__FILE__,line)(!memcmp(buf, exdata, strlen(exdata)), "unexpected buffer data\n"); data/wine-5.0/dlls/wininet/tests/http.c:5285:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). exdata, exdata ? strlen(exdata) : buf->dwBufferLength, expected_req_error, data/wine-5.0/dlls/wininet/tests/http.c:5316:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(exdata); data/wine-5.0/dlls/wininet/tests/http.c:5340:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(exdata); data/wine-5.0/dlls/wininet/tests/http.c:5644:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memset(long_path+strlen(long_path), 'x', sizeof(long_path)-strlen(long_path)); data/wine-5.0/dlls/wininet/tests/http.c:5644:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memset(long_path+strlen(long_path), 'x', sizeof(long_path)-strlen(long_path)); data/wine-5.0/dlls/wininet/tests/http.c:5660:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(url); data/wine-5.0/dlls/wininet/tests/http.c:6370:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(cert->lpszSubjectInfo && strlen(cert->lpszSubjectInfo) > 1, "expected a non-empty subject name\n"); data/wine-5.0/dlls/wininet/tests/http.c:6371:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(cert->lpszIssuerInfo && strlen(cert->lpszIssuerInfo) > 1, "expected a non-empty issuer name\n"); data/wine-5.0/dlls/wininet/tests/http.c:6617:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszSubjectInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6620:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszIssuerInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6669:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszSubjectInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6672:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszIssuerInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6701:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszSubjectInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6704:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(certificate_structA->lpszIssuerInfo) > 1, data/wine-5.0/dlls/wininet/tests/http.c:6841:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(size == strlen(str)+1, "unexpected size %u\n", size); data/wine-5.0/dlls/wininet/tests/http.c:7190:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b.dwHeadersLength = strlen( b.lpcszHeader ); data/wine-5.0/dlls/wininet/tests/http.c:7191:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b.dwBufferTotal = nd->data ? strlen( nd->data ) : 0; data/wine-5.0/dlls/wininet/tests/http.c:7222:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen( nd->data ); data/wine-5.0/dlls/wininet/tests/internet.c:186:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len=strlen(useragent)+1; data/wine-5.0/dlls/wininet/tests/internet.c:189:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(useragent)+1,"Got wrong user agent length %d instead of %d\n",len,lstrlenA(useragent)); data/wine-5.0/dlls/wininet/tests/internet.c:193:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len=strlen(useragent)+1; data/wine-5.0/dlls/wininet/tests/internet.c:200:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(useragent),"Got wrong user agent length %d instead of %d\n",len,lstrlenA(useragent)); data/wine-5.0/dlls/wininet/tests/internet.c:209:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(useragent) + 1,"Got wrong user agent length %d instead of %d\n", len, lstrlenA(useragent) + 1); data/wine-5.0/dlls/wininet/tests/internet.c:414:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == 18, "strlen(buffer) = %u\n", lstrlenA(buffer)); data/wine-5.0/dlls/wininet/tests/internet.c:638:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = long_url + strlen(long_url); data/wine-5.0/dlls/wininet/tests/internet.c:1637:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(buffer); data/wine-5.0/dlls/wininet/tests/internet.c:1645:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sz = strlen(buffer); data/wine-5.0/dlls/wininet/tests/internet.c:1659:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz - 1 == strlen(buffer), "Expected %u bytes, got %u\n", sz - 1, lstrlenA(buffer)); data/wine-5.0/dlls/wininet/tests/internet.c:1666:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(sz / 2 - 1 == strlen(buffer), "Expected %u bytes, got %u\n", sz / 2 - 1, lstrlenA(buffer)); data/wine-5.0/dlls/wininet/tests/internet.c:1680:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(strlen(buffer) == 1, "Expected 1 byte, got %u\n", lstrlenA(buffer)); data/wine-5.0/dlls/wininet/tests/url.c:207:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t buf_len = strlen(test->url); data/wine-5.0/dlls/wininet/tests/url.c:214:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b = InternetCrackUrlA(test->url, strlen(test->url), 0, &url); data/wine-5.0/dlls/wininet/tests/url.c:378:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b = InternetCrackUrlA(test->url, strlen(test->url), 0, &url); data/wine-5.0/dlls/wininet/tests/url.c:381:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwSchemeLength == strlen(test->exp_scheme), "[%s] Got wrong scheme length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:389:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwHostNameLength == strlen(test->exp_hostname), "[%s] Got wrong hostname length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:397:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwUserNameLength == strlen(test->exp_username), "[%s] Got wrong username length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:402:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwPasswordLength == strlen(test->exp_password), "[%s] Got wrong password length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:407:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwUrlPathLength == strlen(test->exp_urlpath), "[%s] Got wrong urlpath length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:412:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(url.dwExtraInfoLength == strlen(test->exp_extrainfo), "[%s] Got wrong extrainfo length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:436:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwSchemeLength == strlen(test->exp_scheme), "[%s] Got wrong scheme length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:444:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwHostNameLength == strlen(test->exp_hostname), "[%s] Got wrong hostname length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:452:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwUserNameLength == strlen(test->exp_username), "[%s] Got wrong username length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:457:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwPasswordLength == strlen(test->exp_password), "[%s] Got wrong password length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:462:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwUrlPathLength == strlen(test->exp_urlpath), "[%s] Got wrong urlpath length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:467:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(urlw.dwExtraInfoLength == strlen(test->exp_extrainfo), "[%s] Got wrong extrainfo length: %d\n", data/wine-5.0/dlls/wininet/tests/url.c:509:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b = InternetCrackUrlA(long_url, strlen(long_url), 0, &url_comp); data/wine-5.0/dlls/wininet/tests/url.c:514:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b = InternetCrackUrlA(long_url, strlen(long_url), 0, &url_comp); data/wine-5.0/dlls/wininet/tests/url.c:841:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwSchemeLength = strlen(lpUrlComponents->lpszScheme); data/wine-5.0/dlls/wininet/tests/url.c:844:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwHostNameLength = strlen(lpUrlComponents->lpszHostName); data/wine-5.0/dlls/wininet/tests/url.c:847:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwUserNameLength = strlen(lpUrlComponents->lpszUserName); data/wine-5.0/dlls/wininet/tests/url.c:849:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwPasswordLength = strlen(lpUrlComponents->lpszPassword); data/wine-5.0/dlls/wininet/tests/url.c:851:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwUrlPathLength = strlen(lpUrlComponents->lpszUrlPath); data/wine-5.0/dlls/wininet/tests/url.c:853:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpUrlComponents->dwExtraInfoLength = strlen(lpUrlComponents->lpszExtraInfo); data/wine-5.0/dlls/wininet/tests/url.c:1029:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwSchemeLength = strlen(urlComp.lpszScheme); data/wine-5.0/dlls/wininet/tests/url.c:1030:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL6) + 1; data/wine-5.0/dlls/wininet/tests/url.c:1034:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL6), "Expected len %d, got %d\n", lstrlenA(CREATE_URL6) + 1, len); data/wine-5.0/dlls/wininet/tests/url.c:1040:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwSchemeLength = strlen(urlComp.lpszScheme); data/wine-5.0/dlls/wininet/tests/url.c:1067:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL1); data/wine-5.0/dlls/wininet/tests/url.c:1071:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL1), "Expected len %d, got %d\n", lstrlenA(CREATE_URL1), len); data/wine-5.0/dlls/wininet/tests/url.c:1092:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL8); data/wine-5.0/dlls/wininet/tests/url.c:1096:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL8), "Expected len %d, got %d\n", lstrlenA(CREATE_URL8), len); data/wine-5.0/dlls/wininet/tests/url.c:1107:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL9); data/wine-5.0/dlls/wininet/tests/url.c:1112:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL9), "Expected len %d, got %d\n", lstrlenA(CREATE_URL9), len); data/wine-5.0/dlls/wininet/tests/url.c:1122:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL10); data/wine-5.0/dlls/wininet/tests/url.c:1127:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL10), "Expected len %d, got %d\n", lstrlenA(CREATE_URL10), len); data/wine-5.0/dlls/wininet/tests/url.c:1136:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL11); data/wine-5.0/dlls/wininet/tests/url.c:1140:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL11), "Expected len %d, got %d\n", lstrlenA(CREATE_URL11), len); data/wine-5.0/dlls/wininet/tests/url.c:1153:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(CREATE_URL12); data/wine-5.0/dlls/wininet/tests/url.c:1157:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL12), "Expected len %d, got %d\n", lstrlenA(CREATE_URL12), len); data/wine-5.0/dlls/wininet/tests/url.c:1165:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwSchemeLength = strlen(urlComp.lpszScheme); data/wine-5.0/dlls/wininet/tests/url.c:1167:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwHostNameLength = strlen(urlComp.lpszHostName); data/wine-5.0/dlls/wininet/tests/url.c:1170:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwUrlPathLength = strlen(urlComp.lpszUrlPath); data/wine-5.0/dlls/wininet/tests/url.c:1172:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). urlComp.dwExtraInfoLength = strlen(urlComp.lpszExtraInfo); data/wine-5.0/dlls/wininet/tests/url.c:1177:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(CREATE_URL13), "Got len %u\n", len); data/wine-5.0/dlls/wininet/tests/urlcache.c:421:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPBYTE)ok_header, strlen(ok_header), NULL, NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:524:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:639:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:670:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). STICKY_CACHE_ENTRY, (LPBYTE)ok_header, strlen(ok_header), "html", data/wine-5.0/dlls/wininet/tests/urlcache.c:678:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPBYTE)ok_header, strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:688:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPBYTE)ok_header, strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:719:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPBYTE)ok_header, strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:763:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (LPBYTE)ok_header, strlen(ok_header), "html", NULL); data/wine-5.0/dlls/wininet/tests/urlcache.c:817:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(long_url); data/wine-5.0/dlls/wininet/urlcache.c:696:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int cache_prefix_len = strlen(cache_prefix); data/wine-5.0/dlls/wininet/urlcache.c:841:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int prefix_len = strlen(container->cache_prefix); data/wine-5.0/dlls/wininet/urlcache.c:1055:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_name_len = strlen(szLocalFileName) + 1 /* for nul-terminator */; data/wine-5.0/dlls/wininet/urlcache.c:1307:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). url_len = strlen((LPCSTR)url_entry+url_entry->url_off) + 1; data/wine-5.0/dlls/wininet/urlcache.c:1372:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ext_len = strlen((LPCSTR)url_entry+url_entry->file_extension_off) + 1; data/wine-5.0/dlls/wininet/urlcache.c:2939:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = DWORD_ALIGN(size + strlen(url) + 1); data/wine-5.0/dlls/wininet/urlcache.c:2942:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = DWORD_ALIGN(size + strlen(local_file_name) + 1); data/wine-5.0/dlls/wininet/urlcache.c:2948:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(file_ext && (file_ext_off = strlen(file_ext))) { data/wine-5.0/dlls/wininet/urlcache.c:3086:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dwHeaderSize = strlen(header_info); data/wine-5.0/dlls/wininet/urlcache.c:3179:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). stream = heap_alloc(sizeof(stream_handle) + strlen(lpszUrlName) * sizeof(CHAR)); data/wine-5.0/dlls/wininet/utility.c:262:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info_len = strlen(new_info)+1; data/wine-5.0/dlls/winmm/lolvldrv.c:465:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpDrv->drvname = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(drvRegName) + 1), drvRegName); data/wine-5.0/dlls/winmm/tests/mci.c:1018:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(buf); data/wine-5.0/dlls/winmm/tests/mcicda.c:568:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for ( ; strlen(drive); drive[strlen(drive)-1] = 0) data/wine-5.0/dlls/winmm/tests/mcicda.c:568:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for ( ; strlen(drive); drive[strlen(drive)-1] = 0) data/wine-5.0/dlls/winmm/tests/midi.c:431:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(capsA.szPname, fluidsynth_prefix, strlen(fluidsynth_prefix)) || data/wine-5.0/dlls/winmm/tests/midi.c:974:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(capsA.szPname, fluidsynth_prefix, strlen(fluidsynth_prefix)) || data/wine-5.0/dlls/winmm/tests/mixer.c:50:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flags, "|"); data/wine-5.0/dlls/winmm/tests/mixer.c:58:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flags, "|"); data/wine-5.0/dlls/winmm/tests/mixer.c:161:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flags, "|"); data/wine-5.0/dlls/winmm/tests/mixer.c:169:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(flags, "|"); data/wine-5.0/dlls/winmm/tests/mmio.c:941:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/dlls/winmm/tests/mmio.c:1000:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ok(ReadFile(h, buf, sizeof(buf), &read, NULL), "ReadFile failed\n"); data/wine-5.0/dlls/winmm/tests/wave.c:287:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:292:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:297:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:302:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:307:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:312:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:317:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:322:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, "|"); data/wine-5.0/dlls/winmm/tests/wave.c:339:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, " "); data/wine-5.0/dlls/winmm/tests/wave.c:344:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, " "); data/wine-5.0/dlls/winmm/tests/wave.c:349:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, " "); data/wine-5.0/dlls/winmm/tests/wave.c:354:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, " "); data/wine-5.0/dlls/winmm/tests/wave.c:361:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (!first) strcat(msg, " "); data/wine-5.0/dlls/winmm/tests/wave.c:1725:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(exts, "."); data/wine-5.0/dlls/winsock.dll16/socket.c:120:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j += (item_size) ? item_size : strlen(l[i]) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:136:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int count = item_size ? item_size : strlen(l_src[i]) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:197:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(he->h_name) + 1 + data/wine-5.0/dlls/winsock.dll16/socket.c:219:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:236:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(pe->p_name) + 1 + data/wine-5.0/dlls/winsock.dll16/socket.c:256:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:270:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(se->s_proto) + 1 + data/wine-5.0/dlls/winsock.dll16/socket.c:271:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(se->s_name) + 1 + data/wine-5.0/dlls/winsock.dll16/socket.c:291:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:295:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:788:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:828:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:849:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(proto) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:871:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len1 = strlen(name) + 1; data/wine-5.0/dlls/winsock.dll16/socket.c:872:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len2 = strlen(proto) + 1; data/wine-5.0/dlls/winspool.drv/info.c:572:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *buf = HeapAlloc(GetProcessHeap(),0,strlen(name)+strlen(devname)+strlen(",WINEPS.DRV,LPR:")+1); data/wine-5.0/dlls/winspool.drv/info.c:572:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *buf = HeapAlloc(GetProcessHeap(),0,strlen(name)+strlen(devname)+strlen(",WINEPS.DRV,LPR:")+1); data/wine-5.0/dlls/winspool.drv/info.c:572:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *buf = HeapAlloc(GetProcessHeap(),0,strlen(name)+strlen(devname)+strlen(",WINEPS.DRV,LPR:")+1); data/wine-5.0/dlls/winspool.drv/info.c:578:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA(hkey, "Device", 0, REG_SZ, (LPBYTE)buf, strlen(buf) + 1); data/wine-5.0/dlls/winspool.drv/info.c:678:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while ((num = read( fds[0], buf, sizeof(buf) )) != 0) data/wine-5.0/dlls/winspool.drv/info.c:846:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unix_name, strlen( unix_name ) + 1 ); data/wine-5.0/dlls/winspool.drv/info.c:1167:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_len = strlen(pent); data/wine-5.0/dlls/winspool.drv/info.c:1203:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). e = prettyname + strlen(prettyname); data/wine-5.0/dlls/winspool.drv/info.c:1211:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(devname)>=CCHDEVICENAME-1) data/wine-5.0/dlls/winspool.drv/info.c:1213:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(devname)>=CCHDEVICENAME-1) { data/wine-5.0/dlls/winspool.drv/info.c:1218:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). port = HeapAlloc(GetProcessHeap(),0,strlen("LPR:")+strlen(name)+1); data/wine-5.0/dlls/winspool.drv/info.c:1218:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). port = HeapAlloc(GetProcessHeap(),0,strlen("LPR:")+strlen(name)+1); data/wine-5.0/dlls/winspool.drv/info.c:1327:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pent=HeapReAlloc(GetProcessHeap(),0,pent,strlen(pent)+strlen(start)+1); data/wine-5.0/dlls/winspool.drv/info.c:1327:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pent=HeapReAlloc(GetProcessHeap(),0,pent,strlen(pent)+strlen(start)+1); data/wine-5.0/dlls/winspool.drv/info.c:1330:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pent=HeapAlloc(GetProcessHeap(),0,strlen(start)+1); data/wine-5.0/dlls/winspool.drv/info.c:8234:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while((no_read = read(file_fd, buf, sizeof(buf))) > 0) data/wine-5.0/dlls/winspool.drv/info.c:8306:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp( buf, ps_adobe, strlen( ps_adobe ) )) goto end; data/wine-5.0/dlls/winspool.drv/info.c:8309:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp( buf, cups_job, strlen( cups_job ) )) break; data/wine-5.0/dlls/winspool.drv/info.c:8310:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). num_options = pcupsParseOptions( buf + strlen( cups_job ), num_options, options ); data/wine-5.0/dlls/winspool.drv/info.c:8505:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while((no_read = read(in_fd, buf, sizeof(buf))) > 0) data/wine-5.0/dlls/winspool.drv/tests/info.c:2630:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). calculated += strlen(di_2->pName) + 1; data/wine-5.0/dlls/winspool.drv/tests/info.c:2632:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). calculated += strlen(di_2->pEnvironment) + 1; data/wine-5.0/dlls/winspool.drv/tests/info.c:2634:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). calculated += strlen(di_2->pDriverPath) + 1; data/wine-5.0/dlls/winspool.drv/tests/info.c:2636:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). calculated += strlen(di_2->pDataFile) + 1; data/wine-5.0/dlls/winspool.drv/tests/info.c:2638:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). calculated += strlen(di_2->pConfigFile) + 1; data/wine-5.0/dlls/wintrust/asn.c:1847:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(firstTwo) + 1; data/wine-5.0/dlls/wintrust/asn.c:1873:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bytesNeeded += strlen(str); data/wine-5.0/dlls/wldap32/bind.c:116:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pwd.bv_len = strlen( credU ); data/wine-5.0/dlls/wldap32/bind.c:208:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pwd.bv_len = strlen( credU ); data/wine-5.0/dlls/wldap32/bind.c:537:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pwd.bv_len = strlen( passwdU ); data/wine-5.0/dlls/wldap32/bind.c:630:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pwd.bv_len = strlen( passwdU ); data/wine-5.0/dlls/wldap32/compare.c:123:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). val.bv_len = strlen( valueU ); data/wine-5.0/dlls/wldap32/compare.c:256:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). val.bv_len = strlen( valueU ); data/wine-5.0/dlls/wldap32/compare.c:392:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). val.bv_len = strlen( valueU ); data/wine-5.0/dlls/wldap32/compare.c:503:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). val.bv_len = strlen( valueU ); data/wine-5.0/dlls/wldap32/init.c:141:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen( scheme ); data/wine-5.0/dlls/wldap32/init.c:148:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen( *v ); data/wine-5.0/dlls/wldap32/init.c:151:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen( port ); data/wine-5.0/dlls/wldap32/init.c:156:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += (i - 1) * strlen( sep ); data/wine-5.0/dlls/wldap32/init.c:165:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( sep ); data/wine-5.0/dlls/wldap32/init.c:171:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( scheme ); data/wine-5.0/dlls/wldap32/init.c:179:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( *v ); data/wine-5.0/dlls/wldap32/init.c:184:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen( port ); data/wine-5.0/dlls/wldap32/wldap32.h:36:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((dst = heap_alloc( (strlen( src ) + 1) * sizeof(char) ))) strcpy( dst, src ); data/wine-5.0/dlls/wnaspi32/aspi.c:321:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *lpcbBytesReturned = read( fd, lpOutBuffer, cbOutBuffer ); data/wine-5.0/dlls/wpcap/wpcap.c:213:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = heap_alloc( strlen(devs->name) + 1 ))) strcpy( ret, devs->name ); data/wine-5.0/dlls/wpcap/wpcap.c:301:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp(p, PCAP_SRC_IF_STRING, strlen(PCAP_SRC_IF_STRING))) data/wine-5.0/dlls/wpcap/wpcap.c:302:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(PCAP_SRC_IF_STRING); data/wine-5.0/dlls/wpcap/wpcap.c:303:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (!strncmp(p, PCAP_SRC_FILE_STRING, strlen(PCAP_SRC_FILE_STRING))) data/wine-5.0/dlls/wpcap/wpcap.c:305:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(PCAP_SRC_FILE_STRING); data/wine-5.0/dlls/ws2_32/async.c:111:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j += (item_size) ? item_size : strlen(l[i]) + 1; data/wine-5.0/dlls/ws2_32/async.c:126:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). k = ( item_size ) ? item_size : strlen(l_src[i]) + 1; data/wine-5.0/dlls/ws2_32/async.c:142:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). needed = sizeof(struct WS_hostent) + strlen(he->h_name) + 1 + data/wine-5.0/dlls/ws2_32/async.c:151:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(p, he->h_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:185:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). needed = sizeof(struct WS_protoent) + strlen(pe->p_name) + 1 + list_size(pe->p_aliases, 0); data/wine-5.0/dlls/ws2_32/async.c:191:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(p, pe->p_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:223:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). needed = sizeof(struct WS_servent) + strlen(se->s_proto) + strlen(se->s_name) + 2 + list_size(se->s_aliases, 0); data/wine-5.0/dlls/ws2_32/async.c:223:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). needed = sizeof(struct WS_servent) + strlen(se->s_proto) + strlen(se->s_name) + 2 + list_size(se->s_aliases, 0); data/wine-5.0/dlls/ws2_32/async.c:229:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(p, se->s_name); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:231:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(p, se->s_proto); p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/async.c:325:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name) + 1; data/wine-5.0/dlls/ws2_32/async.c:346:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = strlen(name) + 1; data/wine-5.0/dlls/ws2_32/async.c:387:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len1 = strlen(name) + 1; data/wine-5.0/dlls/ws2_32/async.c:388:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len2 = proto ? strlen(proto) + 1 : 0; data/wine-5.0/dlls/ws2_32/async.c:419:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int len = proto ? strlen(proto) + 1 : 0; data/wine-5.0/dlls/ws2_32/socket.c:524:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). struct ws2_async *read; data/wine-5.0/dlls/ws2_32/socket.c:1481:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ret = HeapAlloc( GetProcessHeap(), 0, strlen(str) + 1 ); data/wine-5.0/dlls/ws2_32/socket.c:1900:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( win->irdaServiceName, "LSAP-SEL", strlen( "LSAP-SEL" ) )) data/wine-5.0/dlls/ws2_32/socket.c:2519:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). status = WS2_async_recv( wsa->read, iosb, status ); data/wine-5.0/dlls/ws2_32/socket.c:2581:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!wsa->read) data/wine-5.0/dlls/ws2_32/socket.c:2599:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (wsa->read) release_async_io( &wsa->read->io ); data/wine-5.0/dlls/ws2_32/socket.c:2915:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!wsa->read) data/wine-5.0/dlls/ws2_32/socket.c:2940:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). HeapFree( GetProcessHeap(), 0, wsa->read ); data/wine-5.0/dlls/ws2_32/socket.c:2970:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). result = read( unix_handle, buffer, length ); data/wine-5.0/dlls/ws2_32/socket.c:6871:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ai->ai_canonname = HeapAlloc(GetProcessHeap(),0,strlen(xuai->ai_canonname)+1); data/wine-5.0/dlls/ws2_32/socket.c:7364:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/wine-5.0/dlls/ws2_32/socket.c:7836:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j += (item_size) ? item_size : strlen(l[i]) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7850:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int count = ( item_size ) ? item_size : strlen(l_src[i]) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7877:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(name) + 1 + data/wine-5.0/dlls/ws2_32/socket.c:7923:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( i = 0; p_he->h_aliases[i]; i++) alias_size += strlen(p_he->h_aliases[i]) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7940:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7951:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int size = sizeof(*ret) + strlen(name) + sizeof(char *) + list_size(aliases, 0); data/wine-5.0/dlls/ws2_32/socket.c:7957:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret->p_aliases = (char **)ret->p_name + strlen(name) / sizeof(char *) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7970:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_se->s_proto) + 1 + data/wine-5.0/dlls/ws2_32/socket.c:7971:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(p_se->s_name) + 1 + data/wine-5.0/dlls/ws2_32/socket.c:7980:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/socket.c:7984:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/dlls/ws2_32/socket.c:8503:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(AddressString) + 1); data/wine-5.0/dlls/ws2_32/socket.c:8721:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(buffer, "["); data/wine-5.0/dlls/ws2_32/socket.c:8722:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen = strlen(buffer); data/wine-5.0/dlls/ws2_32/socket.c:8729:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer+strlen(buffer), "%%%u", sockaddr6->sin6_scope_id); data/wine-5.0/dlls/ws2_32/socket.c:8731:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(buffer+strlen(buffer), "]:%u", ntohs(sockaddr6->sin6_port)); data/wine-5.0/dlls/ws2_32/socket.c:8740:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen( buffer ) + 1; data/wine-5.0/dlls/ws2_32/tests/protocol.c:90:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( strlen( buffer[i].szProtocol ), "No protocol name found\n" ); data/wine-5.0/dlls/ws2_32/tests/sock.c:4883:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name); data/wine-5.0/dlls/ws2_32/tests/sock.c:5594:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( message + len, "]" ); data/wine-5.0/dlls/ws2_32/tests/sock.c:5638:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( message + len, "]" ); data/wine-5.0/dlls/ws2_32/tests/sock.c:6957:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(args->expect) + 1, "wrong len %d\n", ret ); data/wine-5.0/dlls/ws2_32/tests/sock.c:6962:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( ret == strlen(args->expect) + 1, "wrong len %d\n", ret ); data/wine-5.0/dlls/ws2_32/tests/sock.c:6970:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( bytes == strlen(args->expect) + 1, "wrong len %d\n", bytes ); data/wine-5.0/dlls/ws2_32/tests/sock.c:6978:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok( bytes == strlen(args->expect) + 1, "wrong len %d\n", bytes ); data/wine-5.0/dlls/wsdapi/soap.c:1361:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). envelope.length = strlen(element_name); data/wine-5.0/dlls/wsdapi/tests/discovery.c:1151:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(send_udp_multicast_of_type(probe_message, strlen(probe_message), AF_INET) == TRUE, "Sending Probe message failed\n"); data/wine-5.0/dlls/xmllite/reader.c:837:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ULONG read; data/wine-5.0/dlls/xmllite/reader.c:852:92: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = ISequentialStream_Read(readerinput->stream, buffer->data + buffer->written, len, &read); data/wine-5.0/dlls/xmllite/reader.c:853:113: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE("written=%d, alloc=%d, requested=%d, read=%d, ret=0x%08x\n", buffer->written, buffer->allocated, len, read, hr); data/wine-5.0/dlls/xmllite/reader.c:856:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). buffer->written += read; data/wine-5.0/dlls/xmllite/reader.c:3419:105: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static HRESULT WINAPI xmlreader_ReadValueChunk(IXmlReader* iface, WCHAR *buffer, UINT chunk_size, UINT *read) data/wine-5.0/dlls/xmllite/reader.c:3425:61: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). TRACE("(%p)->(%p %u %p)\n", reader, buffer, chunk_size, read); data/wine-5.0/dlls/xmllite/reader.c:3435:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read) *read = len; data/wine-5.0/dlls/xmllite/tests/reader.c:230:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). stream = create_stream_on_data(xml, strlen(xml)); data/wine-5.0/dlls/xmllite/tests/reader.c:1183:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(test->name), "got %u\n", len); data/wine-5.0/dlls/xmllite/tests/reader.c:1445:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(test->name), "got %u\n", len); data/wine-5.0/dlls/xmllite/tests/reader.c:1925:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ok(len == strlen(test->name), "got %u\n", len); data/wine-5.0/dlls/xmllite/tests/writer.c:70:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(expected), size; data/wine-5.0/include/msvcrt/io.h:162:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static inline int read(int fd, void* buf, unsigned int size) { return _read(fd, buf, size); } data/wine-5.0/include/msvcrt/io.h:166:19: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). static inline int umask(int fd) { return _umask(fd); } data/wine-5.0/include/msvcrt/mbstring.h:76:24: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t __cdecl _mbslen(const unsigned char*); data/wine-5.0/include/msvcrt/mbstring.h:79:24: [1] (buffer) _mbsnbcat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. unsigned char* __cdecl _mbsnbcat(unsigned char*,const unsigned char*,size_t); data/wine-5.0/include/msvcrt/mbstring.h:84:24: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). unsigned char* __cdecl _mbsnbcpy(unsigned char*,const unsigned char*,size_t); data/wine-5.0/include/msvcrt/stdio.h:153:16: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int __cdecl fgetc(FILE*); data/wine-5.0/include/msvcrt/stdio.h:173:16: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int __cdecl getc(FILE*); data/wine-5.0/include/msvcrt/stdio.h:174:16: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int __cdecl getchar(void); data/wine-5.0/include/msvcrt/string.h:76:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t __cdecl strlen(const char*); data/wine-5.0/include/msvcrt/string.h:77:17: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. char* __cdecl strncat(char*,const char*,size_t); data/wine-5.0/include/msvcrt/string.h:80:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). char* __cdecl strncpy(char*,const char*,size_t); data/wine-5.0/include/msvcrt/string.h:120:18: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t __cdecl wcslen(const wchar_t*); data/wine-5.0/include/msvcrt/string.h:121:18: [1] (buffer) wcsncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. wchar_t* __cdecl wcsncat(wchar_t*,const wchar_t*,size_t); data/wine-5.0/include/msvcrt/string.h:123:18: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wchar_t* __cdecl wcsncpy(wchar_t*,const wchar_t*,size_t); data/wine-5.0/include/msvcrt/sys/stat.h:195:19: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). static inline int umask(int fd) { return _umask(fd); } data/wine-5.0/include/msvcrt/wchar.h:462:18: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t __cdecl wcslen(const wchar_t*); data/wine-5.0/include/msvcrt/wchar.h:463:18: [1] (buffer) wcsncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. wchar_t* __cdecl wcsncat(wchar_t*,const wchar_t*,size_t); data/wine-5.0/include/msvcrt/wchar.h:466:18: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wchar_t* __cdecl wcsncpy(wchar_t*,const wchar_t*,size_t); data/wine-5.0/include/rpcndr.h:120:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define MIDL_ascii_strlen(s) strlen(s) data/wine-5.0/include/tchar.h:39:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _strncnt(str,max) (strlen(str)>(max) ? (max) : strlen(str)) data/wine-5.0/include/tchar.h:39:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _strncnt(str,max) (strlen(str)>(max) ? (max) : strlen(str)) data/wine-5.0/include/tchar.h:67:42: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _fgettc WINE_tchar_routine(fgetc, fgetc, fgetwc) data/wine-5.0/include/tchar.h:67:59: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _fgettc WINE_tchar_routine(fgetc, fgetc, fgetwc) data/wine-5.0/include/tchar.h:75:9: [1] (buffer) _gettc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _gettc WINE_tchar_routine(getc, getc, getwc) data/wine-5.0/include/tchar.h:75:42: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _gettc WINE_tchar_routine(getc, getc, getwc) data/wine-5.0/include/tchar.h:75:59: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _gettc WINE_tchar_routine(getc, getc, getwc) data/wine-5.0/include/tchar.h:76:42: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _gettchar WINE_tchar_routine(getchar, getchar, getwchar) data/wine-5.0/include/tchar.h:76:59: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _gettchar WINE_tchar_routine(getchar, getchar, getwchar) data/wine-5.0/include/tchar.h:113:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcsclen WINE_tchar_routine(strlen, _mbslen, wcslen) data/wine-5.0/include/tchar.h:113:59: [1] (buffer) _mbslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcsclen WINE_tchar_routine(strlen, _mbslen, wcslen) data/wine-5.0/include/tchar.h:113:72: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcsclen WINE_tchar_routine(strlen, _mbslen, wcslen) data/wine-5.0/include/tchar.h:125:9: [1] (buffer) _tcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcslen WINE_tchar_routine(strlen, strlen, wcslen) data/wine-5.0/include/tchar.h:125:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcslen WINE_tchar_routine(strlen, strlen, wcslen) data/wine-5.0/include/tchar.h:125:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcslen WINE_tchar_routine(strlen, strlen, wcslen) data/wine-5.0/include/tchar.h:125:72: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _tcslen WINE_tchar_routine(strlen, strlen, wcslen) data/wine-5.0/include/tchar.h:129:9: [1] (buffer) _tcsncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. #define _tcsncat WINE_tchar_routine(strncat, _mbsnbcat, wcsncat) data/wine-5.0/include/tchar.h:129:42: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. #define _tcsncat WINE_tchar_routine(strncat, _mbsnbcat, wcsncat) data/wine-5.0/include/tchar.h:129:59: [1] (buffer) _mbsnbcat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. #define _tcsncat WINE_tchar_routine(strncat, _mbsnbcat, wcsncat) data/wine-5.0/include/tchar.h:129:72: [1] (buffer) wcsncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. #define _tcsncat WINE_tchar_routine(strncat, _mbsnbcat, wcsncat) data/wine-5.0/include/tchar.h:131:42: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. #define _tcsnccat WINE_tchar_routine(strncat, _mbsncat, wcsncat) data/wine-5.0/include/tchar.h:131:72: [1] (buffer) wcsncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or automatically resizing strings. #define _tcsnccat WINE_tchar_routine(strncat, _mbsncat, wcsncat) data/wine-5.0/include/tchar.h:133:9: [1] (buffer) _tcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:133:42: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:133:72: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:137:42: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsnccpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:137:72: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsnccpy WINE_tchar_routine(strncpy, _mbsncpy, wcsncpy) data/wine-5.0/include/tchar.h:139:9: [1] (buffer) _tcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsnbcpy, wcsncpy) data/wine-5.0/include/tchar.h:139:42: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsnbcpy, wcsncpy) data/wine-5.0/include/tchar.h:139:59: [1] (buffer) _mbsnbcpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsnbcpy, wcsncpy) data/wine-5.0/include/tchar.h:139:72: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy, _mbsnbcpy, wcsncpy) data/wine-5.0/include/tchar.h:140:9: [1] (buffer) _tcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _tcsncpy WINE_tchar_routine(strncpy_s, _mbsnbcpy_s, wcsncpy_s) data/wine-5.0/include/winbase.h:2841:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen( str ); data/wine-5.0/include/winbase.h:2870:8: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #undef strncpy data/wine-5.0/include/winbase.h:2871:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define strncpy(d,s,n) error do_not_use_strncpy_use_lstrcpynA_or_memcpy_instead data/wine-5.0/include/winbase.h:2879:13: [1] (buffer) lstrcpyn: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define lstrcpyn WINELIB_NAME_AW(lstrcpyn) data/wine-5.0/include/winbase.h:2879:38: [1] (buffer) lstrcpyn: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define lstrcpyn WINELIB_NAME_AW(lstrcpyn) data/wine-5.0/include/windowsx.h:1413:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define _fstrlen strlen data/wine-5.0/include/windowsx.h:1415:21: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. #define _fstrncat strncat data/wine-5.0/include/windowsx.h:1417:21: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). #define _fstrncpy strncpy data/wine-5.0/include/wine/port.h:345:5: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. int usleep (unsigned int useconds); data/wine-5.0/include/wine/port.h:495:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. #define usleep __WINE_NOT_PORTABLE(usleep) data/wine-5.0/include/wine/port.h:495:53: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. #define usleep __WINE_NOT_PORTABLE(usleep) data/wine-5.0/include/wine/test.h:468:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name); data/wine-5.0/libs/port/getopt.c:171:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). # if (!defined __STDC__ || !__STDC__) && !defined strlen data/wine-5.0/libs/port/getopt.c:174:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). extern int strlen (const char *); data/wine-5.0/libs/port/getopt.c:363:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = nonoption_flags_max_len = strlen (orig_str); data/wine-5.0/libs/port/getopt.c:584:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). == (unsigned int) strlen (p->name)) data/wine-5.0/libs/port/getopt.c:629:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:695:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:729:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:734:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:921:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((unsigned int) (nameend - nextchar) == strlen (p->name)) data/wine-5.0/libs/port/getopt.c:961:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:999:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:1031:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/getopt.c:1035:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nextchar += strlen (nextchar); data/wine-5.0/libs/port/mkstemps.c:72:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (template); data/wine-5.0/libs/port/pread.c:40:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((ret = read( fd, buf, count )) == -1) data/wine-5.0/libs/port/usleep.c:27:5: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. int usleep (unsigned int useconds) data/wine-5.0/libs/wine/config.c:111:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(str) + 1; data/wine-5.0/libs/wine/config.c:120:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen( str ); data/wine-5.0/libs/wine/config.c:121:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t tail = strlen( end ); data/wine-5.0/libs/wine/config.c:128:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( path ); data/wine-5.0/libs/wine/config.c:135:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(dir); data/wine-5.0/libs/wine/config.c:136:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ret = xmalloc( len + strlen(name) + 2 ); data/wine-5.0/libs/wine/config.c:212:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cwd += strlen(cwd); data/wine-5.0/libs/wine/config.c:252:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp_dir = xmalloc( strlen(tmp_env) + 1 ); data/wine-5.0/libs/wine/config.c:297:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = fputs( root + strlen(tmp_dir) + 1, stream ); data/wine-5.0/libs/wine/config.c:330:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). server_dir = xmalloc( strlen(root) + sizeof(server_dir_prefix) + 2*sizeof(dev) + 2*sizeof(ino) + 2 ); data/wine-5.0/libs/wine/config.c:333:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = server_dir + strlen(server_dir); data/wine-5.0/libs/wine/config.c:395:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). config_dir = xmalloc( strlen(home) + sizeof(server_config_dir) ); data/wine-5.0/libs/wine/config.c:453:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = basedir + strlen(basedir) - 1; data/wine-5.0/libs/wine/config.c:696:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). argv[0] = xmalloc( strlen(path) + strlen(name) + 2 ); data/wine-5.0/libs/wine/config.c:696:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). argv[0] = xmalloc( strlen(path) + strlen(name) + 2 ); data/wine-5.0/libs/wine/config.c:702:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(ptr = strchr( pos, ':' ))) ptr = pos + strlen(pos); data/wine-5.0/libs/wine/config.c:704:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( argv[0] + (ptr - pos), "/" ); data/wine-5.0/libs/wine/debug.c:118:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(name) >= sizeof(debug_options[0].name)) return; data/wine-5.0/libs/wine/debug.c:163:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(debug_classes[i]); data/wine-5.0/libs/wine/debug.c:315:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (n == -1) n = strlen(str); data/wine-5.0/libs/wine/loader.c:131:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dll_path_maxlen = strlen(dlldir); data/wine-5.0/libs/wine/loader.c:136:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dll_path_maxlen = strlen(build_dir) + sizeof("/programs"); data/wine-5.0/libs/wine/loader.c:155:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((len = strlen(default_dlldir)) > 0) data/wine-5.0/libs/wine/loader.c:173:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, &header, sizeof(header) ) != sizeof(header)) return 1; data/wine-5.0/libs/wine/loader.c:186:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, &header, sizeof(header) ) != sizeof(header)) return 1; data/wine-5.0/libs/wine/loader.c:230:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = prepend( path, build_dir, strlen(build_dir) ); data/wine-5.0/libs/wine/loader.c:238:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = prepend( path, build_dir, strlen(build_dir) ); data/wine-5.0/libs/wine/loader.c:246:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = prepend( path, dll_paths[index], strlen( dll_paths[index] )); data/wine-5.0/libs/wine/loader.c:256:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int namelen = strlen( name ); data/wine-5.0/libs/wine/loader.c:259:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). context->buffer = malloc( dll_path_maxlen + 2 * namelen + strlen(ext) + 3 ); data/wine-5.0/libs/wine/loader.c:651:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int res = read( fd, buffer, size - 1 ); data/wine-5.0/libs/wine/loader.c:1055:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(s); data/wine-5.0/libs/wine/loader.c:1080:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(s); data/wine-5.0/libs/wine/loader.c:1105:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(s); data/wine-5.0/libs/wpp/preproc.c:108:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str)+1; data/wine-5.0/libs/wpp/preproc.c:124:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cpy = pp_xmalloc(strlen(name)+1); data/wine-5.0/libs/wpp/preproc.c:151:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = pp_xmalloc( (p - parent_name) + strlen(cpy) + 1 ); data/wine-5.0/libs/wpp/preproc.c:171:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = pp_xmalloc(strlen(include_path[i]) + strlen(cpy) + 2); data/wine-5.0/libs/wpp/preproc.c:171:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = pp_xmalloc(strlen(include_path[i]) + strlen(cpy) + 2); data/wine-5.0/libs/wpp/preproc.c:178:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, "/"); data/wine-5.0/libs/wpp/preproc.c:342:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ppp->subst.text); data/wine-5.0/libs/wpp/preproc.c:351:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove(ppp->subst.text, cptr, strlen(cptr)+1); data/wine-5.0/libs/wpp/preproc.c:469:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(*(cptr = dir + strlen(dir)-1) == '/') data/wine-5.0/programs/cabarc/cabarc.c:545:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( cab.szCabPath, "\\" ); data/wine-5.0/programs/cmd/tests/batch.c:73:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *new_size = strlen(new_data); data/wine-5.0/programs/dxdiag/output.c:70:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). DWORD len = strlen(caption); data/wine-5.0/programs/eject/eject.c:130:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(argv[i]) != 2 || argv[i][1] != ':') usage(); data/wine-5.0/programs/explorer/desktop.c:827:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RegSetValueExA( hkey, "DriverError", 0, REG_SZ, (BYTE *)error, strlen(error) + 1 ); data/wine-5.0/programs/net/net.c:110:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read, total, resume_handle, rc, i; data/wine-5.0/programs/net/net.c:127:64: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). rc = NetUseEnum(NULL, 2, (BYTE **) &buffer, 2048, &read, &total, &resume_handle); data/wine-5.0/programs/net/net.c:140:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). for (i = 0, connection = buffer; i < read; ++i, ++connection) data/wine-5.0/programs/progman/dialog.c:81:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *p += strlen(*p) + 1; data/wine-5.0/programs/progman/dialog.c:83:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *p += strlen(*p) + 1; data/wine-5.0/programs/progman/group.c:122:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hName = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/group.c:123:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hGrpFile = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszGrpFile)); data/wine-5.0/programs/progman/group.c:132:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hName), lpszName, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/group.c:133:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hGrpFile), lpszGrpFile, 1 + strlen(lpszGrpFile)); data/wine-5.0/programs/progman/grpfile.c:56:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!lstrcmpiA(lpszNewName + strlen(lpszNewName) - 4, ".grp")) data/wine-5.0/programs/progman/grpfile.c:57:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lpszNewName[strlen(lpszNewName) - 1] = '\0'; data/wine-5.0/programs/progman/grpfile.c:428:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *Progs += strlen(LocalLock(program->hName)) + 1; data/wine-5.0/programs/progman/grpfile.c:429:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *Progs += strlen(LocalLock(program->hCmdLine)) + 1; data/wine-5.0/programs/progman/grpfile.c:430:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *Progs += strlen(LocalLock(program->hIconFile)) + 1; data/wine-5.0/programs/progman/grpfile.c:543:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). Progs = Title + strlen(lpszTitle) + 1; data/wine-5.0/programs/progman/grpfile.c:592:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((UINT)HFILE_ERROR == GRPFILE_WriteWithChecksum(file, lpszTitle, strlen(lpszTitle) + 1)) data/wine-5.0/programs/progman/grpfile.c:620:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(Name) + 1; data/wine-5.0/programs/progman/grpfile.c:622:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(CmdLine) + 1; data/wine-5.0/programs/progman/grpfile.c:626:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (UINT)HFILE_ERROR == GRPFILE_WriteWithChecksum(file, Name, strlen(Name) + 1) || data/wine-5.0/programs/progman/grpfile.c:627:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (UINT)HFILE_ERROR == GRPFILE_WriteWithChecksum(file, CmdLine, strlen(CmdLine) + 1) || data/wine-5.0/programs/progman/grpfile.c:628:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (UINT)HFILE_ERROR == GRPFILE_WriteWithChecksum(file, IconFile, strlen(IconFile) + 1)) data/wine-5.0/programs/progman/grpfile.c:687:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PUT_SHORT(buffer, 4, 7 + strlen(lpszWorkDir)); data/wine-5.0/programs/progman/grpfile.c:689:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (UINT)HFILE_ERROR == GRPFILE_WriteWithChecksum(file, lpszWorkDir, strlen(lpszWorkDir) + 1)) data/wine-5.0/programs/progman/main.c:456:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL newhandle = LocalAlloc(LMEM_FIXED, strlen(replace) + 1); data/wine-5.0/programs/progman/program.c:174:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hName = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/program.c:175:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hCmdLine = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszCmdLine)); data/wine-5.0/programs/progman/program.c:176:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hIconFile = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszIconFile)); data/wine-5.0/programs/progman/program.c:177:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). HLOCAL hWorkDir = LocalAlloc(LMEM_FIXED, 1 + strlen(lpszWorkDir)); data/wine-5.0/programs/progman/program.c:188:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hName), lpszName, 1 + strlen(lpszName)); data/wine-5.0/programs/progman/program.c:189:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hCmdLine), lpszCmdLine, 1 + strlen(lpszCmdLine)); data/wine-5.0/programs/progman/program.c:190:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hIconFile), lpszIconFile, 1 + strlen(lpszIconFile)); data/wine-5.0/programs/progman/program.c:191:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(LocalLock(hWorkDir), lpszWorkDir, 1 + strlen(lpszWorkDir)); data/wine-5.0/programs/reg/import.c:906:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(next); data/wine-5.0/programs/reg/tests/reg.c:826:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lenA = strlen(contents); data/wine-5.0/programs/regedit/regproc.c:990:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(next); data/wine-5.0/programs/regedit/tests/regedit.c:78:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lenA = strlen(contents); data/wine-5.0/programs/regsvr32/regsvr32.c:148:10: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(systemdir)+wcslen(exe_name)+wcslen(args)+1)*sizeof(WCHAR)); data/wine-5.0/programs/regsvr32/regsvr32.c:148:28: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(systemdir)+wcslen(exe_name)+wcslen(args)+1)*sizeof(WCHAR)); data/wine-5.0/programs/regsvr32/regsvr32.c:148:45: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (wcslen(systemdir)+wcslen(exe_name)+wcslen(args)+1)*sizeof(WCHAR)); data/wine-5.0/programs/rundll.exe16/rundll.c:35:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = GetSystemDirectoryA( NULL, 0 ) + sizeof("\\rundll32.exe ") + strlen(cmdline); data/wine-5.0/programs/rundll32/rundll32.c:144:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( entryA, "W" ); data/wine-5.0/programs/rundll32/rundll32.c:149:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entryA[strlen(entryA)-1] = 'A'; data/wine-5.0/programs/rundll32/rundll32.c:153:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). entryA[strlen(entryA)-1] = 0; data/wine-5.0/programs/schtasks/tests/schtasks.c:143:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = WriteFile(file, data, strlen(data), &size, NULL); data/wine-5.0/programs/services/tests/service.c:46:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(pipe_handle, buf, strlen(buf)+1, &written, NULL); data/wine-5.0/programs/services/tests/service.c:360:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr); data/wine-5.0/programs/services/tests/service.c:362:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr); data/wine-5.0/programs/services/tests/service.c:402:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/programs/services/tests/service.c:409:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = ReadFile(pipe_handle, buf, sizeof(buf), &read, NULL); data/wine-5.0/programs/services/tests/service.c:416:34: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). for(ptr = buf; ptr < buf+read; ptr += strlen(ptr)+1) { data/wine-5.0/programs/services/tests/service.c:416:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(ptr = buf; ptr < buf+read; ptr += strlen(ptr)+1) { data/wine-5.0/programs/taskmgr/perfdata.c:344:9: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(lpImageName, pPerfData[Index].ImageName, nMaxCount); data/wine-5.0/programs/taskmgr/perfdata.c:379:9: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(lpUserName, pPerfData[Index].UserName, nMaxCount); data/wine-5.0/programs/wineboot/wineboot.c:133:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((count = read( fd, buffer, sizeof(buffer) - 1 )) >= 0) data/wine-5.0/programs/wineboot/wineboot.c:1150:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (const BYTE *)root_devices[i].hardware_id, (strlen(root_devices[i].hardware_id) + 2) * sizeof(WCHAR))) data/wine-5.0/programs/winecfg/drive.c:199:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). WriteFile(hFile, buffer, strlen(buffer), &w, NULL); data/wine-5.0/programs/winecfg/drive.c:334:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(drives[i].unixpath) + 1; data/wine-5.0/programs/winecfg/drive.c:335:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (drives[i].device) len += strlen(drives[i].device) + 1; data/wine-5.0/programs/winecfg/drive.c:350:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/programs/winecfg/drivedetect.c:106:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!strncmp(dev,pDevNodes->szNode,strlen(pDevNodes->szNode))) data/wine-5.0/programs/winecfg/libraries.c:105:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(in); data/wine-5.0/programs/winecfg/libraries.c:221:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(ext) > 2 && !strcmp( ext + strlen(ext) - 2, "16" )) return FALSE; data/wine-5.0/programs/winecfg/libraries.c:221:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(ext) > 2 && !strcmp( ext + strlen(ext) - 2, "16" )) return FALSE; data/wine-5.0/programs/winecfg/libraries.c:265:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer = HeapAlloc( GetProcessHeap(), 0, strlen(dir_path) + 2 * sizeof(name) + 10 ); data/wine-5.0/programs/winecfg/libraries.c:269:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(de->d_name); data/wine-5.0/programs/winecfg/libraries.c:293:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len > strlen(ext[i]) && !strcmp( de->d_name + len - strlen(ext[i]), ext[i])) data/wine-5.0/programs/winecfg/libraries.c:293:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len > strlen(ext[i]) && !strcmp( de->d_name + len - strlen(ext[i]), ext[i])) data/wine-5.0/programs/winecfg/libraries.c:295:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len -= strlen( ext[i] ); data/wine-5.0/programs/winecfg/libraries.c:318:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *dir = HeapAlloc( GetProcessHeap(), 0, strlen(build_dir) + sizeof("/dlls") ); data/wine-5.0/programs/winecfg/libraries.c:382:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str = HeapAlloc(GetProcessHeap(), 0, strlen(*p) + 2 + strlen(label) + 2); data/wine-5.0/programs/winecfg/libraries.c:382:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str = HeapAlloc(GetProcessHeap(), 0, strlen(*p) + 2 + strlen(label) + 2); data/wine-5.0/programs/winecfg/libraries.c:386:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(str, ")"); data/wine-5.0/programs/winecfg/winecfg.c:290:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wpath = HeapAlloc(GetProcessHeap(), 0, (strlen(path)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:291:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wname = HeapAlloc(GetProcessHeap(), 0, (strlen(name)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:293:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:294:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:298:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wdef = HeapAlloc(GetProcessHeap(), 0, (strlen(def)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:299:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, def, -1, wdef, strlen(def)+1); data/wine-5.0/programs/winecfg/winecfg.c:410:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wpath = HeapAlloc(GetProcessHeap(), 0, (strlen(path)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:411:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:415:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wname = HeapAlloc(GetProcessHeap(), 0, (strlen(name)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:416:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:421:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wvalue = HeapAlloc(GetProcessHeap(), 0, (strlen(value)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:422:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, value, -1, wvalue, strlen(value)+1); data/wine-5.0/programs/winecfg/winecfg.c:436:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wpath = HeapAlloc(GetProcessHeap(), 0, (strlen(path)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:437:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wname = HeapAlloc(GetProcessHeap(), 0, (strlen(name)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:439:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:440:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, name, -1, wname, strlen(name)+1); data/wine-5.0/programs/winecfg/winecfg.c:574:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wpath = HeapAlloc(GetProcessHeap(), 0, (strlen(path)+1)*sizeof(WCHAR)); data/wine-5.0/programs/winecfg/winecfg.c:575:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). MultiByteToWideChar(CP_ACP, 0, path, -1, wpath, strlen(path)+1); data/wine-5.0/programs/winecfg/winecfg.c:698:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result = HeapAlloc(GetProcessHeap(), 0, strlen("AppDefaults\\") + lstrlenW(current_app)*2 + 2 /* \\ */ + strlen(section) + 1 /* terminator */); data/wine-5.0/programs/winecfg/winecfg.c:698:114: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result = HeapAlloc(GetProcessHeap(), 0, strlen("AppDefaults\\") + lstrlenW(current_app)*2 + 2 /* \\ */ + strlen(section) + 1 /* terminator */); data/wine-5.0/programs/winecfg/winecfg.c:700:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (section[0]) sprintf( result + strlen(result), "\\%s", section ); data/wine-5.0/programs/winecfg/winecfg.h:129:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *r = HeapAlloc(GetProcessHeap(), 0, strlen(s)+1); data/wine-5.0/programs/winedbg/be_arm.c:1796:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, val, 4, &sz) || sz != 4) return FALSE; data/wine-5.0/programs/winedbg/be_arm64.c:182:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, val, 4, &sz) || sz != 4) return FALSE; data/wine-5.0/programs/winedbg/be_i386.c:723:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, &ch, 1, &sz) || sz != 1) return FALSE; data/wine-5.0/programs/winedbg/be_i386.c:771:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, &ch, 1, &sz) || sz != 1) return FALSE; data/wine-5.0/programs/winedbg/be_ppc.c:115:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, val, 4, &sz) || sz != 4) return FALSE; data/wine-5.0/programs/winedbg/be_x86_64.c:624:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, &ch, 1, &sz) || sz != 1) return FALSE; data/wine-5.0/programs/winedbg/be_x86_64.c:673:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!pio->read(hProcess, addr, &ch, 1, &sz) || sz != 1) return FALSE; data/wine-5.0/programs/winedbg/break.c:265:128: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dbg_curr_process->delayed_bp[dbg_curr_process->num_delayed_bp - 1].u.symbol.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(name) + 1), name); data/wine-5.0/programs/winedbg/crashdlg.c:196:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!WriteFile( handle, crash_log, strlen(crash_log), &written, NULL )) data/wine-5.0/programs/winedbg/crashdlg.c:198:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (written != strlen(crash_log)) data/wine-5.0/programs/winedbg/debugger.h:255:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). BOOL (*read)(HANDLE, const void*, void*, SIZE_T, SIZE_T*); data/wine-5.0/programs/winedbg/debugger.h:491:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return dbg_curr_process->process_io->read(dbg_curr_process->handle, addr, buffer, len, &rlen) && len == rlen; data/wine-5.0/programs/winedbg/expr.c:789:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rtn->un.intvar.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.intvar.name) + 1), exp->un.intvar.name); data/wine-5.0/programs/winedbg/expr.c:795:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rtn->un.string.str = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.string.str) + 1), exp->un.string.str); data/wine-5.0/programs/winedbg/expr.c:798:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rtn->un.symbol.name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.symbol.name) + 1), exp->un.symbol.name); data/wine-5.0/programs/winedbg/expr.c:805:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rtn->un.structure.element_name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.structure.element_name) + 1), exp->un.structure.element_name); data/wine-5.0/programs/winedbg/expr.c:812:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rtn->un.call.funcname = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(exp->un.call.funcname) + 1), exp->un.call.funcname); data/wine-5.0/programs/winedbg/gdbproxy.c:340:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). SIZE_T read; data/wine-5.0/programs/winedbg/gdbproxy.c:348:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (gdbctx->process->process_io->read( gdbctx->process->handle, data/wine-5.0/programs/winedbg/gdbproxy.c:349:58: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). threadname->szName, name, sizeof(name), &read) && read == sizeof(name)) data/wine-5.0/programs/winedbg/gdbproxy.c:543:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(gdbctx->sock, &pkt, 1); data/wine-5.0/programs/winedbg/gdbproxy.c:634:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(buffer, "\n"); data/wine-5.0/programs/winedbg/gdbproxy.c:681:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). default: snprintf(buffer + strlen(buffer), len - strlen(buffer), ", priority = %d", prio); data/wine-5.0/programs/winedbg/gdbproxy.c:681:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). default: snprintf(buffer + strlen(buffer), len - strlen(buffer), ", priority = %d", prio); data/wine-5.0/programs/winedbg/gdbproxy.c:683:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buffer) < len); data/wine-5.0/programs/winedbg/gdbproxy.c:720:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). packet_reply_hex_to(gdbctx, src, strlen(src)); data/wine-5.0/programs/winedbg/gdbproxy.c:738:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(str); data/wine-5.0/programs/winedbg/gdbproxy.c:1211:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!gdbctx->process->process_io->read(gdbctx->process->handle, addr, data/wine-5.0/programs/winedbg/gdbproxy.c:1851:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). len = read(gdbctx->sock, gdbctx->in_buf + gdbctx->in_len, gdbctx->in_buf_alloc - gdbctx->in_len); data/wine-5.0/programs/winedbg/memory.c:250:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!unicode) ret = pcs->process_io->read(pcs->handle, addr, buffer, size, &sz); data/wine-5.0/programs/winedbg/memory.c:254:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = pcs->process_io->read(pcs->handle, addr, buffW, size * sizeof(WCHAR), &sz); data/wine-5.0/programs/winedbg/memory.c:276:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). pcs->process_io->read(pcs->handle, addr, &ad, sizeof(ad), &sz) && sz == sizeof(ad) && ad) data/wine-5.0/programs/winedbg/memory.c:282:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = pcs->process_io->read(pcs->handle, ad, buffer, size * sizeof(WCHAR), &sz) && sz != 0; data/wine-5.0/programs/winedbg/memory.c:287:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = pcs->process_io->read(pcs->handle, ad, buff, size, &sz) && sz != 0; data/wine-5.0/programs/winedbg/source.c:59:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(path) + 1; data/wine-5.0/programs/winedbg/source.c:62:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned pos = strlen(dbg_curr_process->search_path) + 1; data/wine-5.0/programs/winedbg/source.c:148:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nlen = strlen(name) + 1; data/wine-5.0/programs/winedbg/source.c:149:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (realpath) sz += strlen(realpath) + 1; data/wine-5.0/programs/winedbg/source.c:214:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(len = strlen(tmppath))) break; data/wine-5.0/programs/winedbg/stack.c:176:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = pcs->process_io->read(hProc, (const void*)(DWORD_PTR)addr, buffer, data/wine-5.0/programs/winedbg/symbol.c:86:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(buffer); data/wine-5.0/programs/winedbg/symbol.c:372:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(name) + 4 > sizeof(buffer)) data/wine-5.0/programs/winedbg/symbol.c:777:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(mi.ModuleName); data/wine-5.0/programs/winedbg/symbol.c:800:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(str) + 3 >= sizeof(buffer)) data/wine-5.0/programs/winedbg/tgt_active.c:200:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). last_name = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(si->Name) + 1), si->Name); data/wine-5.0/programs/winedbg/tgt_active.c:201:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). last_file = strcpy(HeapAlloc(GetProcessHeap(), 0, strlen(il.FileName) + 1), il.FileName); data/wine-5.0/programs/winedbg/tgt_active.c:846:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(argv[i]) + 1; data/wine-5.0/programs/winedbg/tgt_active.c:974:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tmp, "\""); data/wine-5.0/programs/winedbg/tgt_minidump.c:272:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(tmp + strlen(tmp), " (%c%d)", data/wine-5.0/programs/winedbg/tgt_minidump.c:276:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(tmp + strlen(tmp), " (%c%d)", data/wine-5.0/programs/winedbg/tgt_minidump.c:280:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else sprintf(tmp + strlen(tmp), " (%d.%d)", data/wine-5.0/programs/winedbg/winedbg.c:149:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ansi) dbg_outputA(ansi, strlen(ansi)); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:229:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = HeapAlloc( GetProcessHeap(), 0, strlen(str) + 1 ))) strcpy( ret, str ); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:258:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = HeapReAlloc(GetProcessHeap(), 0, buffer, strlen(buffer) + 1 ); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1607:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(menuPath + strlen(menuPath) - strlen(".desktop"), ".menu"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1607:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(menuPath + strlen(menuPath) - strlen(".desktop"), ".menu"); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1754:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_unix_locn = strlen (unix_locn); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1755:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len_unix_link = strlen (unix_link); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:1993:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos = strlen(*line); data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2140:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*match == NULL || matchLength < strlen(glob)) data/wine-5.0/programs/winemenubuilder/winemenubuilder.c:2143:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). matchLength = strlen(glob); data/wine-5.0/programs/winemsibuilder/main.c:179:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD low, high, read; data/wine-5.0/programs/winemsibuilder/main.c:223:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (ReadFile( handle, buffer, sizeof(buffer), &read, NULL ) && read) data/wine-5.0/programs/winemsibuilder/main.c:223:71: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (ReadFile( handle, buffer, sizeof(buffer), &read, NULL ) && read) data/wine-5.0/programs/winemsibuilder/main.c:225:42: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). hr = IStream_Write( stm, buffer, read, NULL ); data/wine-5.0/programs/winemsibuilder/main.c:227:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size.QuadPart -= read; data/wine-5.0/programs/winetest/main.c:95:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(dllname); data/wine-5.0/programs/winetest/main.c:470:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p += strlen(p) + 1; *p != '\0'; p += strlen(p) + 1) *(p - 1) = ','; data/wine-5.0/programs/winetest/main.c:470:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p += strlen(p) + 1; *p != '\0'; p += strlen(p) + 1) *(p - 1) = ','; data/wine-5.0/programs/winetest/main.c:490:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t dirlen = strlen (dir); data/wine-5.0/programs/winetest/main.c:519:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(test); data/wine-5.0/programs/winetest/main.c:597:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newpath = heap_alloc(strlen(curpath) + 1 + strlen(path) + 1); data/wine-5.0/programs/winetest/main.c:597:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newpath = heap_alloc(strlen(curpath) + 1 + strlen(path) + 1); data/wine-5.0/programs/winetest/main.c:599:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(newpath, ";"); data/wine-5.0/programs/winetest/main.c:1337:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (tag) > MAXTAGLEN) data/wine-5.0/programs/winetest/send.c:299:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(url) + 1; data/wine-5.0/programs/winetest/util.c:48:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(str) + 1; data/wine-5.0/programs/winevdm/winevdm.c:120:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). envpath_len = strlen( envpath ); data/wine-5.0/programs/winevdm/winevdm.c:173:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). 25 * (strlen(config_dir) + sizeof("mount c /dosdevices/c:")) + data/wine-5.0/programs/winevdm/winevdm.c:175:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). 6 + strlen( app ) + strlen( args ) + 20 ); data/wine-5.0/programs/winevdm/winevdm.c:175:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). 6 + strlen( app ) + strlen( args ) + 20 ); data/wine-5.0/programs/winevdm/winevdm.c:192:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (WriteFile( file, buffer, strlen(buffer), &written, NULL ) && written == strlen(buffer)) data/wine-5.0/programs/winevdm/winevdm.c:192:81: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (WriteFile( file, buffer, strlen(buffer), &written, NULL ) && written == strlen(buffer)) data/wine-5.0/programs/winevdm/winevdm.c:464:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p+=strlen(*arg); data/wine-5.0/programs/winhelp.exe16/winhelp.c:34:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = GetSystemDirectoryA( NULL, 0 ) + sizeof("\\winhlp32.exe ") + strlen(cmdline); data/wine-5.0/programs/winhlp32/hlpfile.c:494:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *next = (char *)p+strlen(p)+(leaf?5:3); data/wine-5.0/programs/winhlp32/hlpfile.c:523:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *subbuf = hlpfile->file_buffer + GET_UINT(ptr, strlen(name)+1); data/wine-5.0/programs/winhlp32/hlpfile.c:711:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return HLPFILE_RtfAddRawString(rd, str, strlen(str)); data/wine-5.0/programs/winhlp32/hlpfile.c:807:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). debugstr_a(str), debugstr_a(str + strlen(str) + 1)); data/wine-5.0/programs/winhlp32/hlpfile.c:811:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str += strlen(str) + 1; /* skip hotspot name */ data/wine-5.0/programs/winhlp32/hlpfile.c:870:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str += strlen(str) + 1; data/wine-5.0/programs/winhlp32/hlpfile.c:1187:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen(str); data/wine-5.0/programs/winhlp32/hlpfile.c:1439:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). textsize = strlen(text); data/wine-5.0/programs/winhlp32/hlpfile.c:1672:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(ptr) + 1; data/wine-5.0/programs/winhlp32/hlpfile.c:2051:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hlpfile->lpszTitle = HeapAlloc(GetProcessHeap(), 0, strlen(str) + 1); data/wine-5.0/programs/winhlp32/hlpfile.c:2065:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hlpfile->lpszTitle = HeapAlloc(GetProcessHeap(), 0, strlen(str) + 1); data/wine-5.0/programs/winhlp32/hlpfile.c:2073:69: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hlpfile->lpszCopyright = HeapAlloc(GetProcessHeap(), 0, strlen(str) + 1); data/wine-5.0/programs/winhlp32/hlpfile.c:2086:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). macro = HeapAlloc(GetProcessHeap(), 0, sizeof(HLPFILE_MACRO) + strlen(str) + 1); data/wine-5.0/programs/winhlp32/hlpfile.c:2612:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = page->lpszTitle + strlen(page->lpszTitle) + 1; data/wine-5.0/programs/winhlp32/hlpfile.c:2615:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned len = strlen(ptr); data/wine-5.0/programs/winhlp32/hlpfile.c:2773:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeof(HLPFILE) + strlen(lpszPath) + 1); data/wine-5.0/programs/winhlp32/macro.c:54:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dst=HeapAlloc(GetProcessHeap(),0,strlen(str)+1); data/wine-5.0/programs/winhlp32/macro.c:82:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = sizeof(WINHELP_BUTTON) + strlen(id) + strlen(name) + strlen(macro) + 3; data/wine-5.0/programs/winhlp32/macro.c:82:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = sizeof(WINHELP_BUTTON) + strlen(id) + strlen(name) + strlen(macro) + 3; data/wine-5.0/programs/winhlp32/macro.c:82:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = sizeof(WINHELP_BUTTON) + strlen(id) + strlen(name) + strlen(macro) + 3; data/wine-5.0/programs/winhlp32/macro.c:94:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(id) + 1; data/wine-5.0/programs/winhlp32/macro.c:98:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(name) + 1; data/wine-5.0/programs/winhlp32/macro.c:239:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = sizeof(WINHELP_BUTTON) + strlen(id) + data/wine-5.0/programs/winhlp32/macro.c:240:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen((*b)->lpszName) + strlen(macro) + 3; data/wine-5.0/programs/winhlp32/macro.c:240:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen((*b)->lpszName) + strlen(macro) + 3; data/wine-5.0/programs/winhlp32/macro.c:253:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen(id) + 1; data/wine-5.0/programs/winhlp32/macro.c:257:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += strlen((*b)->lpszName) + 1; data/wine-5.0/programs/winhlp32/macro.c:615:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = HeapAlloc(GetProcessHeap(), 0, strlen(lpszPathWindow) + 1); data/wine-5.0/programs/winhlp32/macro.c:623:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (sz = strlen(ptr + 1); sz >= 1 && ptr[sz] == ' '; sz--) ptr[sz] = '\0'; data/wine-5.0/programs/winhlp32/macro.c:845:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). page->file->help_on_file = HeapAlloc(GetProcessHeap(), 0, strlen(str) + 1); data/wine-5.0/programs/winhlp32/winhelp.c:155:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/programs/winhlp32/winhelp.c:157:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/programs/winhlp32/winhelp.c:159:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/programs/winhlp32/winhelp.c:161:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/wine-5.0/programs/winhlp32/winhelp.c:1070:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). GetTextExtentPointA(hDc, button->lpszName, strlen(button->lpszName), &textsize); data/wine-5.0/programs/winhlp32/winhelp.c:1164:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Globals.history.set[i].page->lpszTitle)); data/wine-5.0/programs/winhlp32/winhelp.c:1177:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = ptr2 ? ptr2 - ptr1 : strlen(ptr1); data/wine-5.0/programs/winhlp32/winhelp.c:1182:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). TextOutA(hDc, 0, i * tm.tmHeight, buffer, strlen(buffer)); data/wine-5.0/programs/winhlp32/winhelp.c:1211:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *next = (char*)p + strlen((char*)p) + 7; data/wine-5.0/programs/winhlp32/winhelp.c:1259:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). count = *(short*)((char *)p + strlen((char *)p) + 1); data/wine-5.0/programs/winhlp32/winhelp.c:1266:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id->offset = *(ULONG*)((char *)p + strlen((char *)p) + 3); data/wine-5.0/programs/wordpad/wordpad.c:190:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/programs/wordpad/wordpad.c:192:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!ReadFile(hFile, buffer, cb, &read, 0)) data/wine-5.0/programs/wordpad/wordpad.c:195:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). *pcb = read; data/wine-5.0/programs/wscript/tests/run.c:409:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). run_script("simple.js", script, strlen(script), expected_exit_code); data/wine-5.0/programs/wscript/tests/run.c:449:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = RegSetValueA(hkey, NULL, REG_SZ, def_value, strlen(def_value)); data/wine-5.0/programs/wusa/main.c:97:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/wine-5.0/programs/wusa/main.c:99:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (ReadFile(handle, pv, cb, &read, NULL)) data/wine-5.0/programs/wusa/main.c:100:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/wine-5.0/programs/xcopy/tests/xcopy.c:32:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wcmd = HeapAlloc(GetProcessHeap(), 0, strlen(cmd) + 1); data/wine-5.0/server/change.c:676:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(relpath); data/wine-5.0/server/change.c:754:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( inode->name ); data/wine-5.0/server/change.c:760:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( path, "/" ); data/wine-5.0/server/change.c:773:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path = inode_get_path( parent, strlen(name) ); data/wine-5.0/server/change.c:805:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). extra = strlen( segment ) + 1; data/wine-5.0/server/change.c:808:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen( *path ) + 1; data/wine-5.0/server/change.c:894:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read( unix_fd, buffer, sizeof buffer ); data/wine-5.0/server/device.c:565:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). irp->params.read.file = get_kernel_object_ptr( manager, &irp->file->obj ); data/wine-5.0/server/device.c:566:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). irp->params.read.out_size = irp->iosb->out_size; data/wine-5.0/server/device.c:621:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). params.read.type = IRP_CALL_READ; data/wine-5.0/server/device.c:622:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). params.read.key = 0; data/wine-5.0/server/device.c:623:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). params.read.pos = pos; data/wine-5.0/server/fd.c:1671:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(fd->unix_name = mem_alloc( strlen(orig->unix_name) + 1 ))) goto failed; data/wine-5.0/server/fd.c:1741:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = malloc( strlen(root->unix_name) + strlen(name) + 2 ))) data/wine-5.0/server/fd.c:1741:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ret = malloc( strlen(root->unix_name) + strlen(name) + 2 ))) data/wine-5.0/server/fd.c:1744:40: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (name[0] && name[0] != '/') strcat( ret, "/" ); data/wine-5.0/server/fd.c:2507:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). data_size_t name_len = strlen( fd->unix_name ); data/wine-5.0/server/fd.c:2538:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DECL_HANDLER(read) data/wine-5.0/server/fd.c:2547:60: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). reply->wait = async_handoff( async, fd->fd_ops->read( fd, async, req->pos ), NULL, 0 ); data/wine-5.0/server/file.c:631:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new_file = create_file( NULL, unix_name, strlen(unix_name), access, data/wine-5.0/server/file.h:60:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int (*read)(struct fd *, struct async *, file_pos_t ); data/wine-5.0/server/registry.c:1279:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pos = strlen(info->buffer); data/wine-5.0/server/registry.c:1368:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!get_file_tmp_space( info, strlen(buffer) * sizeof(WCHAR) )) return NULL; data/wine-5.0/server/registry.c:1460:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!get_file_tmp_space( info, strlen(p) * sizeof(WCHAR) )) return 0; data/wine-5.0/server/registry.c:1502:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!get_file_tmp_space( info, strlen(buffer) * sizeof(WCHAR) )) return NULL; data/wine-5.0/server/registry.c:1545:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!get_file_tmp_space( info, strlen(buffer) * sizeof(WCHAR) )) return 0; data/wine-5.0/server/registry.c:1559:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). maxlen = 1 + strlen(buffer) / 2; /* at least 2 chars for one hex byte */ data/wine-5.0/server/registry.c:1605:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!get_file_tmp_space( info, strlen(name) * sizeof(WCHAR) )) return 0; data/wine-5.0/server/registry.c:1957:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(tmp = malloc( strlen(path) + 20 ))) goto done; data/wine-5.0/server/request.c:340:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((ret = read( get_unix_fd( thread->request_fd ), &thread->req, data/wine-5.0/server/request.c:359:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read( get_unix_fd( thread->request_fd ), data/wine-5.0/server/request.c:620:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(dir); data/wine-5.0/server/request.c:621:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ret = malloc( len + strlen(name) + 2 ); data/wine-5.0/server/request.c:643:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = config_dir + strlen(config_dir); p > config_dir; p--) if (p[-1] != '/') break; data/wine-5.0/server/request.c:658:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(config_dir = malloc( strlen(home) + sizeof("/.wine") ))) fatal_error( "out of memory\n" ); data/wine-5.0/server/request.c:660:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = config_dir + strlen(config_dir); p > config_dir; p--) if (p[-1] != '/') break; data/wine-5.0/server/request.c:679:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen( config_dir ) + sizeof("/.wineserver"); data/wine-5.0/server/request.c:707:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(tmp_dir = malloc( strlen(tmp_env) + 1 ))) data/wine-5.0/server/request.c:754:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = fputs( tmp_root + strlen(tmp_dir) + 1, stream ); data/wine-5.0/server/request.c:784:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(tmp_root) + 1; data/wine-5.0/server/request.c:801:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = server_dir + strlen(server_dir); data/wine-5.0/server/request.c:909:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. usleep( 50000 * i ); data/wine-5.0/server/request.c:972:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen = sizeof(addr) - sizeof(addr.sun_path) + strlen(addr.sun_path) + 1; data/wine-5.0/server/request.c:1043:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( sync_pipe[0], &dummy, 1 ) == 1) _exit(0); data/wine-5.0/server/signal.c:172:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read( get_unix_fd( handler->fd ), &dummy, 1 ); data/wine-5.0/server/sock.c:227:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read( fd[1], &dummy, 1 ) == 0 ) data/wine-5.0/server/trace.c:343:72: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fprintf( stderr, "%s{READ,key=%08x,out_size=%u", prefix, data->read.key, data/wine-5.0/server/trace.c:344:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). data->read.out_size ); data/wine-5.0/server/trace.c:345:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). dump_uint64( ",pos=", &data->read.pos ); data/wine-5.0/server/trace.c:346:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). dump_uint64( ",file=", &data->read.file ); data/wine-5.0/tools/make_xftmpl.c:131:13: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int c = fgetc(infile); data/wine-5.0/tools/makedep.c:376:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t l = strlen( str ); data/wine-5.0/tools/makedep.c:377:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t m = strlen( end ); data/wine-5.0/tools/makedep.c:395:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (format[0] && format[strlen(format) - 1] == '\n') output_column = 0; data/wine-5.0/tools/makedep.c:561:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen( array.str[i] ) + 1; data/wine-5.0/tools/makedep.c:597:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t name_len = strlen( name ); data/wine-5.0/tools/makedep.c:598:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t ext_len = strlen( old_ext ); data/wine-5.0/tools/makedep.c:601:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = xmalloc( name_len + strlen( new_ext ) + 1 ); data/wine-5.0/tools/makedep.c:620:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = xmalloc( len + strlen( name ) + 1 ); data/wine-5.0/tools/makedep.c:649:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ret = xmalloc( pos + strlen(replace) + strlen(start + len) + 1 ); data/wine-5.0/tools/makedep.c:649:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ret = xmalloc( pos + strlen(replace) + strlen(start + len) + 1 ); data/wine-5.0/tools/makedep.c:694:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = xmalloc( 3 * dotdots + strlen( start ) + 1 ); data/wine-5.0/tools/makedep.c:808:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *p = buffer + strlen(buffer); data/wine-5.0/tools/makedep.c:814:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen(buffer); data/wine-5.0/tools/makedep.c:1257:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (p[0] == '"' && p[1] && buffer[strlen(buffer) - 1] == '"') data/wine-5.0/tools/makedep.c:1260:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer[strlen(buffer) - 1] = 0; data/wine-5.0/tools/makedep.c:1541:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen( prefix ); data/wine-5.0/tools/makedep.c:1850:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( buffer, separator, strlen(separator) )) break; data/wine-5.0/tools/makedep.c:2088:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp( make->staticlib + 3, name, strlen(name) )) return NULL; data/wine-5.0/tools/makedep.c:2089:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp( make->staticlib + 3 + strlen(name), ".a" )) return NULL; data/wine-5.0/tools/makedep.c:2552:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp( subdirs.str[j] + strlen("$(DESTDIR)"), dirs_order[i], strlen(dirs_order[i]) )) data/wine-5.0/tools/makedep.c:2552:80: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp( subdirs.str[j] + strlen("$(DESTDIR)"), dirs_order[i], strlen(dirs_order[i]) )) data/wine-5.0/tools/makedep.c:2580:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). !strncmp( make->module, make->importlib, strlen( make->importlib )) && data/wine-5.0/tools/makedep.c:2581:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). !strcmp( make->module + strlen( make->importlib ), ".dll" )) data/wine-5.0/tools/makedep.c:2593:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). output_symlink_rule( concat_paths( make->base_dir + strlen("dlls/"), lib ), dst ); data/wine-5.0/tools/makedep.c:3952:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *name = xmalloc( strlen(orig) + 13 ); data/wine-5.0/tools/makedep.c:4152:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (fwrite( buffer, 1, strlen(buffer), output_file ) != strlen(buffer)) fatal_perror( "write" ); data/wine-5.0/tools/makedep.c:4152:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (fwrite( buffer, 1, strlen(buffer), output_file ) != strlen(buffer)) fatal_perror( "write" ); data/wine-5.0/tools/makedep.c:4153:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). found = !strncmp( buffer, separator, strlen(separator) ); data/wine-5.0/tools/makedep.c:4311:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *var, *buffer = xmalloc( strlen(flags) + 1 ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:562:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). info->hdr.dfSize = start + info->hdr.fi.dfWidthBytes * ppem + strlen(face->family_name) + 1; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:606:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy( info->data + data_pos, face->family_name, strlen( face->family_name )); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:607:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). data_pos += strlen( face->family_name ) + 1; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:751:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fontdir_len += 0x74 + strlen(name) + 1; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:758:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(non_resident_name + strlen(non_resident_name), ",%d", info[i]->hdr.fi.dfPoints ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:766:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). non_resident_name_len = strlen(non_resident_name) + 4; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:775:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). resident_name_len = strlen(resident_name) + 4; data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:811:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). option_output = malloc( strlen(p) + sizeof(".fon") ); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:814:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!p) p = option_output + strlen(option_output); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:872:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fputc(strlen("FONTDIR"), ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:873:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite("FONTDIR", strlen("FONTDIR"), 1, ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:874:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fputc(strlen(resident_name), ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:875:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite(resident_name, strlen(resident_name), 1, ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:881:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fputc(strlen(non_resident_name), ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:882:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite(non_resident_name, strlen(non_resident_name), 1, ofp); data/wine-5.0/tools/sfnt2fon/sfnt2fon.c:912:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite(name, strlen(name) + 1, 1, ofp); data/wine-5.0/tools/widl/header.c:1620:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = hname + strlen(hname) - 2; data/wine-5.0/tools/widl/typegen.c:1176:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (flags >> 13) sprintf( buffer + strlen(buffer), " srv size=%u,", (flags >> 13) * 8 ); data/wine-5.0/tools/widl/typegen.c:1177:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy( buffer + strlen( buffer ) - 1, " */" ); data/wine-5.0/tools/widl/typelib.c:244:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(read(fd, buf, count) < count) data/wine-5.0/tools/widl/typelib.c:340:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = p ? p - importlib->name : strlen(importlib->name); data/wine-5.0/tools/widl/typetree.c:99:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return ptr + strlen(ptr); data/wine-5.0/tools/widl/typetree.c:105:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return ptr + strlen(ptr); data/wine-5.0/tools/widl/typetree.c:110:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned len = strlen(prefix) + strlen(suffix); data/wine-5.0/tools/widl/typetree.c:110:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned len = strlen(prefix) + strlen(suffix); data/wine-5.0/tools/widl/typetree.c:111:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned sep_len = strlen(separator); data/wine-5.0/tools/widl/typetree.c:119:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen(iter->name) + sep_len; data/wine-5.0/tools/widl/typetree.c:123:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = append_namespace(ret + strlen(ret), namespace, separator); data/wine-5.0/tools/widl/utils.c:146:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int extlen = strlen(ext); data/wine-5.0/tools/widl/utils.c:160:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namelen = strlen(name); data/wine-5.0/tools/widl/utils.c:186:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n += strlen(&line[n]); data/wine-5.0/tools/widl/utils.c:253:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = xmalloc(strlen(str)+1); data/wine-5.0/tools/widl/utils.c:259:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(str); data/wine-5.0/tools/widl/utils.c:260:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int m = strlen(end); data/wine-5.0/tools/widl/utils.c:333:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (type[0] != '#') header_size += (strlen( type ) + 1) * sizeof(unsigned short); data/wine-5.0/tools/widl/utils.c:335:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (name[0] != '#') header_size += (strlen( name ) + 1) * sizeof(unsigned short); data/wine-5.0/tools/widl/widl.c:908:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *name = xmalloc( strlen(header_name) + 8 ); data/wine-5.0/tools/widl/write_msft.c:299:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(name); data/wine-5.0/tools/widl/write_msft.c:349:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen(string); data/wine-5.0/tools/widl/write_msft.c:1206:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(value), seg_len = (len + 6 + 3) & ~0x3; data/wine-5.0/tools/winebuild/import.c:343:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = xmalloc( strlen(basename) + 5 ); data/wine-5.0/tools/winebuild/import.c:345:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strendswith( ret, ".def" )) ret[strlen(ret)-4] = 0; data/wine-5.0/tools/winebuild/import.c:349:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = xmalloc( strlen(name) + 5 ); data/wine-5.0/tools/winebuild/import.c:487:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen( file_name ); data/wine-5.0/tools/winebuild/import.c:626:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). prefix_len = strlen( name_prefix ); data/wine-5.0/tools/winebuild/import.c:638:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *p = buffer + strlen(buffer) - 1; data/wine-5.0/tools/winebuild/import.c:645:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( p, import_func_prefix, strlen(import_func_prefix) )) data/wine-5.0/tools/winebuild/import.c:646:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). add_undef_import( p + strlen( import_func_prefix ), 0 ); data/wine-5.0/tools/winebuild/import.c:647:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (!strncmp( p, import_ord_prefix, strlen(import_ord_prefix) )) data/wine-5.0/tools/winebuild/import.c:648:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). add_undef_import( p + strlen( import_ord_prefix ), 1 ); data/wine-5.0/tools/winebuild/import.c:1491:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strendswith( dll_name, ".dll" )) dll_name[strlen(dll_name) - 4] = 0; data/wine-5.0/tools/winebuild/import.c:1492:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strspn( dll_name, valid_chars ) < strlen( dll_name )) data/wine-5.0/tools/winebuild/main.c:146:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). spec->file_name = xmalloc( strlen(name) + 5 ); data/wine-5.0/tools/winebuild/main.c:232:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( platform_names[i].name, platform, strlen(platform_names[i].name) )) data/wine-5.0/tools/winebuild/parser.c:591:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len < strlen( odp->name )) data/wine-5.0/tools/winebuild/res16.c:185:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). offset += strlen(type->type->str) + 1; data/wine-5.0/tools/winebuild/res16.c:194:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). offset += strlen(res->name.str) + 1; data/wine-5.0/tools/winebuild/res16.c:212:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int i, len = strlen(str); data/wine-5.0/tools/winebuild/res16.c:221:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). put_byte( strlen(str) ); data/wine-5.0/tools/winebuild/spec16.c:79:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_WORD: strcat( buffer, "w" ); break; data/wine-5.0/tools/winebuild/spec16.c:80:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_SWORD: strcat( buffer, "s" ); break; data/wine-5.0/tools/winebuild/spec16.c:81:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_SEGSTR: strcat( buffer, "T" ); break; data/wine-5.0/tools/winebuild/spec16.c:82:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_STR: strcat( buffer, "t" ); break; data/wine-5.0/tools/winebuild/spec16.c:85:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_SEGPTR: strcat( buffer, "l" ); break; data/wine-5.0/tools/winebuild/spec16.c:88:26: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case ARG_INT128: strcat( buffer, "p" ); break; data/wine-5.0/tools/winebuild/spec16.c:209:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int i, len = strlen(string); data/wine-5.0/tools/winebuild/spec16.c:870:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namelen = strlen( spec->dll_name ); data/wine-5.0/tools/winebuild/spec32.c:139:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( str + i, "J" ); data/wine-5.0/tools/winebuild/spec32.c:141:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy( str + i, "I" ); data/wine-5.0/tools/winebuild/spec32.c:188:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen( buffer ); data/wine-5.0/tools/winebuild/spec32.c:436:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwd_size += strlen(odp->link_name) + 1; data/wine-5.0/tools/winebuild/spec32.c:466:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int namepos = strlen(spec->file_name) + 1; data/wine-5.0/tools/winebuild/spec32.c:472:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namepos += strlen(spec->names[i]->name) + 1; data/wine-5.0/tools/winebuild/spec32.c:1084:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, &header, sizeof(header) ) == sizeof(header) && !memcmp( &header.e_magic, "MZ", 2 )) data/wine-5.0/tools/winebuild/utils.c:124:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(str); data/wine-5.0/tools/winebuild/utils.c:125:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int m = strlen(end); data/wine-5.0/tools/winebuild/utils.c:320:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0; i < dirs.count; i++) maxlen = max( maxlen, strlen(dirs.str[i]) + 2 ); data/wine-5.0/tools/winebuild/utils.c:321:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file = xmalloc( maxlen + strlen(prefix) + strlen(name) + sizeof(EXEEXT) + 1 ); data/wine-5.0/tools/winebuild/utils.c:321:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file = xmalloc( maxlen + strlen(prefix) + strlen(name) + sizeof(EXEEXT) + 1 ); data/wine-5.0/tools/winebuild/utils.c:326:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = file + strlen(file); data/wine-5.0/tools/winebuild/utils.c:332:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/wine-5.0/tools/winebuild/utils.c:510:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(ext = strchr( basename, '.' ))) ext = prefix + strlen(prefix); data/wine-5.0/tools/winebuild/utils.c:511:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name = xmalloc( sizeof("/tmp/") + (ext - prefix) + sizeof(".XXXXXX") + strlen(suffix) ); data/wine-5.0/tools/winebuild/utils.c:516:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((fd = mkstemps( name, strlen(suffix) )) == -1) data/wine-5.0/tools/winebuild/utils.c:522:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((fd = mkstemps( name, strlen(suffix) )) == -1) data/wine-5.0/tools/winebuild/utils.c:565:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, buffer, st.st_size ) != st.st_size) fatal_error( "Cannot read %s\n", file ); data/wine-5.0/tools/winedump/debug.c:695:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((ptr > strs_end) || (ptr + strlen(ptr) > strs_end)) data/wine-5.0/tools/winedump/debug.c:699:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (ptr[strlen(ptr) - 1] == '\\') data/wine-5.0/tools/winedump/debug.c:706:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned len = strlen(ptr); data/wine-5.0/tools/winedump/debug.c:707:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(stabbuff) + len > stabbufflen) data/wine-5.0/tools/winedump/dump.c:98:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str); data/wine-5.0/tools/winedump/dump.c:156:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = tmp = dump_want_n(strlen(symbol.arg_text[0]) + 1); data/wine-5.0/tools/winedump/dump.c:163:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(symbol.return_text) + 3 /* ' __' */ + data/wine-5.0/tools/winedump/dump.c:164:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(symbol_get_call_convention(&symbol)) + 1 /* ' ' */+ data/wine-5.0/tools/winedump/dump.c:165:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(symbol.function_name) + 1 /* ')' */; data/wine-5.0/tools/winedump/dump.c:169:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += (i > start ? 2 /* ", " */ : 0 /* "" */) + strlen(symbol.arg_text[i]); data/wine-5.0/tools/winedump/dump.c:188:17: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(tmp, ")"); data/wine-5.0/tools/winedump/dump.c:261:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if ((unsigned long)read( fd, dump_base, dump_total_len ) != dump_total_len) fatal( "Cannot read file" ); data/wine-5.0/tools/winedump/lib.c:69:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printf(" DLL name : %s\n", name + strlen(name) + 1); data/wine-5.0/tools/winedump/lib.c:217:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name += strlen(name) + 1; data/wine-5.0/tools/winedump/lib.c:241:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name += strlen(name) + 1; data/wine-5.0/tools/winedump/lnk.c:382:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(comp_str, "?"); data/wine-5.0/tools/winedump/main.c:46:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(str); data/wine-5.0/tools/winedump/main.c:145:15: [1] (buffer) fscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. while (1 == fscanf(f, "%255s", symstring)) /* keep count with [<width>] above */ data/wine-5.0/tools/winedump/main.c:148:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!(symbolp = malloc(sizeof(*symbolp) + strlen(symstring)))) data/wine-5.0/tools/winedump/main.c:283:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (((opt->has_arg == 1) && !strncmp (*ptr, opt->name, strlen (opt->name))) || data/wine-5.0/tools/winedump/main.c:286:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). arg = *ptr + strlen (opt->name); data/wine-5.0/tools/winedump/main.c:337:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ptr); data/wine-5.0/tools/winedump/minidump.c:271:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(tmp + strlen(tmp), "%c%d", 'A' + ((msi->ProcessorRevision>>4)&0xf)-0x0a, msi->ProcessorRevision&0xf); data/wine-5.0/tools/winedump/minidump.c:273:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(tmp + strlen(tmp), "%c%d", 'A' + HIBYTE(msi->ProcessorRevision), LOBYTE(msi->ProcessorRevision)); data/wine-5.0/tools/winedump/minidump.c:275:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else sprintf(tmp + strlen(tmp), "%d.%d", HIBYTE(msi->ProcessorRevision), LOBYTE(msi->ProcessorRevision)); data/wine-5.0/tools/winedump/misc.c:41:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen (t); data/wine-5.0/tools/winedump/misc.c:72:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += strlen (t); data/wine-5.0/tools/winedump/misc.c:124:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). oldlen = strlen (oldstr); data/wine-5.0/tools/winedump/misc.c:125:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). newlen = strlen (newstr); data/wine-5.0/tools/winedump/misc.c:126:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove (q = p + newlen, p + oldlen, strlen (p + oldlen) + 1); data/wine-5.0/tools/winedump/misc.c:142:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp (str, match, strlen (match))) data/wine-5.0/tools/winedump/misc.c:145:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str += strlen (match); data/wine-5.0/tools/winedump/msc.c:219:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. case 0: strcpy(tmp, ""); break; data/wine-5.0/tools/winedump/msc.c:226:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. case 0: strcat(tmp, ""); break; data/wine-5.0/tools/winedump/msc.c:247:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define X(s) {if (pos) tmp[pos++] = ';'; strcpy(tmp + pos, s); pos += strlen(s);} data/wine-5.0/tools/winedump/msc.c:311:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + leaf_len + strlen(cstr) + 1; data/wine-5.0/tools/winedump/msc.c:338:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + leaf_len + strlen(cstr) + 1; data/wine-5.0/tools/winedump/msc.c:394:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + 4 + (strlen(fieldtype->onemethod_virt_v3.name) + 1); data/wine-5.0/tools/winedump/msc.c:402:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(fieldtype->onemethod_v3.name) + 1); data/wine-5.0/tools/winedump/msc.c:425:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(fieldtype->method_v3.name) + 1); data/wine-5.0/tools/winedump/msc.c:449:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(fieldtype->stmember_v3.name) + 1); data/wine-5.0/tools/winedump/msc.c:540:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += 2 + 2 + 4 + (strlen(fieldtype->nesttype_v3.name) + 1); data/wine-5.0/tools/winedump/msc.c:1186:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printf("\t\t%s => ", ptr); ptr += strlen(ptr) + 1; data/wine-5.0/tools/winedump/msc.c:1187:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). printf("%s\n", ptr); ptr += strlen(ptr) + 1; data/wine-5.0/tools/winedump/msc.c:1283:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while (*(x1 = x2 + strlen(x2) + 1)) data/wine-5.0/tools/winedump/msc.c:1285:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). x2 = x1 + strlen(x1) + 1; data/wine-5.0/tools/winedump/msc.c:1312:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). x2 = x1 + strlen(x1) + 1; data/wine-5.0/tools/winedump/msc.c:1315:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). x1 = x2 + strlen(x2) + 1; data/wine-5.0/tools/winedump/msmangle.c:500:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). stripped[ strlen (stripped) - 2] = '\0'; /* otherwise, strip it */ data/wine-5.0/tools/winedump/ne.c:342:9: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat( buffer, ")" ); data/wine-5.0/tools/winedump/pdb.c:362:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr = (const char*)imp + sizeof(*imp) + strlen(imp->filename); data/wine-5.0/tools/winedump/pdb.c:377:70: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). imp = (const PDB_SYMBOL_IMPORT*)(first + ((ptr - first + strlen(ptr) + 1 + 3) & ~3)); data/wine-5.0/tools/winedump/pdb.c:558:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_name += strlen(file_name) + 1; data/wine-5.0/tools/winedump/pdb.c:559:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file = (char*)((DWORD_PTR)(file_name + strlen(file_name) + 1 + 3) & ~3); data/wine-5.0/tools/winedump/pdb.c:688:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr += (strlen(ptr) + 1 + 3) & ~3; data/wine-5.0/tools/winedump/pe.c:2152:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dump_strA( entry->Text, strlen(str) ); data/wine-5.0/tools/winedump/search.c:130:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (iter[strlen (sym->symbol)] == ' ' || data/wine-5.0/tools/winedump/search.c:131:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). iter[strlen (sym->symbol)] == '(')) data/wine-5.0/tools/winedump/search.c:146:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). iter += strlen (sym->symbol); data/wine-5.0/tools/winedump/symbol.c:301:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (str [strlen (str) - 1] == ' ') data/wine-5.0/tools/winedump/symbol.c:302:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str [strlen (str) - 1] = '\0'; /* no trailing space */ data/wine-5.0/tools/winedump/symbol.c:305:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove (str, str + 1, strlen (str)); /* No leading spaces */ data/wine-5.0/tools/winedump/tlb.c:572:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fwrite(buf, 1, strlen(buf), stdout); data/wine-5.0/tools/winedump/tlb.c:1198:21: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. if (buf[0]) strcat(buf, " "); data/wine-5.0/tools/winedump/tlb.c:1199:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buf) + strlen(p) + 1 <= buf_size); data/wine-5.0/tools/winedump/tlb.c:1199:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). assert(strlen(buf) + strlen(p) + 1 <= buf_size); data/wine-5.0/tools/winegcc/utils.c:78:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(str); data/wine-5.0/tools/winegcc/utils.c:79:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int m = strlen(end); data/wine-5.0/tools/winegcc/utils.c:221:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cnt = read(fd, buf, sizeof(buf)); data/wine-5.0/tools/winegcc/winegcc.c:286:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fd = mkstemps( tmp, strlen(suffix) ); data/wine-5.0/tools/winegcc/winegcc.c:295:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fd = mkstemps( tmp, strlen(suffix) ); data/wine-5.0/tools/winegcc/winegcc.c:511:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read( fd, header, sizeof(header) ) == sizeof(header)) data/wine-5.0/tools/winegcc/winegcc.c:555:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). build_len = strlen( build_multiarch ); data/wine-5.0/tools/winegcc/winegcc.c:556:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). target_len = strlen( target_multiarch ); data/wine-5.0/tools/winegcc/winegcc.c:560:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *p, *buffer = xmalloc( strlen(root) + strlen(stdlibpath[i]) + data/wine-5.0/tools/winegcc/winegcc.c:560:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *p, *buffer = xmalloc( strlen(root) + strlen(stdlibpath[i]) + data/wine-5.0/tools/winegcc/winegcc.c:561:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen("/arm-linux-gnueabi") + strlen(libwine) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:561:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen("/arm-linux-gnueabi") + strlen(libwine) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:564:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen(buffer); data/wine-5.0/tools/winegcc/winegcc.c:583:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen(buffer); data/wine-5.0/tools/winegcc/winegcc.c:597:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + target_len, p + build_len, strlen( p + build_len ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:600:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + build_len, p + target_len, strlen( p + target_len ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:607:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + 6, p + 4, strlen( p + 4 ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:610:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + 4, p + 6, strlen( p + 6 ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:616:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + 4, p + 6, strlen( p + 6 ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:618:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memmove( p + 6, p + 4, strlen( p + 4 ) + 1 ); data/wine-5.0/tools/winegcc/winegcc.c:627:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer[strlen(buffer) - strlen(libwine)] = 0; data/wine-5.0/tools/winegcc/winegcc.c:627:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer[strlen(buffer) - strlen(libwine)] = 0; data/wine-5.0/tools/winegcc/winegcc.c:917:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cnt = read(sout, libgcc, st.st_size); data/wine-5.0/tools/winegcc/winegcc.c:992:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). output_file[strlen(output_file) - 3] = 0; data/wine-5.0/tools/winegcc/winegcc.c:1369:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( platform_names[i].name, platform, strlen(platform_names[i].name) )) data/wine-5.0/tools/winegcc/winegcc.c:1388:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( argv[i], option, strlen(option) ) && argv[i][strlen(option)] == '=') data/wine-5.0/tools/winegcc/winegcc.c:1388:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp( argv[i], option, strlen(option) ) && argv[i][strlen(option)] == '=') data/wine-5.0/tools/winegcc/winegcc.c:1390:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *option_arg = argv[i] + strlen(option) + 1; data/wine-5.0/tools/winegcc/winegcc.c:1503:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strendswith(str, "/")) str[strlen(str) - 1] = 0; data/wine-5.0/tools/wmc/mcl.c:201:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = wmc_mbstowcs(codepage, 0, xlatebuffer, strlen(xlatebuffer)+1, inputbuffer, INPUTBUFFER_SIZE); data/wine-5.0/tools/wmc/po.c:560:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = read( fd, mo_file, st.st_size ); data/wine-5.0/tools/wmc/po.c:661:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new->len = wmc_mbstowcs( CP_UTF8, 0, transl, strlen(transl) + 1, NULL, 0 ); data/wine-5.0/tools/wmc/po.c:663:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = wmc_mbstowcs( CP_UTF8, MB_ERR_INVALID_CHARS, transl, strlen(transl) + 1, new->msg, new->len ); data/wine-5.0/tools/wmc/utils.c:124:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int extlen = strlen(ext); data/wine-5.0/tools/wmc/utils.c:135:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namelen = strlen(name); data/wine-5.0/tools/wmc/utils.c:180:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = xmalloc(strlen(str)+1); data/wine-5.0/tools/wmc/wmc.c:179:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmdlen += strlen(argv[i]) + 1; data/wine-5.0/tools/wmc/wmc.c:186:4: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(cmdline, " "); data/wine-5.0/tools/wmc/write.c:550:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cptr = xrealloc( cptr, strlen(cptr) + 5 ); data/wine-5.0/tools/wrc/po.c:1128:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). res = read( fd, mo_file, st.st_size ); data/wine-5.0/tools/wrc/po.c:1225:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ustr.size = strlen( transl ); data/wine-5.0/tools/wrc/po.c:1399:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str->size = strlen( block_name[i] ) + 1; data/wine-5.0/tools/wrc/utils.c:143:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int extlen = strlen(ext); data/wine-5.0/tools/wrc/utils.c:154:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namelen = strlen(name); data/wine-5.0/tools/wrc/utils.c:218:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s = xmalloc(strlen(str)+1); data/wine-5.0/tools/wrc/wrc.c:361:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cmdlen += strlen(argv[i]) + 1; data/wine-5.0/tools/wrc/wrc.c:368:4: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(cmdline, " "); ANALYSIS SUMMARY: Hits = 32208 Lines analyzed = 4068415 in approximately 104.98 seconds (38753 lines/second) Physical Source Lines of Code (SLOC) = 3162910 Hits@level = [0] 3464 [1] 4804 [2] 14081 [3] 2155 [4] 11140 [5] 28 Hits@level+ = [0+] 35672 [1+] 32208 [2+] 27404 [3+] 13323 [4+] 11168 [5+] 28 Hits/KSLOC@level+ = [0+] 11.2782 [1+] 10.183 [2+] 8.66417 [3+] 4.21226 [4+] 3.53093 [5+] 0.00885261 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.